ReleaseNotary

Catch product mistakes before they ship.

ReleaseNotary runs your high-risk workflows on PRs and releases. It finds customer-facing failures that code review tools are blind to.

Open a sample packet
$2,50030 daysone repofounder-led setup
ReleaseNotary / Packet 0042Sample Product · PR #184
REVIEW
PRODUCT STATE HASH5b1f0e8f3c8a7d9e2a1b4c6d
Flows
03
Evidence
12
Critical
01
Review
02

NOTARY FLAGS

  • 01
    Cancellation disclosure missingPricing changed on the annual checkout path.
  • 02
    Access gate needs review/availability opened without a session.
  • 03
    Checkout confirmation capturedReceipt and success state matched the config.

Review required before mergeFull evidence attached to the hosted packet

Open packet

github-actionscommented on PR #184

REVIEW

ReleaseNotary found 2 product issues. The annual checkout is missing its cancellation disclosure, and an access gate opened without a session.

Open Notary Packet

01 / The review loop

Choose the product scenarios that could block a PR or release.

ReleaseNotary runs those scenarios on PRs and releases and flags the mismatch before approval.

Read about product behavior proof
01

Choose the product risks

Show us the checkout, access gate, AI response, or workflow that could block the release.

02

Run them on the PR or release build

ReleaseNotary drives the product, checks the expected behavior, and records any mismatch.

03

Review the issue before approval

Your team gets a GitHub check and a Notary Packet with the finding, evidence, and release notes.

02 / Where to begin

Start where a bad release costs you.

Start with flows where one wrong price, permission, or AI response can reach customers.

01

Billing and pricing

Checkout, plan changes, cancellation paths, receipts, and pricing copy.

02

Auth and access gates

Login redirects, invite flows, private routes, and permission leaks.

03

Onboarding and activation

Signup, workspace creation, trial starts, and the first successful run.

04

Permissions and roles

Admin actions, team roles, plan gates, seat limits, and account controls.

05

AI behavior

Model responses, disclosure language, fixed answers, and risky output shifts.

06

Consent and disclosures

Policy links, consent copy, cancellation language, and required notices.

03 / The release file

Each finding includes the evidence behind it.

Engineers can inspect screenshots, visible text, logs, and diffs. Product and leadership get Notary Flags and release notes that explain the customer impact.

RN / 01

Notary Packet

One release record with the findings, evidence, PR context, and release notes.

RN / 02

Product State Hash

A stable fingerprint for the product behavior captured in the run, separate from the commit SHA.

RN / 03

Notary Flags

Product-specific findings such as a wrong price, exposed route, missing disclosure, or changed AI answer.

RN / 04

Hosted Release Notes

A readable account of the changed product behavior, review points, and supporting evidence.

RN / 05

Evidence Trail

Screenshots, visible text, logs, diffs, and captured output with sensitive values redacted.

RN / 06

GitHub Check

A compact PASS, FAIL, or REVIEW result in the PR with a link to the full finding.

04 / Where ReleaseNotary fits

Most products review the code. ReleaseNotary checks the product that code creates.

A PR can look sound in the diff and still expose a private route, charge the wrong price, or change an AI answer. ReleaseNotary runs those product scenarios on PRs and releases before approval.

See the full tool comparison
Review questionReleaseNotaryCode review: CodeRabbit, GitHub CopilotVisual QA: Chromatic, PercyObservability: Sentry, Datadog
Primary focusProduct-specific errors in live PR and release buildsImplementation issues in the pull requestScreenshot, component, and DOM changesRuntime errors, latency, and incidents
What it inspectsBilling, auth, permissions, AI behavior, and workflowsCode diffs, tests, static analysis, and repository contextPixels, layouts, components, and visual baselinesLogs, traces, metrics, and production events
Issues it findsWrong prices, exposed routes, broken roles, changed AI answers, and workflow regressionsBugs, security problems, style issues, and test gaps visible in the codeLayout breaks, styling drift, and unexpected UI changesExceptions, slow requests, outages, and service degradation
Review outputNotary Flags, evidence, Product State Hash, release notes, and a GitHub checkInline comments, summaries, and suggested code changesVisual diffs, snapshots, and baseline approvalsAlerts, traces, dashboards, and incident timelines
When it helpsBefore merge or release, against the deployed PR or release buildDuring pull-request review, from repository contextDuring UI review and continuous integrationAfter deployment, while the system is running

05 / Founder-led pilot

Check real PRs and releases for 30 days.

Bring one repo, active PRs or release builds, and the product scenarios your team worries about. We configure the review path with you and tune it against live work.

30-day pilot$2,500one repo
  • One repo
  • Unlimited PR and release reviews during the pilot
  • Up to 500 Notary Runs
  • Founder-led setup and review
  • A Notary Packet for every covered review
Your team should haveGitHub repo with active PRsPreview deployments for PRs or releasesProduct ships each week or fasterProduct risks worth checking before release

06 / Evidence and access

The finding comes with evidence your team can inspect.

Each run creates a Notary Packet with screenshots, flags, release notes, and the Product State Hash. ReleaseNotary redacts sensitive values and keeps the underlying artifacts private.

Read the security model

Sensitive values are redacted

ReleaseNotary removes detected secrets, PII, and tokens before evidence becomes durable.

Approved reviewers open the packet

GitHub organization access controls who can open the hosted release record.

Project keys can be revoked

Each key stays scoped to its project and can be removed without changing the evidence.

Captured files stay private

Screenshots, logs, and other artifacts move through deliberate reviewer links.

One repo. Thirty days. Real PRs and releases.

Find product issues before your customers do.

Send us a repo, and we will scope the 30-day pilot around its key flows.

Inspect the sample packet