Skip to main content

How Readiness Scoring Works

Proofarc computes a single 0-100 readiness score that answers: "Is this safe to ship?"

The Score

The score is a weighted average of milestones — each representing a quality dimension:

MilestoneWeightWhat it measures
Security25%Vulnerability findings by severity (CRITICAL/HIGH/MEDIUM)
API Tests20%Scenario pass rate + API contract coverage
UI Tests15%Browser test pass rate + cross-engine compatibility
Performance15%Response times, error rates, throughput vs thresholds
Code Quality10%Engineering practices, CI/CD, linting, health checks
Log Health10%Runtime log anomalies during test execution
Approval5%Manual sign-off by release manager

How It Differs From Other Tools

FeatureTraditional ToolsProofarc
Test resultsPass/fail per testWeighted contribution to score
Security findingsCount by severityState-adjusted: FIXED=0, REOPENED=1.2x penalty
Stale resultsStill show greenTime decay reduces confidence over days
Practice complianceNot measuredScore ceiling: no CI/CD = max 75%
PredictionNonePre-test risk signals + failure probability

Predictive Signals

Before tests run, 7 signals predict risk:

  1. Changeset Classification — DB migrations and auth code = higher risk
  2. Code Review Quality — unreviewed commits = risk
  3. Change Velocity — late changes near release = risk
  4. Contract Drift — API spec vs runtime response mismatch
  5. Dependency Chain — upstream API changed after you tested
  6. UI Testability — interactive elements without test IDs
  7. Environment Pattern — testing only in staging, skipping dev/QA

Repository URL is required for Git-derived signals

Three of the predictive signals — Code Review Quality, Change Velocity, and Deployment Risk — require a Git clone to compute. They are sourced from commit history, PR coverage, and file-level churn analysis, not from runtime data.

If the readiness plan for an application has no repoUrl configured, those three sections won't render and the page shows an inline notice:

Repository URL not configured for AppName. Deployment risk, code review quality, and change velocity can't be computed without a Git repo. Set repoUrl on the readiness plan to enable these scores.

This is a configuration gap, not a backend failure — the endpoints return 200 OK with { unconfigured: true, message: "..." } rather than crashing. Set repoUrl via the readiness plan editor in the UI and the scores will populate on next page load.

After Tests Run

The Code-Test-Log Triangle catches hidden issues:

  • Tests pass but application logs show errors → health drops
  • Stack traces map to source files → specific code identified
  • Recently changed files producing errors → regression detected

Patent-Protected

The scoring algorithms are protected by 9 provisional patent applications covering readiness computation, finding lifecycle, log correlation, predictive analysis, compliance evidence, and orchestration.