Shuttle Future Enhancements

Post-MVP

These are deferred beyond the MVP. Several map to Shuttle's MVP non-goals (§18) — leader election, WAL, mTLS, gRPC — and land in later phases once the MVP is shipping.

1. Bearer token auto-rotation from Kubernetes Secret
2. mTLS via Cloudflare Origin Certificate
3. Leader election for 2-replica HA (controller-runtime native)
4. Prometheus alerting rules for Shuttle health
5. Write-ahead log for snapshot fault tolerance
6. Envoy Gateway SecurityPolicy management for customer auth
7. Custom domain lifecycle via HTTPRoute
8. Graceful cordon/drain on Shuttle upgrades
9. Self-update mechanism driven by Starbase
10. Upgrade from HTTP polling to gRPC streaming for lower latency

---

Cross-references

The MVP non-goals these enhancements unblock → §18 · the securitypolicies RBAC reserved for item 6 → §22 · the leases RBAC reserved for leader election (item 3) → §22 · the HTTP-polling client that item 10 would replace → §19.3.