28 seeded change requests across database migration, infra, feature flag, vendor swap, key rotation, and emergency hotfix categories. Each carries a risk class, a rollback plan, the SOC2 CC8.1 pre-deploy checklist, and an audit trail of every state change. Approver role-separation enforced.