diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml
deleted file mode 100644
index 5d7cd84..0000000
--- a/.github/workflows/deploy.yml
+++ /dev/null
@@ -1,33 +0,0 @@
-name: Deploy to Cloudflare Workers
-
-on:
-  push:
-    branches:
-      - master
-
-jobs:
-  deploy:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v4
-
-      - name: Setup Node.js
-        uses: actions/setup-node@v4
-        with:
-          node-version: '20'
-
-      - name: Install Bun
-        uses: oven-sh/setup-bun@v1
-        with:
-          bun-version: latest
-
-      - name: Install dependencies
-        run: bun install
-
-      - name: Build
-        run: bun run build
-
-      - name: Deploy to Cloudflare Workers
-        run: bun run deploy
-        env:
-          CLOUDFLARE_API_TOKEN: ${{ secrets.CLOUDFLARE_API_TOKEN }}
diff --git a/.todo/SECURITY.md b/.todo/SECURITY.md
new file mode 100644
index 0000000..89b4aaf
--- /dev/null
+++ b/.todo/SECURITY.md
@@ -0,0 +1,9 @@
+## Planned Security Updates
+
+### v0.3.0
+- [ ] **Release Signing**: GPG signatures for releases (v0.3.0)
+- [ ] **Audit Logging**: Security event logging (v0.3.0)
+- [ ] **SBOM**: Software Bill of Materials (v0.3.0)
+
+### v0.4.0
+- [ ] **RBAC**: Role-based access control for webhook API (v0.4.0)
\ No newline at end of file
diff --git a/docs/community/security.md b/docs/community/security.md
index 2b53eba..9c73729 100644
--- a/docs/community/security.md
+++ b/docs/community/security.md
@@ -411,23 +411,6 @@ The webhook server is a public HTTP endpoint. Risks:
 - Set worker limits
 - Monitor resource usage
 
-## Security Features
-
-### Current
-
-- **HMAC Signature Verification**: GitHub and GitLab webhooks
-- **Input Validation**: Sanitized repository URLs and paths
-- **Resource Limits**: Configurable worker pools
-- **Secure Defaults**: AI disabled by default, localhost binding
-- **Environment Variables**: Secrets via env vars, not files
-
-### Planned
-
-🔄 **Release Signing**: GPG signatures for releases (v0.3.0)
-🔄 **RBAC**: Role-based access control for webhook API (v0.4.0)
-🔄 **Audit Logging**: Security event logging (v0.3.0)
-🔄 **SBOM**: Software Bill of Materials (v0.3.0)
-
 ## Compliance
 
 ### Open Source License
diff --git a/wrangler.jsonc b/wrangler.jsonc
index 473bccf..e367a73 100644
--- a/wrangler.jsonc
+++ b/wrangler.jsonc
@@ -13,5 +13,11 @@
 
   "vars": {
     "ENVIRONMENT": "production"
+  },
+  "observability": {
+    "logs": {
+      "enabled": true,
+      "invocation_logs": true
+    }
   }
 }