I think the biggest production risk here is that the design looks “highly available” at the app tier but not clearly at the data and network tiers. I see two EC2 app instances behind an ALB, which is good, but only one RDS Postgres component is described and there’s no explicit Multi-AZ, backup/restore strategy, or subnet layout shown.