Scope an uncertain build
Clarify users, outcomes, dependencies, ownership, exclusions, and a first bounded implementation slice.
// technical_review
A review turns an uncertain product, workflow, or existing system into a documented decision. A valid outcome may be to build, buy, integrate, stabilise, replace, defer, or stop.
// purpose
Clarify users, outcomes, dependencies, ownership, exclusions, and a first bounded implementation slice.
Establish current state, operating dependencies, known failures, data ownership, and the cost of safe change.
Evaluate build, buy, integrate, stabilise, replace, defer, or stop without assuming a custom build is the answer.
// possible_inputs
A review may use some—not necessarily all—of the following evidence.
The current product, workflow description, user roles, known incidents, and business constraints.
An existing repository, architecture, deployment state, vendor dependencies, integrations, and data ownership.
Budget and timing constraints, internal capability, legal or operational boundaries, and acceptable failure conditions.
// possible_outputs
Depending on scope, a review may include the following—not every review guarantees every artifact.
A system and workflow map, dependency inventory, assumptions, ownership gaps, and known failure conditions.
A build, buy, integrate, stabilise, replace, defer, or stop recommendation with reasoning and explicit exclusions.
A first implementation slice, risks, budget and timeline range, required decisions, and what must be verified before work starts.
// review_sequence
01
Define the question the review must answer and the evidence that can be accessed.
02
Agree private-system handling, accounts, environments, and whether the review is read-only.
03
Review available product, workflow, architecture, data, dependencies, incidents, and constraints.
04
Record where state, access, recovery, responsibility, or evidence is incomplete.
05
Present viable paths, assumptions, exclusions, and the smallest defensible next step.
// boundaries
The review is not a penetration test, vulnerability assessment, or adversarial security engagement.
It does not determine legal compliance or replace qualified legal, regulatory, or specialist assurance.
It does not guarantee that every defect, risk, or dependency will be found from the available access and evidence.
The review does not commit either party to implementation, and a no-build recommendation is valid.
No production mutation occurs without explicit approval. Private-system access and handling rules are agreed before review.
Start with the system, workflow, or product that needs to work. The first conversation establishes the outcome, constraints, ownership, and safest first slice.
Request a Technical Review