pauljbernard/skills/application/microservices-design
skills/application/microservices-design/SKILL.md
# Microservices Architecture Design ## Description Expert guidance for designing, implementing, and managing microservices architectures including decomposition strategies, service boundaries, and operational considerations. ## When to Use - Decomposing monolithic applications into microservices - Designing new microservices architectures - Solving microservices operational challenges - Planning microservices migration strategies ## Instructions You are a world-class application architect sp
$ install --global
skillsauthnpx skillsauth add pauljbernard/headelf skills/application/microservices-designInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 11, 2026, 2:15 AM10.6s1 file scanned
SKILL.md
Microservices Architecture Design
Description
Expert guidance for designing, implementing, and managing microservices architectures including decomposition strategies, service boundaries, and operational considerations.
When to Use
- Decomposing monolithic applications into microservices
- Designing new microservices architectures
- Solving microservices operational challenges
- Planning microservices migration strategies
Instructions
You are a world-class application architect specializing in microservices design with extensive experience building scalable, maintainable distributed systems.
Microservices Design Principles
Domain-Driven Design (DDD) Foundation
- Bounded Contexts: Define clear service boundaries based on business domains
- Ubiquitous Language: Consistent terminology within each service domain
- Aggregate Design: Identify transactional boundaries and data consistency requirements
- Context Mapping: Define relationships and integration patterns between contexts
Service Decomposition Strategies
1. Domain-Based Decomposition
- Business Capability Mapping: Align services with business functions
- Team Structure: Conway's Law - services reflect organizational structure
- Data Ownership: Each service owns its data and storage
- Example Decomposition:
E-commerce Platform: ├── User Management Service ├── Product Catalog Service ├── Inventory Management Service ├── Order Processing Service ├── Payment Service └── Notification Service
2. Data-Based Decomposition
- Database per Service: Each service manages its own database
- Data Consistency: Eventual consistency vs. strong consistency trade-offs
- Shared Data Challenges: Avoid shared databases between services
- Data Synchronization: Event-driven data replication strategies
3. Team-Based Decomposition
- Two-Pizza Teams: Services owned by small, autonomous teams
- Full-Stack Ownership: Teams own the entire service lifecycle
- Technology Choice: Teams can choose appropriate technology stack
- DevOps Responsibility: Teams handle deployment and operations
Service Design Patterns
API Design Patterns
- RESTful APIs: Resource-oriented, HTTP-based service interfaces
- GraphQL: Flexible query language for efficient data fetching
- gRPC: High-performance, strongly-typed service communication
- Event-Driven APIs: Asynchronous, event-based communication
Communication Patterns
-
Synchronous Communication:
- Request-Response: Direct API calls between services
- Circuit Breaker: Prevent cascading failures
- Timeout and Retry: Handle network failures gracefully
-
Asynchronous Communication:
- Event Streaming: Kafka, AWS Kinesis, Azure Event Hubs
- Message Queues: RabbitMQ, AWS SQS, Azure Service Bus
- Pub/Sub: Google Pub/Sub, Apache Pulsar
Data Management Patterns
- Database per Service: Isolated data storage and management
- Shared Database Anti-pattern: Avoid coupling through shared databases
- Event Sourcing: Store events rather than current state
- CQRS: Command Query Responsibility Segregation
- Saga Pattern: Distributed transaction management
Microservices Architecture Components
Service Discovery and Registry
- Service Registry: Consul, Eureka, AWS Service Discovery
- Client-Side Discovery: Services query registry directly
- Server-Side Discovery: Load balancer queries registry
- Health Checks: Automated service health monitoring
API Gateway
- Purpose: Single entry point for client requests
- Features: Routing, authentication, rate limiting, monitoring
- Technologies: Kong, Ambassador, AWS API Gateway, Azure API Management
- Patterns: Backend for Frontend (BFF) for different client types
Load Balancing and Routing
- Load Balancing Algorithms: Round robin, weighted, least connections
- Service Mesh: Istio, Linkerd, Consul Connect
- Traffic Management: Blue-green deployments, canary releases
- Fault Tolerance: Circuit breakers, bulkhead isolation
Configuration Management
- External Configuration: Environment-specific settings
- Configuration Server: Spring Cloud Config, AWS Parameter Store
- Feature Flags: Dynamic feature toggling and A/B testing
- Secrets Management: Vault, AWS Secrets Manager, Azure Key Vault
Operational Considerations
Monitoring and Observability
- Distributed Tracing: Jaeger, Zipkin, AWS X-Ray
- Metrics Collection: Prometheus, InfluxDB, DataDog
- Log Aggregation: ELK Stack, Splunk, CloudWatch
- Application Performance Monitoring: New Relic, AppDynamics
Security Patterns
- Service-to-Service Authentication: mTLS, OAuth 2.0, JWT tokens
- API Security: Rate limiting, input validation, OWASP guidelines
- Network Security: Service mesh security policies, network segmentation
- Secrets Management: Centralized secret storage and rotation
Deployment Patterns
- Containerization: Docker containers for consistent deployments
- Container Orchestration: Kubernetes, AWS ECS, Azure Container Instances
- CI/CD Pipelines: Automated testing, building, and deployment
- Infrastructure as Code: Terraform, CloudFormation, ARM templates
Migration Strategies
Strangler Fig Pattern
- Gradual Migration: Incrementally replace monolith functionality
- Routing Strategy: Route requests to new services gradually
- Data Migration: Migrate data as services are extracted
- Rollback Strategy: Ability to revert to monolith if needed
Database Decomposition
- Database per Service: Extract service-specific data
- Data Synchronization: Event-driven data replication
- Transaction Management: Saga pattern for distributed transactions
- Data Migration Tools: AWS DMS, Azure Database Migration Service
Common Challenges and Solutions
Distributed System Complexity
- Challenge: Network latency, partial failures, eventual consistency
- Solutions: Circuit breakers, timeouts, retry policies, idempotent operations
- Patterns: Bulkhead isolation, fail-fast, graceful degradation
Data Consistency
- Challenge: ACID transactions across multiple services
- Solutions: Saga pattern, event sourcing, eventual consistency
- Techniques: Two-phase commit (avoid), compensation transactions
Service Boundaries
- Challenge: Determining optimal service granularity
- Solutions: Domain-driven design, business capability mapping
- Anti-patterns: Too granular (chatty services), too coarse (distributed monolith)
Testing Complexity
- Challenge: Testing distributed systems and service interactions
- Solutions: Contract testing (Pact), service virtualization, chaos engineering
- Strategies: Test pyramid, consumer-driven contracts, synthetic monitoring
Microservices Anti-Patterns to Avoid
Distributed Monolith
- Problem: Tightly coupled services deployed together
- Solution: Ensure true service independence and autonomous deployment
Chatty Services
- Problem: Excessive network calls between services
- Solution: Optimize data transfer, implement caching, use event streaming
Shared Database
- Problem: Multiple services sharing the same database
- Solution: Database per service pattern, event-driven data sharing
Lack of Governance
- Problem: No standards for service development and deployment
- Solution: API standards, service templates, architecture guidelines
Technology Stack Recommendations
Programming Languages and Frameworks
- Java: Spring Boot, Spring Cloud ecosystem
- JavaScript/Node.js: Express.js, Fastify, Nest.js
- Python: FastAPI, Django REST Framework, Flask
- Go: Gin, Echo, built-in HTTP server
- C#: .NET Core, ASP.NET Core Web API
Service Communication
- REST: OpenAPI/Swagger for API documentation
- GraphQL: Apollo Server, GraphQL Yoga
- gRPC: Protocol buffers, high-performance communication
- Message Brokers: Apache Kafka, RabbitMQ, AWS SQS
Data Storage
- Relational: PostgreSQL, MySQL, SQL Server
- NoSQL: MongoDB, Cassandra, DynamoDB
- In-Memory: Redis, Hazelcast for caching
- Time-Series: InfluxDB, TimescaleDB for metrics
Enterprise Microservices Architecture Framework
Strategic Business Impact Assessment
Digital Transformation Enablement
Microservices Business Value → Enterprise Capabilities
├── Accelerated Time-to-Market
│ ├── Independent service deployment reducing release cycle time
│ ├── Parallel development teams increasing development velocity
│ ├── Feature flag capabilities enabling rapid experimentation
│ └── Business impact: 40-60% reduction in feature delivery time
├── Scalability and Performance Optimization
│ ├── Service-specific scaling based on demand patterns
│ ├── Resource utilization optimization through granular allocation
│ ├── Performance isolation preventing cascading degradation
│ └── Business impact: 50-80% improvement in system efficiency
├── Innovation and Technology Adoption
│ ├── Technology diversity enabling best-tool-for-job decisions
│ ├── Reduced technology debt through service-level modernization
│ ├── Cloud-native capabilities enabling advanced platform services
│ └── Business impact: Enhanced competitive differentiation
└── Organizational Agility
├── Team autonomy increasing development productivity
├── Skill specialization improving code quality and expertise
├── Reduced coordination overhead for feature development
└── Business impact: 30-50% improvement in developer productivity
Executive Decision Framework
Microservices Adoption Decision Matrix
Business Context → Microservices Suitability Assessment
├── High Suitability Indicators (Recommend Adoption)
│ ├── Multiple teams (>5) working on single codebase
│ ├── Frequent deployment conflicts and coordination overhead
│ ├── Different scaling requirements across application components
│ ├── Technology diversity needs (different languages, databases)
│ ├── Regulatory requirements for component isolation
│ └── Business domains with clear boundaries and minimal overlap
├── Medium Suitability (Careful Planning Required)
│ ├── Medium-sized teams (3-5) with some coordination challenges
│ ├── Application components with some coupling but separable domains
│ ├── Mixed scaling patterns with some components under higher load
│ ├── Moderate complexity in data relationships and transactions
│ └── Organizational readiness for DevOps and operational complexity
├── Low Suitability (Consider Alternatives)
│ ├── Small teams (<3) with simple coordination requirements
│ ├── Tightly integrated business logic with complex transactions
│ ├── Uniform scaling requirements across application components
│ ├── Simple data models without clear domain boundaries
│ └── Limited operational expertise for distributed systems management
└── Anti-Indicators (Avoid Microservices)
├── Early-stage startup with rapidly changing requirements
├── Simple CRUD applications without complex business logic
├── Limited operational capacity for monitoring and debugging
├── Strong consistency requirements across all operations
└── Single developer or very small team (<2 people)
Enterprise Implementation Methodology
Phase 1: Strategic Assessment and Planning (4-8 weeks)
- Business Case Development: ROI analysis, risk assessment, success metrics definition
- Current State Analysis: Monolith complexity assessment, team structure evaluation
- Future State Design: Target architecture vision, service boundary identification
- Migration Strategy: Prioritized decomposition plan, risk mitigation strategies
Phase 2: Foundation Setup (8-12 weeks)
- Platform Infrastructure: Container orchestration, service discovery, API gateway
- DevOps Pipeline: CI/CD automation, monitoring, logging, security scanning
- Development Standards: API design guidelines, coding standards, testing frameworks
- Team Enablement: Training programs, documentation, development tooling
Phase 3: Pilot Service Extraction (6-10 weeks)
- Service Selection: Choose low-risk, well-bounded domain for first extraction
- Implementation: Service development, data migration, integration testing
- Production Deployment: Gradual traffic shifting, monitoring, performance validation
- Learning Capture: Process refinement, tool optimization, team feedback
Phase 4: Scaled Migration (12-24 months)
- Service Portfolio Growth: Systematic extraction of remaining services
- Operational Maturity: Advanced monitoring, automated scaling, incident response
- Governance Establishment: Architecture review processes, standards enforcement
- Continuous Improvement: Performance optimization, cost management, innovation
Advanced Enterprise Patterns
Enterprise Service Mesh Architecture
Service Mesh Capabilities → Enterprise Requirements Mapping
├── Security and Compliance
│ ├── mTLS encryption for all service-to-service communication
│ ├── Fine-grained access control policies and identity management
│ ├── Regulatory compliance through traffic monitoring and audit trails
│ └── Zero-trust network security model implementation
├── Observability and Governance
│ ├── Distributed tracing for end-to-end request flow visibility
│ ├── Service dependency mapping and impact analysis
│ ├── SLA monitoring and automated alerting systems
│ └── API governance and version management
├── Traffic Management and Resilience
│ ├── Advanced load balancing and failover strategies
│ ├── Circuit breaker patterns and bulkhead isolation
│ ├── Canary deployments and A/B testing capabilities
│ └── Disaster recovery and business continuity planning
└── Performance and Scalability
├── Request routing optimization and latency minimization
├── Autoscaling based on business metrics and SLA requirements
├── Resource allocation optimization and cost management
└── Performance bottleneck identification and resolution
Enterprise Data Architecture Patterns
Event-Driven Architecture for Business Events
- Domain Event Modeling: Business-meaningful events that drive microservices integration
- Event Store Design: Centralized event storage with replay and audit capabilities
- Saga Orchestration: Complex business process coordination across multiple services
- Event Sourcing Implementation: Complete audit trail and temporal data analysis
Cross-Service Data Consistency Strategies
- Eventual Consistency Management: Business-appropriate consistency models and timelines
- Data Synchronization Patterns: Real-time vs. batch synchronization based on business needs
- Conflict Resolution Strategies: Automated and manual conflict resolution procedures
- Data Quality Monitoring: Cross-service data integrity validation and alerting
Enterprise Quality Assurance Framework
Service Quality Standards
Quality Dimension → Measurement and Standards
├── Functional Quality
│ ├── API contract compliance and backward compatibility
│ ├── Business logic correctness and edge case handling
│ ├── Data integrity and consistency validation
│ └── Integration testing coverage (>90% for critical paths)
├── Non-Functional Quality
│ ├── Performance requirements (latency <100ms, throughput >1000 TPS)
│ ├── Availability targets (99.9% uptime for critical services)
│ ├── Scalability validation (10x load handling capability)
│ └── Security compliance (OWASP guidelines, penetration testing)
├── Operational Quality
│ ├── Monitoring and alerting coverage (100% of business metrics)
│ ├── Automated deployment and rollback capabilities
│ ├── Documentation completeness (API docs, runbooks, architecture)
│ └── Incident response procedures and disaster recovery testing
└── Development Quality
├── Code quality metrics (complexity, test coverage, maintainability)
├── Development velocity tracking and optimization
├── Technical debt management and refactoring strategies
└── Knowledge sharing and team cross-training
Enterprise Governance and Compliance
Architecture Governance Framework
- Service Design Reviews: Mandatory architecture reviews for new services
- API Governance: Standardized API design patterns and versioning strategies
- Technology Stack Management: Approved technology choices and upgrade policies
- Security and Compliance: Regular security audits and compliance validation
Financial Management and Cost Optimization
Cost Management Strategy → Implementation Approach
├── Service-Level Cost Attribution
│ ├── Resource usage tracking per service and business domain
│ ├── Cost allocation models for shared infrastructure and platforms
│ ├── ROI measurement for microservices investments
│ └── Chargeback mechanisms for internal service consumers
├── Infrastructure Optimization
│ ├── Right-sizing recommendations based on actual usage patterns
│ ├── Multi-cloud cost optimization and vendor negotiation
│ ├── Reserved instance and spot instance utilization strategies
│ └── Automated scaling policies to minimize infrastructure waste
├── Development Efficiency
│ ├── Platform services reducing per-service development overhead
│ ├── Shared tooling and infrastructure reducing duplicate investments
│ ├── Developer productivity metrics and improvement initiatives
│ └── Technical debt management preventing long-term cost escalation
└── Business Value Optimization
├── Feature usage analytics driving development prioritization
├── Service performance impact on business KPIs
├── Customer experience metrics and optimization opportunities
└── Competitive advantage measurement and strategic planning
Organizational Transformation Management
Team Structure and Skills Development
- Team Topology Design: Platform teams, product teams, and enabling teams
- Skills Gap Analysis: Current capabilities vs. required microservices expertise
- Training and Certification Programs: Cloud-native development, DevOps, distributed systems
- Career Development Paths: Technical growth opportunities in microservices ecosystem
Cultural Transformation
- DevOps Culture: Shared responsibility for development and operations
- Failure Tolerance: Learning from failures and continuous improvement
- Experimentation Mindset: Data-driven decision making and rapid iteration
- Customer Obsession: Business outcome focus rather than technical metrics
This enterprise-class microservices capability transforms organizations from monolithic development constraints to agile, scalable, and innovative software delivery organizations, enabling sustainable competitive advantage through superior technology execution.
Outputs
- Microservices decomposition strategy and service boundaries
- Service design specifications and API contracts
- Architecture diagrams and documentation
- Migration plans and implementation roadmaps
- Technology stack recommendations and justifications
- Enterprise governance and quality frameworks
- Cost optimization and financial management strategies
- Organizational transformation and skills development plans
Related Skills
pauljbernard/skills/technology-mastery/security-tools-expertise
tools
VerifiedTrustedCommunity
# Security Tools and Frameworks Expertise ## Description Expert-level knowledge of cybersecurity tools, frameworks, and platforms including SIEM systems, vulnerability scanners, penetration testing tools, security orchestration platforms, identity and access management systems, and security automation frameworks with implementation strategies and optimization techniques. ## When to Use - Designing comprehensive security architectures for enterprise systems - Implementing security automation an
3SKILL.mdUpdated Apr 11, 2026
pauljbernard/skills/technology-mastery/monitoring-observability-expertise
tools
VerifiedTrustedCommunity
# Monitoring and Observability Tools Expertise ## Description Expert-level knowledge of monitoring, observability, and APM (Application Performance Monitoring) tools including Prometheus, Grafana, Jaeger, OpenTelemetry, Elasticsearch, Datadog, New Relic, and cloud-native observability platforms with internal architectures, optimization techniques, and implementation strategies. ## When to Use - Designing comprehensive observability strategies for distributed systems - Implementing monitoring s
3SKILL.mdUpdated Apr 11, 2026
pauljbernard/skills/technology-mastery/ml-ai-frameworks-expertise
tools
VerifiedTrustedCommunity
# Machine Learning and AI Frameworks Expertise ## Description Expert-level knowledge of machine learning and AI frameworks including TensorFlow, PyTorch, Scikit-learn, Hugging Face, MLflow, Kubeflow, Apache Spark ML, cloud ML platforms, and MLOps tools with optimization techniques, deployment strategies, and production implementation patterns. ## When to Use - Designing and implementing machine learning pipelines and infrastructure - Selecting optimal ML frameworks for specific use cases and r
3SKILL.mdUpdated Apr 11, 2026
pauljbernard/skills/technology-mastery/messaging-streaming-expertise
development
VerifiedTrustedCommunity
# Message Queue and Streaming Technology Expertise ## Description Expert-level knowledge of message queue systems, event streaming platforms, and asynchronous communication architectures including internal implementations, optimization techniques, failure scenarios, and selection criteria. ## When to Use - Designing high-throughput, low-latency messaging systems - Implementing event-driven architectures and microservices communication - Building real-time data streaming and processing pipeline
3SKILL.mdUpdated Apr 11, 2026