Skip to content

Risk Register

Phase: 1 Architecture Plan Status: active

IDRiskImpactLikelihoodMitigationOwner
R-001Frontend depends on undocumented /api response shapes.HighHighCapture request/response examples before route migration; use gateway adapters.api-gateway
R-002Manual question-type overrides in import editor are lost during DOCX migration.HighMediumPreserve review payload semantics; run real import save/reload browser checks before cutover.docx-import-service
R-003Exam/attempt snapshots change after normalization.HighMediumKeep snapshot JSON compatibility; parity-test publish/start/submit flows.exam-service, attempt-service
R-004Database split breaks tenant scoping or admin all-org behavior.HighMediumExplicit policy objects and tenant filters in SQL review checklist.school-service
R-005Legacy wallet/AZ Credit coupling blocks storage/import routes.MediumHighKeep wallet routes legacy-proxied; document any credit checks hit by migrated routes.api-gateway
R-006SSE behavior changes because gateway buffers events.HighMediumDedicated streaming tests and client disconnect handling.api-gateway
R-007External Go Formula DOCX behavior diverges from current wrapper behavior.HighMediumWrap existing endpoint first; preserve warnings/timing/media fields.docx-import-service
R-008Shared taxonomy ownership causes duplicate or conflicting records.MediumMediumAssign initial ownership to question-bank-service; replicate read models only by event/API.question-bank-service
R-009Hard delete semantics delete historical attempt data in Go unexpectedly.HighLowReproduce only after explicit product signoff; prefer archive behavior initially.question-bank-service
R-010Route migration lacks rollback path.HighMediumGateway route state and rollback command are required for every cutover.api-gateway
R-011Secrets or local defaults leak into production configs.HighMediumEnvironment validation blocks dev defaults in production.platform
R-012Backfill changes source legacy DB by accident.HighLowUse read-only credentials for legacy source; CI guard for migration code.migration
R-013Performance regressions from service fanout.MediumMediumGateway aggregation budgets, service-level metrics, cache/read models for analytics.platform
R-014Import corpus edge cases are missed.HighMediumUse real HOCTAPAZ DOCX corpus and produce parse/review diff reports.docx-import-service
R-015Admin feature maintenance no longer protects same route prefixes.MediumMediumPort feature prefix map and exact labels; route-level contract tests.admin-service

Risk Review Rule

Every Phase 2 implementation PR must either reference a risk ID above or add a new one when it introduces a new migration or behavior risk.

Go-platform documentation is generated from repository Markdown.