LibreUni

Navigation

Home Return to dashboard
Courses Browse all courses
Career Paths Follow role-based curricula
About LibreUni's mission

Search Knowledge

© 2026 LIBREUNI PROJECT

Software Architecture / Evolution

Evolutionary Architecture & Governance

Evolutionary Architecture & Governance

Architecture is never finished. Evolutionary-architecture literature treats change as a first-class design force: markets change, teams change, scale changes, regulations change, vendor capabilities change, and the codebase teaches you things the original design could not know. Adaptability is preserved through modularity, fitness functions, decision records, migration paths, and lightweight governance.

Governance has a bad reputation because it is often confused with approval theater. Good governance helps teams make better decisions faster. It provides shared principles, reference architectures, standards, review paths, and escalation mechanisms. It also makes exceptions explicit. The aim is coherence without freezing delivery.

Code 
left to right direction
rectangle "Architecture Principles" as Principles
rectangle "Team Decisions" as Decisions
rectangle "Fitness Functions" as Fitness
rectangle "Review Forums" as Forums
rectangle "Exceptions" as Exceptions
rectangle "Learning Loop" as Learning

Principles --> Decisions : guide
Decisions --> Fitness : verified by
Fitness --> Forums : evidence
Forums --> Exceptions : approve with expiry
Exceptions --> Learning : reveal pressure
Learning --> Principles : refine
Architecture PrinciplesTeam DecisionsFitness FunctionsReview ForumsExceptionsLearning Loopguideverified byevidenceapprove with expiryreveal pressurerefine

Architecture Runway

Architecture runway is the enabling technical work that lets future product work land safely. It might include identity foundations before enterprise features, event infrastructure before integration growth, deployment automation before service decomposition, or data classification before regional expansion. Runway is not speculative gold plating. It is preparation tied to known near-future demand.

The discipline is timing. Too little runway causes teams to bolt features onto weak foundations. Too much runway creates unused platforms and abstraction debt. The best runway work has a named product driver, a short horizon, an adoption path, and a fitness signal. It should reduce future friction that is already visible.

Code 
left to right direction
rectangle "Product Roadmap" as Roadmap
rectangle "Known Architectural Gap" as Gap
rectangle "Runway Work" as Runway
rectangle "Adoption by Teams" as Adoption
rectangle "Future Feature Flow" as Flow
rectangle "Fitness Signal" as Fitness

Roadmap --> Gap
Gap --> Runway
Runway --> Adoption
Adoption --> Flow
Flow --> Fitness
Fitness --> Roadmap : confirms or revises
Product RoadmapKnown Architectural GapRunway WorkAdoption by TeamsFuture Feature FlowFitness Signalconfirms or revises

Standards and Exceptions

Standards encode decisions that should not be relitigated by every team: logging fields, health checks, service templates, authentication integration, dependency scanning, API versioning, data classification, and deployment pipelines. Standards reduce cognitive load when they are small, justified, and supported by tooling.

Exceptions are healthy when they are explicit. A team may need a non-standard database, external provider, or deployment model. The exception should name the reason, owner, risk, compensating controls, and expiry or review date. This prevents standards from becoming prison bars and exceptions from becoming invisible fragmentation.

Code 
rectangle "Standard Decision Path" as Standard {
rectangle "Use paved road" as Paved
rectangle "Automatic checks" as Checks
rectangle "Normal support" as Support
}
rectangle "Exception Path" as Exception {
rectangle "Explain driver" as Driver
rectangle "Assess risk" as Risk
rectangle "Define compensating controls" as Controls
rectangle "Set review date" as Review
}
Paved --> Checks
Checks --> Support
Driver --> Risk
Risk --> Controls
Controls --> Review
Standard Decision PathException PathUse paved roadAutomatic checksNormal supportExplain driverAssess riskDefine compensating controlsSet review date

Migration Architecture

Large architecture changes are migrations, not switches. Moving from monolith to services, replacing a database, changing identity provider, regionalizing data, or adopting an event backbone requires coexistence. The old and new systems must run together while traffic, data, and behavior move safely.

Common migration tactics include strangler fig, expand-contract database changes, dual writes with reconciliation, event backfill, shadow reads, traffic mirroring, compatibility adapters, and phased tenant migration. Each tactic has risks. Dual writes can diverge. Shadow reads can miss side effects. Strangler layers can become permanent. Migration architecture needs checkpoints and removal plans.

Code 
left to right direction
actor "Client" as Client
rectangle "Strangler Facade" as Facade
rectangle "Legacy Capability" as Legacy
rectangle "New Capability" as New
database "Legacy Data" as LegacyDB
database "New Data" as NewDB
rectangle "Reconciliation" as Recon

Client --> Facade
Facade --> Legacy : old routes
Facade --> New : migrated routes
Legacy --> LegacyDB
New --> NewDB
LegacyDB --> Recon
NewDB --> Recon
Recon --> Facade : migration confidence
ClientStrangler FacadeLegacy CapabilityNew CapabilityLegacy DataNew DataReconciliationold routesmigrated routesmigration confidence

Technical Debt and Option Value

Technical debt is not all bad code. It is a design liability where a past choice makes future change more expensive. Some debt is rational: a startup may intentionally defer multi-region support to learn faster. Some debt is accidental: no one realized shared database access would block schema evolution. The architectural task is to price debt in terms of risk, delay, cost, and lost options.

Option value is the benefit of keeping a future path open. A modular boundary has option value because it may allow extraction later. A provider abstraction has option value if provider replacement is plausible. But options cost money. Keeping every option open creates complexity now. Senior architects buy options selectively, based on uncertainty and consequence.

Code 
left to right direction
rectangle "Architectural Choice" as Choice
rectangle "Immediate Simplicity" as Simple
rectangle "Future Option" as Option
rectangle "Carrying Cost" as Cost
rectangle "Review Trigger" as Trigger

Choice --> Simple : may optimize
Choice --> Option : may preserve
Option --> Cost : costs now
Trigger --> Choice : revisit when uncertainty resolves
Architectural ChoiceImmediate SimplicityFuture OptionCarrying CostReview Triggermay optimizemay preservecosts nowrevisit when uncertainty resolves

Architecture Forums

An architecture forum should be a place for decision quality, not status reporting. Good forums review high-impact decisions, share learning, identify cross-team risks, approve exceptions, and retire outdated standards. They should be small enough to move and broad enough to represent important perspectives: product, engineering, operations, security, data, and sometimes support or compliance.

The forum should not own every decision. Teams should own local decisions within guardrails. The forum should focus on decisions that affect multiple teams, change shared standards, create long-term coupling, or expose significant risk. This keeps architecture governance lightweight and useful.

Practice

Design a governance model for a company with eight product teams and one platform team. Define which decisions teams can make locally, which require review, which standards are mandatory, how exceptions work, and how decisions are revisited. Then define three fitness functions that make the governance executable.

References & Further Reading

Previous Module Observability & Architecture Fitness
Next Module Architecture Review & Case Studies