Stats
Actions
Tags
From healthmodel
Map discovered Azure resources into a dependency graph and Mermaid diagram, then propose an entity hierarchy. WHEN: 'map architecture', 'draw resource graph', 'show resource dependencies', 'propose health model hierarchy'. PREREQUISITE: healthmodel-discovery must have run first — this skill refuses to start without `.healthmodel/01-discovery.json` and `.healthmodel/00-brief.md`. DO NOT USE FOR: deploying or designing signals (use healthmodel-design / healthmodel-deploy), generic architecture diagrams unrelated to health models.
How this skill is triggered — by the user, by Claude, or both
Slash command
/healthmodel:healthmodel-architectureThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Transform discovered resources into an architecture graph with dependency edges, classify resources by impact, and propose an entity hierarchy. Uses only `az resource list`, `az monitor`, and `jq`.
Transform discovered resources into an architecture graph with dependency edges, classify resources by impact, and propose an entity hierarchy. Uses only az resource list, az monitor, and jq.
.healthmodel/01-discovery.json, .healthmodel/resources.json, and .healthmodel/00-brief.md must exist and contain real data. Check that 01-discovery.json has a subscription field, resources.json has at least one resource, and 00-brief.md has user-filled content (not just the template placeholders). If any file is missing, empty, or still contains only placeholder values, stop immediately and tell the user: "Discovery has not been completed. Load healthmodel-discovery first." Do NOT attempt to create or fill these files yourself.<br/> (never \n) and dark-mode-safe class colors.Suppressed impact.# Files must exist AND contain real data
test -f .healthmodel/01-discovery.json && test -f .healthmodel/resources.json && test -f .healthmodel/00-brief.md \
|| { echo "STOP: Discovery files missing — run healthmodel-discovery first"; exit 1; }
# discovery.json must have a real subscription ID (UUID format)
jq -e '.subscription | test("^[0-9a-f]{8}-")' .healthmodel/01-discovery.json >/dev/null 2>&1 \
|| { echo "STOP: 01-discovery.json has no valid subscription — run healthmodel-discovery"; exit 1; }
# resources.json must have actual Azure resource IDs (not placeholders)
jq -e '[.[] | select(.id | test("^/subscriptions/[0-9a-f]{8}-"))] | length > 0' .healthmodel/resources.json >/dev/null 2>&1 \
|| { echo "STOP: resources.json has no real Azure resources — run healthmodel-discovery export against a live subscription"; exit 1; }
# brief §1 Azure Scope must have a real subscription ID filled in
grep -qE '[0-9a-f]{8}-[0-9a-f]{4}-' .healthmodel/00-brief.md 2>/dev/null \
|| { echo "STOP: 00-brief.md has no Azure subscription — user must fill in §1 Azure Scope"; exit 1; }
command -v jq >/dev/null
Extract implicit relationships by resource type. For each, produce edges {from, to, kind} where kind ∈ serves|stores|authenticates|monitors.
# AKS → data stores
jq '[.[] | select(.type | test("DocumentDB|Sql/servers|DBforPostgreSQL"))] | map({name, type, id})' \
.healthmodel/resources.json
# Monitoring plane
jq '[.[] | select(.type=="Microsoft.Monitor/accounts")] | map({name, id})' .healthmodel/resources.json
For Front Door / App Gateway, match origin hostnames to compute resources.
Read .healthmodel/00-brief.md before classifying:
Standard impact (failure turns parent red); concerns ranked lower map to Limited. Anything not mentioned and not on the request path defaults to Limited or Suppressed.Depends on column instead of guessing from resource types.If the brief is not filled in or sections are blank, fall back to the defaults listed in the brief's §9.
| Position | Impact | Meaning |
|---|---|---|
| Request path (ingress → compute → data) | Standard | Failure turns parent red |
| Side dependency (cache, queue, AI) | Limited | Visible, doesn't escalate |
| Telemetry/monitoring (AMW, Log Analytics) | Suppressed | Informational |
Critical path = longest directed path from any public ingress to a stateful node — unless §2 of the brief specifies user journeys, in which case the critical path follows the journeys.
Save to .healthmodel/02-architecture.md:
graph LR
classDef critical fill:#1a5276,stroke:#2980b9,color:#fff
classDef limited fill:#1c2833,stroke:#7f8c8d,color:#ccc
classDef suppressed fill:#1c2833,stroke:#566573,color:#888
FD[Front Door<br/>fd-myapp]:::critical --> AKS1[AKS<br/>swedencentral-001]:::critical
AKS1 --> COS[Cosmos DB<br/>cosmos-myapp]:::critical
AKS1 -.-> AMW1[AMW<br/>amw-sc1]:::suppressed
AKS1 -.-> KV[Key Vault]:::limited
Also include a resource inventory table and an explicit critical-path call-out.
Pick the pattern matching the discovery answers.
Pattern A — AKS microservices, multi-stamp
Root (<appName>)
├── Failures (Suppressed — aggregates error signals)
│ ├── <stamp> — AKS Failures
│ ├── <stamp> — Pod Failures
│ ├── <stamp> — Front Door Errors
│ └── <stamp> — Cosmos Errors
├── Latency (Limited — aggregates latency signals)
│ ├── <stamp> — Gateway Latency
│ ├── <stamp> — Cosmos Latency
│ └── <stamp> — FD Latency
├── Resource Pressure (per stamp)
└── Side groups (Queues, AI, Certificates if present)
Pattern B — PaaS (App Service + SQL/Cosmos)
Root
├── Frontend (App Service errors, latency, CPU, memory)
├── Database (DTU/RU, errors, latency)
├── Ingress (5xx, origin latency)
└── Telemetry (Suppressed)
Pattern C — Event-driven (Functions + Service Bus)
Root
├── Producers (HTTP errors, latency)
├── Bus (dead letters, throttling, server errors)
└── Consumers (failed executions, processing latency)
Save the graph and diagram files now (same format as final output — see below). This ensures the design phase can proceed even if the session is interrupted.
Ask:
If the user requests changes, update the files and re-save before handing off.
.healthmodel/02-graph.json:
{
"nodes": [
{"id": "<resource-id>", "type": "Microsoft.ContainerService/managedClusters", "role": "critical", "stamp": "sc-001"}
],
"edges": [
{"from": "<fd-id>", "to": "<aks-id>", "kind": "serves"}
],
"entityHierarchy": {
"root": "Root",
"children": [
{"name": "Failures", "impact": "Suppressed", "children": []},
{"name": "Latency", "impact": "Limited", "children": []}
]
}
}
Announce: "Architecture mapped. .healthmodel/02-graph.json and .healthmodel/02-architecture.md are written. Load healthmodel-design to continue." Then stop — do not auto-proceed.
| Error | Cause | Fix |
|---|---|---|
01-discovery.json missing | Discovery phase skipped | Run healthmodel-discovery first |
| No edges produced | Resources isolated / no naming convention | Ask user to identify relationships manually |
| Mermaid renders blank in dark mode | Default colors invisible | Use the classDef colors shown above |
| Cyclic dependency detected | DAG instead of tree | Break the cycle by promoting one node to root or side group |
npx claudepluginhub abossard/always-on-v2 --plugin healthmodelCreates bite-sized, testable implementation plans from specs or requirements, with file structure and task decomposition. Activates before coding multi-step tasks.