Advisory AI on Azure | Architecture

Click any component to explore it in the full case study.

Governance Library (Python)

Same library as AWS deployment — 7 Cosmos DB containers mirror 7 DynamoDB tables. Cloud adapter replaces persistence layer only. Business logic untouched.

Python · Cloud-portable

18 Seed Scripts → Unified Runner

Original deployment had 18 numbered seed scripts run in sequence. Consolidated into single SeedRunner with 4 phases: verify → seed frameworks → seed patterns → optional demo data

18 → 1 scripts unified

Azure Deployment Pipeline — 4 Bicep modules

Azure Functions orchestration layer

Cosmos DB multi-container setup (7 containers)

Git sync manager: clone, pull, change detection, encryption

Blue-green index swapping (zero-downtime policy hot-reload)

SHA-256 manifest audit: presence validation + import resolution

Blue-Green Policy Updates + Audit Manifests

Policy updates use blue-green index swapping — no downtime during governance library updates. SHA-256 manifests validate completeness. Distributed lock prevents concurrent tenant updates.

Blue-green index swappingSHA-256 audit manifestsDistributed lock (no concurrent updates)3 PBT properties (Hypothesis)Zero-downtime policy reload0 logic lines changed

Azure-Deployed Governance Platform

Full governance assessment API on Azure — Cosmos DB persistence, Managed Identity auth, same 15 API endpoints. Git webhook triggers live policy updates.

4 Bicep modules · 7 Cosmos containers

Policy Hot-Reload System

Git webhook → HMAC verification → change detection → blue-green swap → tenant notification. 5-minute replay window. Zero service interruption.

Webhook · Blue-green · Zero downtime

4

Bicep modules

7

Cosmos containers

18→1

Seed scripts unified

0

Logic lines changed

StackAzure BicepAzure FunctionsCosmos DBGitHub ActionsHypothesis PBTGit Sync ManagerHMAC Webhook Validation