TECHNOLOGY

RADAR
An opinionated guide
to technology frontiers

Volume 24

#TWTechRadar
thoughtworks.com/radar
Contributors
The Technology Advisory Board (TAB) is a group of 20 senior technologists
at ThoughtWorks. The TAB meets twice a year face-to-face and biweekly by
phone. Its primary role is to be an advisory group for ThoughtWorks CTO,
Rebecca Parsons.

The Technology Radar is prepared by the The TAB acts as a broad body that can look at topics that affect technology
and technologists at ThoughtWorks. With the ongoing global pandemic, we
ThoughtWorks Technology Advisory Board once again created this volume of the Technology Radar via a virtual event.

Rebecca Martin Fowler Bharani Birgitta Brandon Camilla Cassie

Parsons (CTO) (Chief Scientist) Subramaniam Böckeler Byars Crispim Shum

Erik Evan Fausto Hao Ian James Lakshminarasimhan

Dörnenburg Bottcher de la Torre Xu Cartwright Lewis Sudarshan

Mike Neal Perla Rachel Scott Shangqi Zhamak

Mason Ford Villarreal Laycock Shaw Liu Dehghani

TECHNOLOGY RADAR | 2
© ThoughtWorks, Inc. All Rights Reserved.
About
the Radar
ThoughtWorkers are passionate about
technology. We build it, research it, test it, open
source it, write about it and constantly aim to
improve it — for everyone. Our mission is to
champion software excellence and revolutionize
IT. We create and share the ThoughtWorks
Technology Radar in support of that mission.
The ThoughtWorks Technology Advisory
Board, a group of senior technology leaders at
ThoughtWorks, creates the Radar. They meet
regularly to discuss the global technology
strategy for ThoughtWorks and the technology
trends that significantly impact our industry.

The Radar captures the output of the

Technology Advisory Board’s discussions in a
format that provides value to a wide range of
stakeholders, from developers to CTOs. The
content is intended as a concise summary.

We encourage you to explore these technologies.

The Radar is graphical in nature, grouping items
into techniques, tools, platforms and languages
& frameworks. When Radar items could appear
in multiple quadrants, we chose the one that
seemed most appropriate. We further group
these items in four rings to reflect our current
position on them.

For more background on the Radar, see

thoughtworks.com/radar/faq.

TECHNOLOGY RADAR | 3
 New

Radar at Moved in/out

a glance
No change

Our Radar is forward looking. To make

room for new items, we fade items that
haven’t moved recently, which isn’t a
reflection on their value but rather on
The Radar is all about tracking interesting our limited Radar real estate.
things, which we refer to as blips. We organize
the blips in the Radar using two categorizing
elements: quadrants and rings. The quadrants
represent different kinds of blips. The rings
indicate what stage in an adoption lifecycle we
think they should be in.
Hold Assess Trial Adopt Adopt Trial Assess Hold
A blip is a technology or technique that
plays a role in software development. Blips Adopt
are things that are “in motion” — that is we
find their position in the Radar is changing We feel strongly that the industry should
— usually indicating that we’re finding be adopting these items. We use them
increasing confidence in them as they move when appropriate in our projects.
through the rings.
Trial
Worth pursuing. It’s important to understand how
to build up this capability. Enterprises can try this
technology on a project that can handle the risk.

Assess
Worth exploring with the goal of
understanding how it will affect your enterprise.

Hold
Proceed with caution.

TECHNOLOGY RADAR | 4
Themes for this edition
Platform Teams Drive
Speed to Market
Increasingly, organizations are adopting a
platform team concept: set up a dedicated
group that creates and supports internal
platform capabilities — cloud native,
continuous delivery, modern observability,
AuthZ/N patterns, service mesh, and
so on — then use those capabilities to
accelerate application development, reduce
operational complexity and improve
time to market. This growing maturity
is welcome and we first featured this
technique in the Radar in 2017. But with
increasing maturity, we’re also discovering
antipatterns that organizations should
avoid. For example, “one platform to rule
them all” may not be optimal, “big platform
up front” may take years to deliver value
and “build it and they will come” might
end up as a wasted effort. Instead, using
a product-thinking approach can help
you clarify what each of your internal
platforms should provide, depending on
its customers. Companies that put their
platform teams behind a ticketing system
like an old-school operations silo find
the same disadvantages of misaligned
prioritization: slow feedback and response,
resource allocation contention and other
well-known problems caused by the
silo. We’ve also seen several new tools
and integration patterns for teams and
technologies emerge, allowing more
effective partitioning of both.
Consolidated Convenience
over Best in Class
As engineering practices that feature
automation, scale and other modern
goals become more commonplace with
development teams, we see corresponding
developer-facing tool integration on
many platforms, particularly in the cloud
space. For example, artifact repositories,
source control, CI/CD pipelines, wikis, and
similar tools were usually hand-picked by
development teams and stitched together
à la carte. Now, delivery platforms such
as Azure DevOps and ecosystems such
as GitHub have subsumed many of these
tool categories. While the level of maturity
varies across platform offerings, the appeal
of a “one-stop shop” for delivery tooling
is undeniable. Overall, it seems that the
trade-off lies with having consolidated tool
stacks offer greater developer convenience
and less churn, but the set of tools rarely
represents the best possible.
Perennially “Too
Complex to Blip”
In Radar nomenclature, the final status
after discussion for many complex topics
is “TCTB — too complex to blip”: items
that defy classification because they
offer a number of pros and cons, a high
amount of nuance as to the applicability
of the advice or tool or other reasons
that prevent us from summarizing our
opinions in a few sentences. Frequently,
these topics go on to articles, podcasts,
and other non-Radar destinations. Some
of our richest conversations center
on these topics: they’re important but
complex, preventing a single succinct
point of view. Numerous topics recur
meeting after meeting — and, critically,
with several of our client engagements
— that eventually fall to TCTB, including
monorepos, orchestration guidelines for
distributed architectures and branching
models, among others. For those who
wonder why these important topics don’t
make it into the Radar, it’s not for lack
of awareness or desire on our part. Like
many topics in software development,
too many trade-offs exist to allow clear,
unambiguous advice. We sometimes do
find smaller pieces of the larger topics that
we can offer advice on that do make it in
the Radar, but the larger topics remain
perpetually too nuanced and unsettled for
the Radar.
Discerning the Context for
Architectural Coupling
A topic that recurs virtually every meeting
(see “Perennially ‘Too Complex to Blip’”)
is the appropriate level of coupling
in software architecture between
microservices, components, API gateways,
integration hubs, frontends, and so on...
pretty much everywhere two pieces of
software might connect, architects and
developers struggle finding the correct
level of coupling — much common advice
encourages extreme decoupling, but
that makes building workflows difficult.
Coupling in architecture touches on many
important considerations: how things
are wired, understanding the inherent
semantic coupling within each problem
domain, how things call one another or
how transactionality works (sometimes
in combination with other tricky features
like scalability). Software can’t exist
without some level of coupling outside of
singular monolithic systems; arriving at
the right set of trade-offs to determine
the types and levels of coupling becomes
a critical skill with modern architectures.
We do see specific bad practices such as
generating code for client libraries and
good practices such as the judicious use
of the BFF patterns. However, general
advice in this realm is useless and silver
bullets don’t exist. Invest time and effort
in understanding the factors at play when
making these decisions on a case-by-case
basis rather than seeking a generic but
inadequate solution.
TECHNOLOGY RADAR | 5
 The Radar
Techniques Tools
Adopt Adopt
1. API expand-contract 52. Sentry
2. Continuous delivery for machine learning (CD4ML)
3. Design systems Trial
4. Platform engineering product teams 53. axe-core
5. Service account rotation approach 54. dbt
55. esbuild
Trial 56. Flipper
6. Cloud sandboxes 57. Great Expectations
7. Contextual bandits 58. k6
8. Distroless Docker images 59. MLflow
9. Ethical Explorer 60. OR-Tools
33
10. Hypothesis-driven legacy renovation 61. Playwright
11. Lightweight approach to RFCs 62. Prowler
32
12. Simplest possible ML 63. Pyright
31 13. SPA injection 64. Redash
25 68 65. Terratest
24
26 14. Team cognitive load
69 70 71
15. Tool-managed Xcodeproj 66. Tuple
80
23 16. UI/BFF shared types 67. Why Did You Render
30
72
73
Assess Assess
22
17. Bounded low-code platforms 68. Buildah and Podman
16 54
29 21 15 57
74
18. Decentralized identity 69. GitHub Actions
12 53 56
58
19. Deployment drift radiator 70. Graal Native Image
13
75 20. Homomorphic encryption 71. HashiCorp Boundary
20 11 14 55
60 21. Hotwire 72. imgcook
59 76
28
22. Import maps for micro frontends 73. Longhorn
10 61
19 77 23. Open Application Model (OAM) 74. Operator Framework
5 63 24. Privacy-focused web analytics 75. Recommender
62
9 4 25. Remote mob programming 76. Remote - WSL
78
27
18 64 26. Secure multiparty computing 77. Spectral
3
7 8 66
78. Yelp detect-secrets
52 65 79 79. Zally
17 6 2 Hold
1 67 27. GitOps
28. Layered platform teams Hold
Hold Assess Trial Adopt Adopt Trial Assess Hold 29. Naive password complexity requirements 80. AWS CodePipeline
30. Peer review equals pull request
31. SAFe™
40 34 93
94
104 32. Separate code and pipeline ownership Languages &
81
82
92
33. Ticket-driven platform operating models Frameworks
41
103 Adopt
35
36
88 90 91 Platforms 81. Combine
42 87 82. LeakCanary
102 Adopt
86 89
43 101 Trial
Trial 83. Angular Testing Library
50 38 85 34. AWS Cloud Development Kit
37 83
84. AWS Data Wrangler
44 35. Backstage 85. Blazor
45 84
100
36. Delta Lake 86. FastAPI
39
37. Materialize 87. io-ts
99 38. Snowflake 88. Kotlin Flow
46 98 39. Variable fonts 89. LitElement
48
47 96 97 90. Next.js
Assess 91. On-demand modules
49 95 40. Apache Pinot 92. Streamlit
51 41. Bit.dev 93. SWR
42. DataHub 94. TrustKit
43. Feature Store
44. JuiceFS Assess
45. Kafka API without Kafka 95. .NET 5
46. NATS 96. bUnit
47. Opstrace 97. Dagster
48. Pulumi 98. Flutter for Web
49. Redpanda 99. Jotai and Zustand
100. Kotlin Multiplatform Mobile
Hold 101. LVGL
50. Azure Machine Learning 102. React Hook Form
51. Homemade infrastructure-as-code (IaC) products 103. River
New Moved in/out No change 104. Webpack 5 Module Federation

Hold
TECHNOLOGY RADAR

Techniques
Techniques 33
Adopt
1. API expand-contract
2. Continuous delivery for machine
learning (CD4ML)
32 3. Design systems
API expand-contract 4. Platform engineering product
Adopt 31
25 68 teams
26
24 69 70 715. Service account rotation approach
The API expand-contract pattern, sometimes 80
called parallel change, will be familiar to 23
30 Trial
many, especially when used with databases 72
6. Cloud
73 sandboxes
or code; however, we only see low levels of
22 7. Contextual bandits
adoption with APIs. Specifically, we’re seeing
21 15
16 54 8. Distroless
74 Docker images
complex versioning schemes and breaking 29 57
58 9. Ethical Explorer
changes used in scenarios where a simple 12 53
13 56 10. Hypothesis-driven
75
legacy
expand and then contract would suffice.
20 11 55 renovation
For example, first adding to an API while 14 60 11. Lightweight
28 59 76 approach to RFCs
deprecating an existing element, and then
10 12.
61 Simplest possible ML
only later removing the deprecated elements 19
13. 63SPA injection 77
once consumers are switched to the newer 5
62 14. Team cognitive load
schema. This approach does require 9 4
18 15. 64Tool-managed78Xcodeproj
some coordination and visibility of the API 27 3 16. UI/BFF shared types
consumers, perhaps through a technique 7 8 66
52 65 79
such as consumer-driven contract testing. 17 2
6 1 Assess
67
17. Bounded low-code platforms
Hold Assess Trial Adopt Adopt
Decentralized identity
18. Trial Assess Hold
Continuous delivery for 19. Deployment drift radiator
machine learning (CD4ML) 20. Homomorphic encryption
Adopt 94
40 34 21. Hotwire
93
104
22. Import maps for micro frontends
82
We see continuous delivery for machine challenge to deliver accessible and usable in product development because they allow 81 23. 92Open Application Model (OAM)
learning (CD4ML) as a good default products with consistent style.41This is teams to focus. They can address strategic 24. Privacy-focused web analytics
starting point for any ML solution that is 103
particularly true in larger organizations 35 challenges around the product itself without 25. Remote mob programming
88 90 91 multiparty computing
being deployed into production. Many with multiple teams working on different reinventing
36 the wheel every time a new 26. Secure
organizations are becoming more reliant on 42 87
products. Design systems define a collection visual component is needed. 102
ML solutions for both customer offerings of design patterns, component libraries 86 Hold
89
43 101
and internal operations so it makes sound and good design and engineering practices 27. GitOps
business sense to apply the lessons and that ensure consistent digital
50 products. Platform engineering
38 28. Layered platform teams
37 85
good practice captured by continuous Built on the corporate style guides of the44 83 29. Naive password complexity
product teams
delivery (CD) to ML solutions. past, design systems offer shared libraries requirements
45 Adopt 84
and documents that are easy to find and 39 30. Peer 100
review equals pull request
use. Generally, guidance is written down as As noted in one of the themes for this 31. SAFe™
99
Design systems code and kept under version control so that edition,
46 the industry is increasingly gaining 32.
98 Separate code and pipeline
Adopt the guide is less ambiguous and easier to experience with48 platform engineering 97 ownership
47 96
maintain than simple documents. Design product teams that create and support 33. Ticket-driven platform operating
As application development becomes systems have become a standard approach internal platforms. These
49 platforms are95 models
increasingly dynamic and complex, it’s a when working across teams and disciplines 51used by teams across an organization

8 | TECHNOLOGY RADAR
Techniques
and accelerate application development,
reduce operational complexity and improve
time to market. With increasing adoption
we’re also clearer on both good and bad
patterns for this approach. When creating a
Named after “bandits,” or platform, it’s critical to have clearly defined
slot machines, in casinos, customers and products that will benefit
this algorithm explores from it rather than building in a vacuum. We
different options to learn caution against layered platform teams that
more about expected simply preserve existing technology silos
but apply the “platform team” label as well
outcomes and balances
as against ticket-driven platform operating
by exploiting the options models. We’re still big fans of using concepts
that perform well. from Team Topologies as we think about
how best to organize platform teams. We
(Contextual bandits) consider platform engineering product
teams to be a standard approach and a
significant enabler for high-performing IT.
Service account
rotation approach
Adopt
We strongly advise organizations to make
sure, when they really need to use cloud
service accounts, that they are rotating
the credentials. Rotation is one of the
three R’s of security. It is far too easy
for organizations to forget about these
accounts unless an incident occurs. This
is leading to accounts with unnecessarily
broad permissions remaining in use for long
periods alongside a lack of planning for how
to replace or rotate them. Regularly applying
a cloud service account rotation approach
also provides a chance to exercise the
principle of least privilege.
Cloud sandboxes
Trial
As the cloud is becoming more and more a
commodity and being able to spin up cloud
sandboxes is easier and available at scale,
our teams prefer cloud-only (as opposed to
local) development environments to reduce
maintenance complexity. We’re seeing that
the tooling to do local simulation of cloud-
native services limits the confidence in
developer build and test cycles; therefore,
we’re looking to focus on standardizing
cloud sandboxes over running cloud-native
components on a developer machine.
This will drive good infrastructure-as-code
practices as a forcing function and good
onboarding processes for provisioning
sandbox environments for developers. There
are risks associated with this transition,
as it assumes that developers will have an
absolute dependency on cloud environment
availability, and it may slow down the
developer feedback loop. We strongly
recommend you adopt some lean governance
practices regarding standardization of these
sandbox environments, especially with regard
to security, IAM and regional deployments.
Contextual bandits
Trial
Contextual bandits is a type of
reinforcement learning that is well suited
for problems with exploration/exploitation
trade-offs. Named after “bandits,” or
slot machines, in casinos, the algorithm
explores different options to learn more
about expected outcomes and balances it
by exploiting the options that perform well.
We’ve successfully used this technique in
scenarios where we’ve had little data to
train and deploy other machine-learning
models. The fact that we can add context
to this explore/exploit trade-off makes it
suitable for a wide variety of use cases
including A/B testing, recommendations
and layout optimizations.
Distroless Docker images
Trial
When building Docker images for our
applications, we’re often concerned with
two things: the security and the size
of the image. Traditionally, we’ve used
container security scanning tools to detect
and patch common vulnerabilities and
exposures and small distributions such as
Alpine Linux to address the image size and
distribution performance. But with rising
security threats, eliminating all possible
attack vectors is more important than ever.
That’s why distroless Docker images are
becoming the default choice for deployment
containers. Distroless Docker images
reduce the footprint and dependencies by
doing away with a full operating system
distribution. This technique reduces security
scan noise and the application attack
surface. Moreover, fewer vulnerabilities
need to be patched and as a bonus, these
smaller images are more efficient. Google
has published a set of distroless container
images for different languages. You can
create distroless application images using
the Google build tool Bazel or simply use
multistage Dockerfiles. Note that distroless
containers by default don’t have a shell for
debugging. However, you can easily find
debug versions of distroless containers
online, including a BusyBox shell. Distroless
Docker images is a technique pioneered by
Google and, in our experience, is still largely
confined to Google-generated images.
We would be more comfortable if there
were more than one provider to choose
from. Also, use caution when applying
Trivy or similar vulnerability scanners since
distroless containers are only supported in
more recent versions.
Ethical Explorer
Trial
The group behind Ethical OS — the
Omidyar Network, a self-described
social change venture created by eBay
founder Pierre Omidyar — has released
a new iteration called Ethical Explorer.
The new Ethical Explorer pack draws
TECHNOLOGY RADAR | 9

on lessons learned from using Ethical
OS and adds further questions for
product teams to consider. The kit,
which can be downloaded for free and
folded into cards to trigger discussion,
has open-ended question prompts
for several technical “risk zones,”
including surveillance (“can someone
use our product or service to track or
identify other users?”), disinformation,
exclusion, algorithmic bias, addiction,
data control, bad actors and outsized
power. The included field guide has
activities and workshops, ideas for
starting conversations and tips for
gaining organizational buy-in. While we’ve
a long way to go as an industry to better
represent the ethical externalities of our
digital society, we’ve had some productive
conversations using Ethical Explorer,
and we’re encouraged by the broadening
awareness of the importance of product
decisions in addressing societal issues.
Hypothesis-driven
legacy renovation
Trial
We’re often asked to refresh, update or
remediate legacy systems that we didn’t
originally build. Sometimes, technical
issues need our attention such as
improving performance or reliability. One
common approach to address these issues
is to create “technical stories” using the
same format as a user story but with a
technical outcome rather than a business
one. But these technical tasks are often
difficult to estimate, take longer than
anticipated or don’t end up having the
desired outcome. An alternative, more
successful method is to apply hypothesis-
driven legacy renovation. Rather than
working toward a standard backlog, the
team takes ownership of a measurable
technical outcome and collectively
establishes a set of hypotheses about the
10 | TECHNOLOGY RADAR
problem. They then conduct iterative, time-
boxed experiments to verify or disprove
each hypothesis in order of priority.
The resulting workflow is optimized for
reducing uncertainty rather than following
a plan toward a predictable outcome.
Lightweight approach to RFCs
Trial
As organizations drive toward evolutionary
architecture, it’s important to capture
decisions around design, architecture,
techniques and teams’ ways of workings.
The process of collecting and aggregating
feedback that will lead to these decisions
begin with Request for Comments
(RfCs). RfCs are a technique for collecting
context, design and architectural ideas
and collaborating with teams to ultimately
come to decisions along with their context
and consequences. We recommend that
organizations take a lightweight approach
to RFCs by using a simple standardized
template across many teams as well as
version control to capture RfCs.
It’s important to capture these in an audit
of these decisions to benefit future team
members and to capture the technical
and business evolution of an organization.
Mature organizations have used RfCs
in autonomous teams to drive better
communication and collaboration especially
in cross-team relevant decisions.
Simplest possible ML
Trial
All major cloud providers offer a dazzling
array of machine-learning (ML) solutions.
These powerful tools can provide a lot of
value, but come at a cost. There is the pure
run cost for these services charged by the
cloud provider. In addition, there is a kind of
operations tax. These complex tools need to
Techniques
be understood and operated, and with each
new tool added to the architecture this tax
burden increases. In our experience, teams
often choose complex tools because they
underestimate the power of simpler tools
such as linear regression. Many ML problems When it comes to legacy
don’t require a GPU or neural networks. For modernization in single-
that reason we advocate for the simplest page apps (SPAs), instead
possible ML, using simple tools and models of wrapping the legacy
and a few hundred lines of Python on the system we instead embed
compute platform you have at hand. Only
the beginning of the
reach for the complex tools when you can
demonstrate the need for them. new SPA into the HTML
document containing the
old one and let it slowly
SPA injection expand in functionality.
Trial
(SPA Injection)
The strangler fig pattern is often the default
strategy for legacy modernization, where the
new code wraps around the old and slowly
absorbs the ability to handle all the needed
functionality. That sort of “outside-in”
approach works well for a number of legacy
systems, but now that we’ve had enough
experience with single-page applications
(SPA) for them to become legacy systems
themselves, we’re seeing the opposite
“inside-out” approach used to replace them.
Instead of wrapping the legacy system, we
instead embed the beginning of the new
SPA into the HTML document containing
the old one and let it slowly expand in
functionality. The SPA frameworks don’t
even need to be the same as long as users
can tolerate the performance hit of the
increased page size (e.g., embedding a new
React app inside an old AngularJS one). SPA
injection allows you to iteratively remove the
old SPA until the new one completely takes
over. Whereas a strangler fig can be viewed
as a type of parasite that uses the host tree’s
stable external surface to support itself until
it takes root and the host itself dies, this
approach is more like injecting an outside
agent into the host, relying on functionality
of the original SPA until it can completely
take over.
Techniques Team cognitive load
Trial
A system’s architecture mimics
organizational structure and its
Team interaction is one of communication. It’s not big news that we
the variables that impacts should be intentional about how teams
speed and the ease with interact — see, for instance, the Inverse
which teams deliver value Conway Maneuver. Team interaction is one
to their customers. The of the variables for how fast and how easily
teams can deliver value to their customers.
Team Topologies author
We were happy to find a way to measure
developed an assessment
these interactions; we used the Team
for measuring these Topologies author’s assessment which
interactions which we call gives you an understanding of how easy
team cognitive load. or difficult the teams find it to build, test
and maintain their services. By measuring
(Team cognitive load) team cognitive load, we could better advise
our clients on how to change their teams’
structure and evolve their interactions.
Tool-managed Xcodeproj
Trial
Many of our developers coding iOS in
Xcode often get headaches because the
Xcodeproj file changes with every project
change. The Xcodeproj file format is not
human-readable, hence trying to handle
merge conflicts is quite complicated and
can lead to productivity loss and risk
of messing up the entire project — if
anything goes wrong with the file, Xcode
won’t work properly and developers
will very likely be blocked. Instead of
trying to merge and fix the file manually
or version it, we recommend you use
a tool-managed Xcodeproj approach:
Define your Xcode project configuration
in YAML (XcodeGen, Struct), Ruby (Xcake)
or Swift (Tuist). These tools generate the
Xcodeproj file based on a configuration
file and the project structure. As a result,
merge conflicts in the Xcodeproj file will
be a thing of the past, and when they do
happen in the configuration file, they’re
much easier to handle.
UI/BFF shared types
Trial
With TypeScript becoming a common
language for front-end development
and Node.js becoming the preferred BFF
technology, we’re seeing increasing use
of UI/BFF shared types. In this technique,
a single set of type definitions is used to
define both the data objects returned by
front-end queries and the data served
to satisfy those queries by the back-
end server. Ordinarily, we would be
cautious about this practice because of
the unnecessarily tight coupling it creates
across process boundaries. However,
many teams are finding that the benefits
of this approach outweigh any risks of
tight coupling. Since the BFF pattern works
best when the same team owns both the
UI code and the BFF, often storing both
components in the same repository, the UI/
BFF pair can be viewed as a single cohesive
system. When the BFF offers strongly typed
queries, the results can be tailored to
the specific needs of the frontend rather
than reusing a single, general-purpose
entity that must serve the needs of many
consumers and contain more fields than
actually required. This reduces the risk
of accidentally exposing data that the
user shouldn’t see, prevents incorrect
interpretation of the returned data object
and makes the query more expressive.
This practice is particularly useful when
implemented with io-ts to enforce the run-
time type safety.
Bounded low-code platforms
Assess
One of the most nuanced decisions facing
companies at the moment is the adoption
of low-code or no-code platforms, that is,
platforms that solve very specific problems
in very limited domains. Many vendors
are pushing aggressively into this space.
The problems we see with these platforms
typically relate to an inability to apply good
engineering practices such as versioning.
Testing too is typically really hard. However,
we noticed some interesting new entrants
to the market — including Amazon
Honeycode, which makes it easy to create
simple task or event management apps,
and Parabola for IFTTT-like cloud workflows
— which is why we’re once again including.
bounded low-code platforms in this volume.
Nevertheless, we remain deeply skeptical
about their wider applicability since these
tools, like Japanese Knotweed, have a knack
of escaping their bounds and tangling
everything together. That’s why we still
strongly advise caution in their adoption.
Decentralized identity
Assess
In 2016, Christopher Allen, a key
contributor to SSL/TLS, inspired us
with an introduction of 10 principles
underpinning a new form of digital identity
and a path to get there, the path to self-
sovereign identity. Self-sovereign identity,
also known as decentralized identity,
is a “lifetime portable identity for any
person, organization, or thing that does
not depend on any centralized authority
and can never be taken away,” according
to the Trust over IP standard. Adopting
and implementing decentralized identity
is gaining momentum and becoming
attainable. We see its adoption in privacy-
respecting customer health applications,
government healthcare infrastructure
and corporate legal identity. If you want
to rapidly get started with decentralized
identity, you can assess Sovrin Network,
Hyperledger Aries and Indy OSS, as well
as decentralized identifiers and verifiable
credentials standards. We’re watching this
space closely as we help our clients with
their strategic positioning in the new era of
digital trust.
TECHNOLOGY RADAR | 11
Deployment drift radiator
Assess
A deployment drift radiator makes version
drift visible for deployed software across
multiple environments. Organizations
using automated deployments may require
manual approvals for environments that
get closer to production, meaning the
code in these environments might well be
lagging several versions behind current
development. This technique makes this lag
visible via a simple dashboard showing how
far behind each deployed component is for
each environment. This helps to highlight
the opportunity cost of completed software
not yet in production while drawing
attention to related risks such as security
fixes not yet deployed.
Homomorphic encryption
Assess
Fully homomorphic encryption (HE)
refers to a class of encryption methods
that allow computations (such as search
and arithmetic) to be performed directly
on encrypted data. The result of such a
computation remains in encrypted form,
which at a later point can be decrypted and
revealed. Although the HE problem was
first proposed in 1978, a solution wasn’t
constructed until 2009. With advances
in computing power and the availability
of easy-to-use open-source libraries —
including SEAL, Lattigo, HElib and partially
homomorphic encryption in Python —
HE is becoming feasible in real-world
applications. The motivating scenarios
include privacy-preserving use cases,
where computation can be outsourced
to an untrusted party, for example,
running computation on encrypted data
in the cloud, or enabling a third party to
aggregate homomorphically encrypted
12 | TECHNOLOGY RADAR
intermediate federated machine learning
results. Moreover, most HE schemes are
considered to be secure against quantum
computers, and efforts are underway
to standardize HE. Despite its current
limitations, namely performance and
feasibility of the types of computations, HE
is worth your attention.
Hotwire
Assess
Hotwire (HTML over the wire) is a technique
to build web applications. Pages are
constructed out of components, but unlike
modern SPAs the HTML for the components
is generated on the server side and then
sent “over the wire” to the browser. The
application has only a small amount of
JavaScript code in the browser to stitch the
HTML fragments together. Our teams, and
doubtlessly others too, experimented with
this technique after asynchronous web
requests gained cross-browser support
around 2005, but for various reasons it never
gained much traction.
Today, Hotwire uses modern web browser
and HTTP capabilities to achieve the speed,
responsiveness and dynamic nature of
single-page apps (SPAs). It embraces simpler
web application design by localizing the logic
to the server and keeping the client-side code
simple. The team at Basecamp has released
a few Hotwire frameworks that power
their own application, including Turbo and
Stimulus. Turbo includes a set of techniques
and frameworks to speed up the application
responsiveness by preventing whole page
reloading, page preview from cache and
decomposing the page into fragments with
progressive enhancements on request.
Stimulus is designed to enhance static HTML
in the browser by connecting JavaScript
objects to the page elements on the HTML.
Import maps for
Techniques
micro frontends
Assess
When composing an application out of
several micro frontends, some part of Organizations using
the system needs to decide which micro automated deployments
frontends to load and where to load sometimes require
them from. So far, we’ve either built manual approvals for
custom solutions or relied on a broader environments that get
framework like single-spa. Now there
closer to production,
is a new standard, import maps, that
helps in both cases. Our first experiences
leading the code in
show that using import maps for micro these environments
frontends allows for a neat separation to lag behind current
of concerns. The JavaScript code states development. A
what to import and a small script tag in deployment drift radiator
the initial HTML response specifies where makes this lag visible via a
to load the frontends from. That HTML
simple dashboard.
is obviously generated on the server
side, which makes it possible to use
(Deployment drift radiator)
some dynamic configuration during its
rendering. In many ways this technique
reminds us of linker/loader paths for
dynamic Unix libraries. At the moment
import maps are only supported by
Chrome, but with the SystemJS polyfill
they’re ready for wider use.
Open Application Model (OAM)
Assess
The Open Application Model (OAM) is an
attempt to bring some standardization
to the space of shaping infrastructure
platforms as products. Using the
abstractions of components, application
configurations, scopes and traits,
developers can describe their applications
in a platform-agnostic way, while platform
implementers define their platform in
terms of workload, trait and scope. Since
we last talked about the OAM, we’ve
followed one of its first implementations
with interest, KubeVela. KubeVela is close
Techniques
to release 1.0, and we’re curious to see if
implementations like this can substantiate
the promise of the OAM idea.
Secure multiparty Privacy-focused web analytics
computing solves the Assess
problem of collaborative
computing that protects Privacy-focused web analytics is a technique
for gathering web analytics without
privacy between parties
compromising end user privacy by keeping
that do not trust each the end users truly anonymous. One
other without involving a surprising consequence of General Data
third party. Protection Regulation (GDPR) compliance is
the decision taken by many organizations to
(Secure multiparty degrade the user experience with complex
computing) cookie consent processes, especially when
the user doesn’t immediately consent to the
“all the cookies” default settings. Privacy-
focused web analytics has the dual benefit of
both observing the spirit and letter of GDPR
while also avoiding the need to introduce
intrusive cookie consent forms. One
implementation of this approach is Plausible.
Remote mob programming
Assess
Mob programming is one of those
techniques that our teams have found to
be easier when done remotely. Remote
mob programming is allowing teams to
quickly “mob” around an issue or piece
of code without the physical constraints
of only being able to fit so many people
around a pairing station. Teams can quickly
collaborate on an issue or piece of code
without having to connect to a big display,
book a physical meeting room or find a
whiteboard.
Secure multiparty computing
Assess
Secure multiparty computing (MPC) solves
the problem of collaborative computing
that protects privacy between parties
that do not trust each other. It’s aim is to
safely calculate an agreed-upon problem
without a trusted third party, while each
participant is required to partake in the
calculation result and can’t be obtained
by other entities. A simple illustration
for MPC is the millionaires’ problem: two
millionaires want to understand who is
the richest, but neither want to share
their actual net worth with each other nor
trust a third party. The implementation
approaches of MPC vary; scenarios
may include secret sharing, oblivious
transfer, garbled circuits or homomorphic
encryption. Some commercial MPC
solutions that have recently appeared
(e.g., Antchain Morse) claim to help solve
the problems of secret sharing and secure
machine learning in scenarios such as
multiparty joint credit investigation and
medical records data exchange. Although
these platforms are attractive from a
marketing perspective, we’ve yet to see
whether they’re really useful.
GitOps
Hold
We suggest approaching GitOps with a
degree of care, especially with regard to
branching strategies. GitOps can be seen
as a way of implementing infrastructure
as code that involves continuously
synchronizing and applying infrastructure
code from Git into various environments.
When used with a “branch per environment”
infrastructure, changes are promoted from
one environment to the next by merging
code. While treating code as the single
source of truth is clearly a sound approach,
we’re seeing branch per environment
lead to environmental drift and eventually
environment-specific configs as code merges
become problematic or even stop entirely.
This is very similar to what we’ve seen in the
past with long-lived branches with GitFlow.
Layered platform teams
Hold
The explosion of interest around software
platforms has created a lot of value for
organizations, but the path to building a
platform-based delivery model is fraught
with potential dead ends. It’s common in
the excitement of new paradigms to see a
resurgence of older techniques rebranded
with the new vernacular, making it easy to
lose sight of the reasons we moved past
those techniques in the first place. For an
example of this rebranding, see our blip on
traditional ESBs make a comeback as API
gateways in the previous Radar. Another
example we’re seeing is rehashing the
approach of dividing teams by technology
layer but calling them platforms. In the
context of building an application, it used
to be common to have a front-end team
separate from the business logic team
separate from the data team, and we see
analogs to that model when organizations
segregate platform capabilities among teams
dedicated to a business or data layer. Thanks
to Conway’s Law, we know that organizing
platform capability teams around business
capabilities is a more effective model, giving
the team end-to-end ownership of the
capability, including data ownership. This
helps to avoid the dependency management
headaches of layered platform teams, with
the front-end team waiting on the business
logic team waiting on the data team to get
anything done.
Naive password complexity
requirements
Hold
Password policies are a standard default
for many organizations today. However,
we’re still seeing organizations requiring
passwords to include a variety of symbols,
numbers, uppercase and lowercase letters
as well as inclusion of special characters.
TECHNOLOGY RADAR | 13

These are naive password complexity
requirements that lead to a false sense of
security as users will opt for more insecure
passwords because the alternative is
difficult to remember and type. According
to NIST recommendations, the primary
factor in password strength is password
length, and therefore users should choose
long passphrases with a maximum
requirement of 64 characters (including
spaces). These passphrases are more
secure and memorable.
Peer review equals pull request
Hold
Some organizations seem to think peer
review equals pull request; they’ve taken
the view that the only way to achieve a peer
review of code is via a pull request. We’ve
seen this approach create significant team
bottlenecks as well as significantly degrade
the quality of feedback as overloaded
reviewers begin to simply reject requests.
Although the argument could be made that
this is one way to demonstrate code review
“regulatory compliance” one of our clients
was told this was invalid since there was
no evidence the code was actually read by
anyone prior to acceptance. Pull requests
are only one way to manage the code review
workflow; we urge people to consider other
approaches, especially where there is a need
to coach and pass on feedback carefully.
SAFe™
Hold
Our positioning regarding “being agile
before doing agile” and our opinions
around this topic shouldn’t come as a
surprise; but since SAFe™ (Scaled Agile
14 | TECHNOLOGY RADAR
Framework®), per Gartner’s May 2019
report, is the most considered and most
used enterprise agile framework, and since
we’re seeing more and more enterprises
going through organizational changes, we
thought it was time to raise awareness
on this topic again. We’ve come across
organizations struggling with SAFe’s over-
standardized, phase-gated processes.
Those processes create friction in the
organizational structure and its operating
model. It can also promote silos in the
organization, preventing platforms from
becoming real business capabilities
enablers. The top-down control generates
waste in the value stream and discourages
engineering talent creativity, while limiting
autonomy and experimentation in the
teams. Rather than measuring effort and
focusing on standardized ceremonies,
we recommend a leaner, value-driven
approach and governance to help eliminate
organizational friction such as EDGE, as
well as a team cognitive load assessment to
identify types of teams and determine how
they should better interact with each other.
Scaled Agile Framework® and SAFe™ are
trademarks of Scaled Agile, Inc.
Separate code and
pipeline ownership
Hold
Ideally, but especially when teams are
practicing DevOps, the deployment pipeline
and the code being deployed should be
owned by the same team. Unfortunately, we
still see organizations where there is separate
code and pipeline ownership, with the
deployment pipeline configuration owned
by the infrastructure team; this results in
delays to changes, barriers to improvements
Techniques
and a lack of development team ownership
and involvement in deployments. One
cause of this can clearly be the separate
team, another can be the desire to retain
“gatekeeper” processes and roles. Although
there can be legitimate reasons for using this Some organizations
approach (e.g., regulatory control), in general seem to think peer review
we find it painful and unhelpful. equals pull request.
We’ve seen this approach
create significant team
Ticket-driven platform bottlenecks as well as
operating models
significantly degrade the
Hold
quality of feedback.
One of the ultimate goals of a platform
should be to reduce ticket-based processes (Peer review equals pull
to an absolute minimum, as they create request)
queues in the value stream. Sadly,
we still see organizations not pushing
forcefully enough toward this important
goal, resulting in a ticket-driven platform
operating model. This is particularly
frustrating when ticket-based processes
are put in front of platforms that are built
on top of the self-service and API-driven
features of public cloud vendors. It’s hard
and not necessary to achieve self-service
with very few tickets right from the start,
but it needs to be the destination.
Over-reliance on bureaucracy and lack
of trust are among the causes of this
reluctance to move away from ticket-based
processes. Baking more automated checks
and alerts into your platform is one way to
help cut the cord from approval processes
with tickets. For example, provide teams
with visibility into their run costs and put in
automated guardrails to avoid accidental
explosion of costs. Implement security
policy as code and use configuration
scanners or analyzers like Recommender to
help teams do the right thing.
TECHNOLOGY RADAR

Platforms