Risk categories
| Category | Examples |
|---|
| Technical | OS dependencies, native libraries, stateful sessions, unsupported database |
| Operational | No CI/CD, missing health checks, no monitoring |
| Security | Hardcoded secrets, TLS not configured, inadequate IAM |
| Compliance | GDPR, PCI-DSS, HIPAA — sensitive data without encryption in transit |
| Organizational | Lack of Kubernetes expertise, missing technical owner |
| Data | High data volume, replication, no automated backup |
| Network | Hardcoded IPs, multicast dependencies, complex firewall rules |
| Performance | No baseline metrics, aggressive SLA without auto-scaling |
Risk classification
Likelihood
| Level | Description |
|---|
| Low | Unlikely to occur during migration |
| Medium | May occur and warrants monitoring |
| High | Likely to occur — requires active mitigation |
Impact
| Level | Description |
|---|
| Low | Minimal impact, does not affect schedule |
| Medium | May delay migration or require rework |
| High | May stall or halt the migration |
| Critical | Blocking — completely prevents migration until resolved |
AI risk analysis
The "Analyze with AI" button in the Risks tab of an application sends the full application profile to OpenAI, which returns 5 to 10 contextual risks automatically identified. Each AI-suggested risk includes: title, detailed description, category, likelihood, impact, mitigation suggestion, and whether it is blocking. Click "Register →" on any suggestion to pre-fill the form.
Note
AI analysis complements risks identified by the wizard — it does not replace them. Always review and validate suggestions before registering.
Mitigation plans
Each risk can have multiple linked mitigation plans, each with: action description, owner (responsible user), status (pending, in-progress, done) and resolution date.
Risk fields
| Field | Description |
|---|
title | Short risk name |
description | Detailed description |
category | technical, operational, security, compliance, organizational, data, network, performance |
likelihood | low, medium, high |
impact | low, medium, high, critical |
is_blocking | Whether the risk is a hard blocker for the migration |
status | open, in-progress, mitigated, accepted, closed |
target_resolution_date | Resolution deadline |