Skip to main content

Glossary

Comprehensive glossary of migration, cloud, and software engineering terms. Learn key concepts and terminology for successful technology migrations.

Migration

The process of moving data, applications, or infrastructure from one environment to another

software-process3 related terms

Lift and Shift

Moving an application to a new environment with minimal or no changes to its architecture

software-process3 related terms

Replatforming

Making targeted modifications to an application to take advantage of cloud capabilities without changing core architecture

software-process3 related terms

Refactoring

Restructuring existing code without changing its external behavior to improve quality and maintainability

software-process3 related terms

Technical Debt

The implied cost of additional rework caused by choosing an easy solution now instead of a better approach

software-process3 related terms

Strangler Fig

A migration pattern where new functionality wraps and gradually replaces the legacy system

software-process3 related terms

Microservices

An architectural style structuring an application as a collection of loosely coupled, independently deployable services

cloud-architecture3 related terms

Containerization

Packaging software code with its dependencies so it can run uniformly across computing environments

infrastructure3 related terms

CI/CD

Continuous Integration and Continuous Deployment - practices for automating code integration and delivery

devops3 related terms

Infrastructure as Code

Managing and provisioning infrastructure through machine-readable configuration files

devops3 related terms

API Gateway

A server that acts as a single entry point for API calls, handling routing, composition, and cross-cutting concerns

cloud-architecture3 related terms

Service Mesh

A dedicated infrastructure layer for handling service-to-service communication in microservices

infrastructure3 related terms

Schema Migration

The process of changing a database schema from one version to another

database3 related terms

ETL

Extract, Transform, Load - a process for moving and transforming data between systems

data-engineering3 related terms

Feature Flag

A technique allowing features to be enabled or disabled without deploying new code

deployment3 related terms

Rollback

Reverting a system to a previous version after a failed deployment or migration

devops3 related terms

Cutover

The point in migration when traffic or operations switch from the old system to the new

cloud-architecture3 related terms

Backward Compatibility

The ability of new versions to work with data or interfaces from older versions

software-process3 related terms

Polyglot Persistence

Using different data storage technologies for different data storage needs within an application

cloud-architecture3 related terms

Bounded Context

A central pattern in Domain-Driven Design that defines clear boundaries within which a model is defined

cloud-architecture3 related terms

Cloud-Native

An approach to building and running applications that fully exploits the advantages of the cloud computing delivery model

cloud-architecture4 related terms

Modernization

The process of updating legacy systems, applications, or infrastructure to leverage current technologies and best practices

software-process4 related terms

API Versioning

The practice of managing changes to an API over time while maintaining backward compatibility for existing consumers

api-design3 related terms

Automation

The use of technology to perform tasks with minimal human intervention, often applied to testing, deployment, and infrastructure management

software-process3 related terms

Canary Deployment

A deployment strategy that rolls out changes to a small subset of users before deploying to the entire infrastructure

software-process3 related terms

Cloud Migration

The process of moving data, applications, and workloads from on-premises infrastructure to cloud-based services

software-process3 related terms

CloudFormation

AWS service that provides infrastructure as code capabilities for provisioning and managing AWS resources using templates

devops3 related terms

Code Cleanup

The process of improving code quality by removing dead code, fixing style issues, and improving readability without changing functionality

software-process3 related terms

Code Quality

A measure of how well-written, maintainable, and reliable source code is based on factors like readability, complexity, and test coverage

quality-management3 related terms

Compatibility

The ability of systems, software, or data formats to work together without modification or special adaptation

software-process3 related terms

Containers

Lightweight, portable units of software that package code and dependencies together to run consistently across different computing environments

infrastructure3 related terms

Dark Launching

A deployment technique where new features are released to production but hidden from users, allowing testing in real conditions

software-process3 related terms

Data Integration

The process of combining data from different sources to provide a unified view and enable consistent data access across systems

data-engineering3 related terms

Data Pipeline

A series of data processing steps that move and transform data from source systems to destination systems

data-engineering3 related terms

Database Migration

The process of moving data between databases, including schema changes, data transformation, and platform transitions

data-engineering3 related terms

Database Per Service

A microservices pattern where each service owns and manages its own database, ensuring loose coupling between services

software-process3 related terms

Domain-Driven Design

A software design approach that focuses on modeling software based on the business domain and its logic

software-process3 related terms

Deployment

The process of releasing and installing software applications to a target environment where they can be accessed by users

software-process3 related terms

Deprecation

The process of marking features, APIs, or components as outdated and planned for removal in future versions

software-process3 related terms

Digital Transformation

The integration of digital technology into all areas of a business, fundamentally changing how it operates and delivers value

software-process3 related terms

Disaster Recovery

A set of policies, tools, and procedures to enable the recovery of vital technology infrastructure after a natural or human-induced disaster

devops3 related terms

Distributed Systems

Computing systems where components located on networked computers communicate and coordinate their actions by passing messages

cloud-architecture3 related terms

Docker

A platform for developing, shipping, and running applications in containers, providing consistent environments across development and production

devops3 related terms

Domain Model

A conceptual model of a business domain that incorporates both behavior and data, representing the key entities and their relationships

cloud-architecture3 related terms

ELT

Extract, Load, Transform - a data integration approach where data is first loaded into the target system before transformation occurs

data-engineering3 related terms

Envoy

A high-performance open-source edge and service proxy designed for cloud-native applications, commonly used in service mesh architectures

devops3 related terms

Facade Pattern

A structural design pattern that provides a simplified interface to a complex subsystem, hiding its complexity from clients

software-process3 related terms

Feature Toggle

A technique that allows teams to modify system behavior without changing code, enabling features to be turned on or off dynamically

software-process3 related terms

Flyway

An open-source database migration tool that uses SQL scripts to version control and apply database schema changes

devops3 related terms

Go-Live

The moment when a system, application, or migration goes into production use, marking the transition from development to operational status

software-process3 related terms

Incremental Migration

A migration approach that moves systems or data in small, manageable pieces rather than all at once

software-process3 related terms

Istio

An open-source service mesh platform that provides traffic management, security, and observability for microservices architectures

devops3 related terms

Kubernetes

An open-source container orchestration platform for automating deployment, scaling, and management of containerized applications

devops3 related terms

Legacy Modernization

The process of updating or replacing outdated legacy systems with modern technologies to improve performance and maintainability

software-process3 related terms

Lift, Tinker, and Shift

A migration approach that combines lift-and-shift with minor modifications to optimize applications for the target environment

software-process3 related terms

Liquibase

An open-source database schema change management tool that tracks, versions, and deploys database changes

devops3 related terms

Load Balancer

A device or software that distributes network traffic across multiple servers to ensure reliability and optimal resource utilization

infrastructure3 related terms

Maintenance

Ongoing activities to keep software systems operational, including bug fixes, updates, and performance improvements

devops3 related terms

Multi-Model Database

A database management system that supports multiple data models (relational, document, graph) within a single integrated backend

data-engineering3 related terms

NoSQL

A category of database systems that store and retrieve data using mechanisms different from traditional relational databases

data-engineering3 related terms

OCI

Open Container Initiative - an open governance structure for creating industry standards around container formats and runtimes

compliance3 related terms

Optimization

The process of improving system performance, efficiency, or resource utilization through code changes, configuration, or architecture modifications

software-process3 related terms

Pipeline

An automated sequence of processes that move code from development through testing and into production deployment

software-process3 related terms

Pulumi

An infrastructure as code platform that allows defining cloud infrastructure using general-purpose programming languages

devops3 related terms

Rehosting

A migration strategy that moves applications to a new infrastructure with minimal or no changes, also known as lift-and-shift

software-process3 related terms

Restore

The process of recovering data, systems, or applications from backups after data loss, corruption, or disaster

devops3 related terms

Reverse Proxy

A server that sits in front of backend servers and forwards client requests to them, providing load balancing, caching, and security

infrastructure3 related terms

Sidecar Pattern

A design pattern where a helper container runs alongside the main application container to provide supporting features like logging or networking

software-process3 related terms

SOA

Service-Oriented Architecture - an architectural style where applications are composed of loosely coupled, interoperable services

cloud-architecture3 related terms

Switchover

The process of transferring operations from one system to another, typically during migration or disaster recovery scenarios

software-process3 related terms

Terraform

An open-source infrastructure as code tool that enables defining and provisioning infrastructure across multiple cloud providers

devops3 related terms

Transition

The process of moving from one state, system, or approach to another, often describing the period during a migration

software-process3 related terms

Undo

The capability to reverse changes or operations, returning a system to a previous state

software-process3 related terms

Adapter Pattern

A structural design pattern that allows incompatible interfaces to work together by wrapping an object in an adapter

software-process3 related terms

Anti-Corruption Layer

A pattern that isolates a system from external systems by translating between their models, preventing corruption of internal domain models

software-process3 related terms

API

Application Programming Interface - a set of definitions and protocols that allows software components to communicate with each other

software-process3 related terms

Backup

A copy of data or system configurations stored separately to enable recovery in case of data loss, corruption, or disaster

devops3 related terms

Blue-Green Deployment

A release strategy that maintains two identical production environments, allowing instant switching between versions with zero downtime

software-process3 related terms

Breaking Change

A modification to software that causes existing functionality or integrations to stop working as expected

software-process3 related terms

Business Continuity

Planning and preparation to ensure that critical business functions can continue during and after a disaster or disruption

devops3 related terms

Data Migration

The process of transferring data between storage types, formats, or systems while ensuring data integrity and minimal downtime

data-engineering3 related terms

Data Ownership

The principle of assigning responsibility for data quality, access control, and lifecycle management to specific teams or services

data-engineering3 related terms

DevOps

A set of practices combining software development and IT operations to shorten development cycles and deliver high-quality software continuously

software-process3 related terms

Document Database

A type of NoSQL database that stores data as semi-structured documents, typically in JSON or BSON format

data-engineering3 related terms

Entity

An object defined primarily by its identity rather than its attributes, maintaining continuity through state changes over time

cloud-architecture3 related terms

Event-Driven Architecture

A software architecture pattern where the flow of the program is determined by events such as user actions or messages from other systems

cloud-architecture3 related terms

High Availability

A system design approach that ensures a specified level of operational performance, typically measured as uptime percentage

infrastructure3 related terms

Interoperability

The ability of different systems, devices, or applications to connect and exchange information effectively

software-process3 related terms

Parallel Run

A migration strategy where old and new systems operate simultaneously to validate the new system before full cutover

software-process3 related terms

Patching

The process of applying updates to software to fix bugs, address security vulnerabilities, or add minor improvements

devops3 related terms

Performance

The measure of how efficiently a system executes tasks, typically evaluated through metrics like response time, throughput, and resource usage

quality-management3 related terms

Phased Migration

A migration approach that divides the transition into distinct phases, each with specific goals and deliverables

software-process3 related terms

Scaling

The ability to increase or decrease system capacity to handle varying workloads, either vertically or horizontally

infrastructure3 related terms

Support

Ongoing assistance provided to users and systems to ensure proper operation, troubleshoot issues, and maintain service levels

devops3 related terms

Version Control

A system for tracking and managing changes to files and code over time, enabling collaboration and history tracking

software-process3 related terms

Branching

Creating parallel lines of development in version control to work on features or fixes independently

software-process2 related terms

Data Governance

A framework for managing data availability, usability, integrity, and security within an organization

data-engineering1 related term

Data Protection

Practices and technologies to safeguard data from unauthorized access, corruption, or loss

devops2 related terms

Documentation

Written materials that describe how software works, including guides, references, and specifications

software-process2 related terms

Git

A distributed version control system for tracking changes in source code during software development

devops2 related terms

Helpdesk

A resource for users to get technical support, troubleshoot issues, and receive assistance with software or systems

devops2 related terms

Integration

The process of combining different systems, components, or software applications to work together as a unified system

software-process3 related terms

Messaging

A communication pattern where systems exchange data through messages, often asynchronously

cloud-architecture1 related term

MongoDB

A popular open-source document-oriented NoSQL database designed for scalability and flexibility

devops3 related terms

Monitoring

The practice of observing and tracking system performance, health, and behavior in real-time

devops2 related terms

Planning

The process of defining goals, strategies, and steps to achieve successful project outcomes

software-process1 related term

Redundancy

Duplication of critical system components to ensure availability and reliability in case of failure

infrastructure2 related terms

REST

Representational State Transfer - an architectural style for designing networked applications using HTTP methods

cloud-architecture1 related term

Security

Measures and practices to protect systems, networks, and data from unauthorized access and threats

devops0 related terms

Standards

Established norms, specifications, or requirements that ensure consistency and interoperability

software-process1 related term

Testing

The process of evaluating software to identify defects, verify functionality, and ensure quality

quality-management2 related terms

Updates

Changes or improvements applied to software to fix issues, add features, or enhance security

devops2 related terms

Value Object

An object that is defined by its attributes rather than its identity, with no distinct lifecycle

cloud-architecture3 related terms

Elasticity

Elasticity is the ability of a cloud system to automatically add or remove computing resources in response to changing demand, so capacity tracks load in near real time.

cloud4 related terms

Availability Zone

An availability zone is one or more discrete data centers within a cloud region, with independent power, cooling, and networking, designed to be isolated from failures in other zones.

cloud-architecture4 related terms

Region

A region is a geographic area where a cloud provider operates a cluster of data centers, organized into availability zones, in which customers deploy and store resources.

cloud-architecture4 related terms

Multi-Tenancy

Multi-tenancy is a software architecture in which a single deployment serves multiple customers, called tenants, while keeping each tenant's data and configuration logically isolated.

cloud-architecture4 related terms

Serverless

Serverless is a cloud execution model in which the provider fully manages servers and scaling, running code in response to events and billing only for actual usage.

cloud3 related terms

Function as a Service (FaaS)

Function as a service is a serverless model in which developers deploy individual functions that the cloud provider runs and scales automatically in response to events.

cloud4 related terms

Infrastructure as a Service (IaaS)

Infrastructure as a service is a cloud model that provides on-demand access to fundamental computing resources such as virtual machines, storage, and networking, which customers manage themselves.

cloud4 related terms

Platform as a Service (PaaS)

Platform as a service is a cloud model that provides a managed application platform, handling servers, runtimes, and scaling so developers focus on code rather than infrastructure.

cloud3 related terms

Autoscaling

Autoscaling is the automatic adjustment of the number of running compute instances or resources based on demand, metrics, or schedules, without manual intervention.

cloud4 related terms

Spot Instance

A spot instance is spare cloud compute capacity offered at a deep discount that the provider can reclaim with little notice, suited to fault-tolerant and interruptible workloads.

cloud3 related terms

Reserved Instance

A reserved instance is a cloud pricing model in which a customer commits to using compute capacity for a one- or three-year term in exchange for a significant discount over on-demand rates.

cloud3 related terms

Edge Computing

Edge computing is a model that runs processing and storage close to where data is generated or consumed, rather than in a centralized cloud region, to reduce latency and bandwidth use.

cloud-architecture4 related terms

Content Delivery Network (CDN)

A content delivery network is a geographically distributed set of servers that cache and serve content from locations near users, reducing latency and offloading origin servers.

cloud-architecture3 related terms

Virtual Private Cloud (VPC)

A virtual private cloud is a logically isolated section of a public cloud where a customer can define their own private network, including subnets, IP ranges, routing, and firewall rules.

infrastructure4 related terms

Object Storage

Object storage is a data storage architecture that manages data as discrete objects with metadata and a unique identifier in a flat namespace, accessed over HTTP APIs and scaling to massive volumes.

infrastructure4 related terms

Block Storage

Block storage is a storage architecture that splits data into fixed-size blocks presented to a server as a raw volume, on which a file system or database can be placed for low-latency, high-performance access.

infrastructure3 related terms

Shared Responsibility Model

The shared responsibility model is a cloud security framework that divides security duties between the provider, who secures the cloud infrastructure, and the customer, who secures what they run in the cloud.

cloud-architecture3 related terms

Egress

Egress is the movement of data out of a network, system, or cloud provider, often metered and billed; in cloud computing it commonly refers to data transfer leaving a provider's network to the internet or another region.

infrastructure3 related terms

Cold Start

A cold start is the added latency incurred when a serverless function or container must initialize a fresh execution environment before handling a request, rather than reusing a warm, already-running one.

cloud4 related terms

Container

A container is a lightweight, isolated unit that packages an application together with its dependencies and runs as an isolated process on a shared host operating system kernel.

containers2 related terms

Container Image

A container image is an immutable, read-only template containing an application and its dependencies, packaged as ordered filesystem layers from which running containers are created.

containers2 related terms

Container Registry

A container registry is a service that stores, versions, and distributes container images, allowing clients to push built images and pull them for deployment.

infrastructure2 related terms

Pod

A pod is the smallest deployable unit in Kubernetes, consisting of one or more tightly coupled containers that share a network namespace, storage volumes, and lifecycle.

containers4 related terms

Deployment (Kubernetes)

A Kubernetes Deployment is a controller that declaratively manages a set of identical pods, handling rollouts, rollbacks, and scaling by maintaining the desired number of replicas.

containers4 related terms

ReplicaSet

A ReplicaSet is a Kubernetes controller that ensures a specified number of identical pod replicas are running at all times, recreating pods that fail or are deleted.

containers4 related terms

StatefulSet

A StatefulSet is a Kubernetes controller for stateful applications that provides pods with stable, unique identities, ordered deployment and scaling, and persistent per-pod storage.

containers4 related terms

DaemonSet

A DaemonSet is a Kubernetes controller that ensures a copy of a specified pod runs on every (or a selected subset of) node in the cluster, commonly used for node-level agents.

containers4 related terms

Namespace (Kubernetes)

A Kubernetes namespace is a virtual partition within a cluster that scopes resource names and enables isolation, access control, and resource quotas across teams or environments.

containers4 related terms

Ingress

Ingress is a Kubernetes resource that defines rules for routing external HTTP and HTTPS traffic to internal services, typically based on hostnames and URL paths.

containers4 related terms

Service (Kubernetes)

A Kubernetes Service is an abstraction that exposes a logical set of pods as a single stable network endpoint, providing service discovery and load balancing across them.

containers4 related terms

ConfigMap

A ConfigMap is a Kubernetes object that stores non-confidential configuration data as key-value pairs, decoupling configuration from container images so applications can be configured per environment.

containers4 related terms

Secret (Kubernetes)

A Kubernetes Secret is an object for storing and distributing small amounts of sensitive data, such as passwords, tokens, and keys, to pods with tighter handling than ordinary configuration.

security3 related terms

Helm Chart

A Helm chart is a packaged, templated, and versioned collection of Kubernetes manifests that Helm uses to install, upgrade, and manage an application as a single releasable unit.

containers4 related terms

Operator Pattern

The Operator pattern is a Kubernetes approach that encodes operational knowledge for a specific application into custom controllers and custom resources, automating tasks like deployment, upgrades, backup, and failover.

cloud-architecture4 related terms

Control Plane (Kubernetes)

The control plane is the set of Kubernetes components that manage the cluster's overall state, making global decisions such as scheduling and responding to events to drive the cluster toward its desired state.

cloud-architecture4 related terms

Kubelet

The kubelet is the primary node agent in Kubernetes that runs on every worker node, ensuring the containers described in the pods assigned to that node are running and healthy.

containers3 related terms

Horizontal Pod Autoscaler

The Horizontal Pod Autoscaler is a Kubernetes controller that automatically adjusts the number of pod replicas in a workload based on observed metrics such as CPU utilization or custom metrics.

cloud-architecture4 related terms

Persistent Volume

A persistent volume is a Kubernetes resource representing a piece of durable storage in the cluster whose lifecycle is independent of any individual pod, allowing data to survive pod restarts and rescheduling.

infrastructure4 related terms

ACID

ACID is a set of four properties — Atomicity, Consistency, Isolation, and Durability — that guarantee database transactions are processed reliably even in the presence of errors, crashes, or concurrent access.

database4 related terms

BASE

BASE (Basically Available, Soft state, Eventual consistency) is a consistency model for distributed systems that favors availability and partition tolerance over the strict guarantees of ACID, allowing data to converge over time.

database4 related terms

CAP Theorem

The CAP theorem states that a distributed data store can simultaneously provide at most two of three guarantees — Consistency, Availability, and Partition tolerance — forcing a trade-off when a network partition occurs.

database4 related terms

Eventual Consistency

Eventual consistency is a guarantee that, in the absence of new updates, all replicas of a piece of data will converge to the same value over time, though reads may temporarily return stale results.

database4 related terms

Sharding

Sharding is a database scaling technique that horizontally splits a dataset across multiple servers (shards), each holding a distinct subset of rows, so that load and storage are distributed.

database4 related terms

Partitioning

Partitioning is the practice of dividing a large table or dataset into smaller, more manageable pieces called partitions, which can be queried and maintained independently while appearing as a single logical entity.

database3 related terms

Replication

Replication is the process of copying and maintaining database data across multiple servers so that the same data is available on more than one node, improving availability, fault tolerance, and read scalability.

database4 related terms

Database Index

A database index is an auxiliary data structure that improves the speed of data retrieval on a table at the cost of extra storage and slower writes, by letting the engine locate rows without scanning the entire table.

database3 related terms

Normalization

Normalization is the process of organizing relational database tables to reduce data redundancy and improve integrity by decomposing them according to normal forms and linking related data with keys.

database4 related terms

Denormalization

Denormalization is the deliberate introduction of redundancy into a database schema — by duplicating or precomputing data — to improve read performance, accepting reduced write efficiency and integrity guarantees.

database4 related terms

OLTP

OLTP (Online Transaction Processing) refers to database systems optimized for large numbers of short, concurrent transactions — inserts, updates, and lookups — that support day-to-day operational applications.

database4 related terms

OLAP

OLAP (Online Analytical Processing) refers to systems optimized for complex analytical queries over large volumes of historical data, enabling aggregation, slicing, and multidimensional analysis for reporting and decision-making.

data-engineering3 related terms

Data Warehouse

A data warehouse is a centralized analytical database that stores integrated, structured data from multiple sources, optimized for querying and reporting rather than transactional processing.

data-engineering4 related terms

Data Lake

A data lake is a centralized repository that stores large volumes of raw data in its native format — structured, semi-structured, and unstructured — at low cost, with schema applied at read time rather than on ingestion.

data-engineering4 related terms

Data Lakehouse

A data lakehouse is an architecture that combines the low-cost, flexible storage of a data lake with the management, transactions, and performance of a data warehouse, using open table formats over object storage.

data-engineering3 related terms

Change Data Capture (CDC)

Change Data Capture (CDC) is a technique for identifying and capturing changes made to data in a source database — inserts, updates, and deletes — and streaming them to downstream systems in near real time.

data-engineering4 related terms

Materialized View

A materialized view is a database object that stores the precomputed result of a query physically on disk, so reads return instantly without re-executing the underlying query, at the cost of keeping the result refreshed.

database4 related terms

Primary Key

A primary key is a column or set of columns that uniquely identifies each row in a relational database table, enforcing uniqueness and non-null values and serving as the row's canonical identifier.

database4 related terms

Foreign Key

A foreign key is a column or set of columns in one relational table that references the primary key of another table, enforcing referential integrity by ensuring referenced rows exist.

database4 related terms

Large Language Model (LLM)

A large language model is a neural network trained on vast text corpora to predict the next token, enabling it to generate and understand natural language across many tasks.

ai-ml5 related terms

Token

A token is the basic unit of text an LLM processes, typically a word fragment, whole word, or character, produced by a tokenizer and mapped to a numeric ID.

ai-ml5 related terms

Tokenization

Tokenization is the process of splitting raw text into tokens that a model can map to numeric IDs, usually using a subword algorithm such as byte-pair encoding.

ai-ml4 related terms

Context Window

The context window is the maximum number of tokens a language model can consider at once, covering both the input prompt and the generated output.

ai-ml5 related terms

Embedding

An embedding is a dense numeric vector that represents the meaning of text, an image, or other data so that similar items sit close together in vector space.

ai-ml4 related terms

Vector Search

Vector search finds items whose embeddings are closest to a query embedding, enabling semantic retrieval by meaning rather than exact keyword match.

ai-ml3 related terms

Retrieval-Augmented Generation (RAG)

Retrieval-augmented generation is a technique that retrieves relevant documents at query time and supplies them to an LLM as context so its answers are grounded in external data.

ai-ml5 related terms

Fine-Tuning

Fine-tuning is the process of further training a pretrained model on a smaller, task-specific dataset to specialize its behavior, style, or domain knowledge.

ai-ml4 related terms

Prompt Engineering

Prompt engineering is the practice of designing and refining the text instructions given to a language model to steer its output toward accurate, useful results.

ai-ml4 related terms

Inference

Inference is the process of running a trained model on new inputs to produce outputs, as opposed to the training phase that creates the model.

ai-ml5 related terms

Training

Training is the process of adjusting a model's parameters from data so it learns to perform a task, typically by minimizing a loss function with gradient descent.

ai-ml3 related terms

Transformer

A transformer is a neural network architecture built around self-attention that processes sequences in parallel, forming the basis of modern large language models.

ai-ml5 related terms

Attention Mechanism

An attention mechanism lets a model weigh the relevance of different parts of its input when producing each output, focusing on the most pertinent tokens.

ai-ml4 related terms

Hallucination

Hallucination is when a language model generates fluent, confident output that is factually incorrect, fabricated, or unsupported by its sources.

ai-governance4 related terms

Temperature (LLM Sampling)

Temperature is a sampling parameter that scales an LLM's output probabilities, controlling how random or deterministic its token choices are.

ai-ml4 related terms

Top-p Sampling (Nucleus Sampling)

Top-p sampling restricts an LLM's next-token choice to the smallest set of tokens whose cumulative probability exceeds a threshold p, then samples from that set.

ai-ml4 related terms

Quantization

Quantization reduces the numeric precision of a model's weights and activations, shrinking memory use and speeding inference with limited accuracy loss.

ai-ml3 related terms

AI Agent

An AI agent is a system that uses a language model to plan and take actions toward a goal, calling tools, observing results, and iterating with limited human input.

ai-ml4 related terms

Model Context Protocol (MCP)

The Model Context Protocol is an open standard that defines how AI applications connect to external tools, data sources, and prompts through a uniform interface.

ai-ml4 related terms

Foundation Model

A foundation model is a large model pretrained on broad data at scale that can be adapted, through fine-tuning or prompting, to a wide range of downstream tasks.

ai-ml4 related terms

Zero Trust

Zero trust is a security model that assumes no user, device, or network is inherently trustworthy and requires continuous verification of every access request, regardless of its origin.

security4 related terms

Principle of Least Privilege

The principle of least privilege is a security practice that grants each user, process, or system only the minimum access rights needed to perform its task, and no more.

security4 related terms

Defense in Depth

Defense in depth is a security strategy that layers multiple, independent controls so that if one defense fails, others continue to protect the system.

security5 related terms

Encryption at Rest

Encryption at rest is the protection of stored data by encrypting it on disk or in a database, so that the data is unreadable without the correct decryption keys.

security3 related terms

Encryption in Transit

Encryption in transit protects data as it travels across a network by encrypting the communication channel, preventing eavesdropping and tampering.

security4 related terms

Asymmetric Encryption

Asymmetric encryption is a cryptographic method that uses a mathematically linked pair of keys, a public key and a private key, where data encrypted with one key can only be decrypted with the other.

security3 related terms

Public Key Infrastructure (PKI)

Public key infrastructure is the system of certificate authorities, digital certificates, and policies used to issue, manage, and validate public keys, binding them to verified identities.

security3 related terms

OAuth 2.0

OAuth 2.0 is an authorization framework that lets an application obtain limited access to a user's resources on another service without exposing the user's credentials, by using access tokens.

identity-auth4 related terms

OpenID Connect (OIDC)

OpenID Connect is an authentication layer built on top of OAuth 2.0 that lets applications verify a user's identity and obtain basic profile information using an ID token.

identity-auth4 related terms

JSON Web Token (JWT)

A JSON Web Token is a compact, URL-safe, digitally signed token that encodes claims as JSON, commonly used to transmit identity and authorization data between parties.

identity-auth4 related terms

Multi-Factor Authentication (MFA)

Multi-factor authentication is a security method that requires two or more independent forms of verification, drawn from different categories, before granting access.

identity-auth5 related terms

Single Sign-On (SSO)

Single sign-on is an authentication scheme that lets a user log in once and gain access to multiple independent applications without re-entering credentials for each.

identity-auth4 related terms

Role-Based Access Control (RBAC)

Role-based access control is an access model that assigns permissions to roles rather than individuals, and grants users access by assigning them roles.

identity-auth5 related terms

Attribute-Based Access Control (ABAC)

Attribute-based access control is an access model that grants or denies access by evaluating policies against attributes of the user, resource, action, and environment.

identity-auth5 related terms

Software Bill of Materials (SBOM)

A software bill of materials is a formal, machine-readable inventory of all components, libraries, and dependencies that make up a piece of software, along with their versions and relationships.

security4 related terms

Software Supply Chain Security

Software supply chain security is the practice of protecting every stage of building and delivering software, from dependencies and build systems to distribution, against tampering and compromise.

security4 related terms

Attestation

An attestation is a signed, machine-readable statement about a software artifact — such as how it was built or what it contains — that a consumer can cryptographically verify.

security5 related terms

Provenance

Provenance is verifiable metadata that records where a software artifact came from and how it was built — its source, build system, and inputs — so consumers can trace and trust it.

security5 related terms

DSSE (Dead Simple Signing Envelope)

DSSE is a standard format for wrapping a payload together with its signature so the signed content and its type are bound and tamper-evident.

security4 related terms

SLSA (Supply-chain Levels for Software Artifacts)

SLSA is a security framework that defines graduated levels of build integrity and provenance for software artifacts, so teams can measure and improve how trustworthy their builds are.

security4 related terms

Common Vulnerabilities and Exposures (CVE)

CVE is a public, standardized catalog that assigns a unique identifier to each publicly disclosed cybersecurity vulnerability, enabling consistent reference across tools and organizations.

security5 related terms

Common Vulnerability Scoring System (CVSS)

CVSS is an open standard for rating the severity of security vulnerabilities, producing a numerical score from 0 to 10 based on their characteristics and potential impact.

security5 related terms

Threat Modeling

Threat modeling is a structured process for identifying, analyzing, and prioritizing potential security threats to a system early in design, so defenses can be planned against them.

security5 related terms

GraphQL

GraphQL is a query language and runtime for APIs that lets clients request exactly the fields they need from a single endpoint, returning a precisely shaped response.

api-design4 related terms

gRPC

gRPC is a high-performance remote procedure call framework that uses HTTP/2 for transport and Protocol Buffers for compact, strongly typed message serialization.

api-design4 related terms

Webhook

A webhook is an HTTP callback that one system sends to a user-supplied URL when an event occurs, pushing data to subscribers instead of requiring them to poll for changes.

api-design4 related terms

Rate Limiting

Rate limiting is a technique that caps how many requests a client may make to a service within a time window, protecting capacity and enforcing fair usage.

api-design3 related terms

Idempotency

Idempotency is the property that performing an operation multiple times produces the same result as performing it once, making safe retries possible in distributed systems.

api-design4 related terms

Pagination

Pagination is the practice of dividing a large result set into smaller, ordered pages so that an API returns data in manageable chunks rather than all at once.

api-design3 related terms

OpenAPI

OpenAPI is a language-agnostic specification for describing HTTP APIs in a machine-readable document, enabling shared contracts, documentation, and code generation.

api-spec3 related terms

JSON

JSON (JavaScript Object Notation) is a lightweight, text-based data interchange format that represents structured data as key-value objects and arrays.

data-format3 related terms

Protocol Buffers

Protocol Buffers is a language-neutral, binary serialization format from Google that uses a schema definition to encode structured data compactly and efficiently.

data-format4 related terms

WebSocket

WebSocket is a protocol that provides a persistent, full-duplex communication channel over a single TCP connection, enabling real-time two-way data exchange between client and server.

web-protocol4 related terms

Server-Sent Events

Server-Sent Events (SSE) is a web standard that lets a server push a continuous, one-way stream of text updates to a client over a single long-lived HTTP connection.

web-protocol4 related terms

HTTP/2

HTTP/2 is a major revision of the HTTP protocol that adds request multiplexing, header compression, and server push over a single connection to improve web performance.

web-protocol4 related terms

HTTP/3

HTTP/3 is the third major version of HTTP, running over the QUIC transport on UDP to eliminate transport-level head-of-line blocking and speed up connection setup.

web-protocol4 related terms

TCP

TCP (Transmission Control Protocol) is a core transport protocol that provides reliable, ordered, connection-oriented delivery of a byte stream between two hosts.

network-protocol4 related terms

UDP

UDP (User Datagram Protocol) is a lightweight, connectionless transport protocol that sends datagrams without delivery guarantees, favoring low latency over reliability.

network-protocol4 related terms

DNS

DNS (Domain Name System) is the internet's distributed naming system that translates human-readable domain names into the IP addresses needed to locate servers.

network-protocol3 related terms

TLS

TLS (Transport Layer Security) is a cryptographic protocol that secures network communication by providing encryption, integrity, and authentication between two parties.

network-protocol4 related terms

CORS

CORS (Cross-Origin Resource Sharing) is a browser security mechanism that uses HTTP headers to let a server permit web pages from other origins to access its resources.

web-protocol4 related terms

Latency

Latency is the time delay between a request being made and the corresponding response beginning to arrive, typically measured as round-trip time in milliseconds.

network-protocol2 related terms

Continuous Integration (CI)

A practice where developers merge code changes into a shared repository frequently, with each merge automatically built and tested to catch integration problems early.

ci-cd4 related terms

Continuous Delivery (CD)

A practice where software is kept in a releasable state at all times, with every change automatically built, tested, and prepared for deployment, leaving the final release as a manual decision.

ci-cd4 related terms

Continuous Deployment

A practice where every change that passes the automated pipeline is released to production automatically, with no manual approval step.

ci-cd4 related terms

GitOps

An operational model in which the desired state of infrastructure and applications is declared in a Git repository and automatically reconciled into the running environment by an agent.

devops4 related terms

Canary Deployment

A release strategy in which a new version is rolled out to a small subset of users or servers first, so its behavior can be observed before exposing the whole user base.

deployment4 related terms

Observability

The degree to which the internal state of a system can be understood from the external data it produces, typically its metrics, logs, and traces.

observability4 related terms

Telemetry

The automated collection and transmission of measurement data from a running system to a remote location for monitoring and analysis.

observability4 related terms

Distributed Tracing

A technique that follows a single request as it propagates across multiple services, recording timing and context at each step to reveal the end-to-end path.

observability4 related terms

Span

The basic unit of work in distributed tracing, representing a single named, timed operation with a start, an end, and contextual attributes.

observability4 related terms

Metric

A numeric measurement of some aspect of a system captured over time, such as request rate, error count, or memory usage, used for monitoring and alerting.

observability4 related terms

Structured Logging

The practice of emitting log entries as machine-readable structured data, typically key-value pairs or JSON, rather than free-form text strings.

observability4 related terms

Service Level Objective (SLO)

A target value or range for a service level indicator over a period of time, expressing the desired level of reliability for a service.

observability4 related terms

Service Level Indicator (SLI)

A quantitative measure of a specific aspect of a service's level of service, such as the proportion of successful requests or requests served within a latency threshold.

observability4 related terms

Error Budget

The maximum amount of unreliability a service is allowed over a period, calculated as the difference between 100% and its service level objective.

observability3 related terms

Toil

Manual, repetitive, automatable operational work that scales linearly with service size and provides no lasting value, a key target for reduction in site reliability engineering.

devops4 related terms

Incident Management

The coordinated process for detecting, responding to, mitigating, and resolving unplanned disruptions to a service, then learning from them.

devops4 related terms

Postmortem

A written, blameless analysis produced after an incident that documents what happened, the impact, the root causes, and the actions to prevent recurrence.

devops4 related terms

On-Call

An arrangement in which designated engineers are available to respond to alerts and incidents outside normal working hours, usually on a rotating schedule.

devops4 related terms

Mean Time to Recovery (MTTR)

The average time taken to restore a service after a failure, measured from the start of an incident to its resolution.

devops3 related terms

Monolith

A monolith is an application built and deployed as a single, unified unit, where all functionality runs in one process or codebase rather than being split into independent services.

cloud-architecture3 related terms

Modular Monolith

A modular monolith is a single deployable application whose internal code is organized into well-isolated modules with explicit boundaries, combining a monolith's simple operations with microservice-style separation of concerns.

cloud-architecture4 related terms

Domain-Driven Design

Domain-driven design (DDD) is a software design approach that models software closely on the business domain, using a shared language between developers and domain experts and organizing the system around bounded contexts.

software-process4 related terms

CQRS (Command Query Responsibility Segregation)

CQRS is a pattern that separates the model used to change data (commands) from the model used to read data (queries), allowing each side to be optimized, scaled, and evolved independently.

cloud-architecture4 related terms

Event Sourcing

Event sourcing is a pattern that stores the full history of changes to application state as an immutable sequence of events, reconstructing current state by replaying those events rather than storing only the latest snapshot.

cloud-architecture4 related terms

Idempotent Operation

An idempotent operation produces the same result whether it is performed once or many times, so repeating it has no additional effect beyond the first successful application.

cloud-architecture4 related terms

Concurrency

Concurrency is the ability of a system to make progress on multiple tasks during overlapping time periods, structuring work so tasks can be interleaved, regardless of whether they execute simultaneously.

programming-language4 related terms

Parallelism

Parallelism is the simultaneous execution of multiple computations, typically across several CPU cores or machines, to complete work faster than sequential execution.

programming-language4 related terms

Immutability

Immutability is the property of data that cannot be changed after it is created; modifications produce new values instead of altering the original, which simplifies reasoning and concurrency.

programming-language4 related terms

Pure Function

A pure function always returns the same output for the same input and has no side effects, meaning it does not read or modify any state outside its own arguments.

programming-language3 related terms

Dependency Injection

Dependency injection is a design technique in which an object receives the other objects it depends on from an external source rather than creating them itself, improving testability and decoupling.

software-process2 related terms

Garbage Collection

Garbage collection is automatic memory management in which a runtime reclaims memory occupied by objects that are no longer reachable by the program, freeing developers from manual deallocation.

programming-language4 related terms

Memory Safety

Memory safety is the property of a program that prevents invalid memory access such as buffer overflows, use-after-free, and null pointer dereferences, eliminating a major source of bugs and security vulnerabilities.

programming-language4 related terms

Type System

A type system is a set of rules in a programming language that assigns types to values and expressions and governs how they may be combined, catching certain classes of errors before or during execution.

programming-language4 related terms

Static Typing

Static typing is a language approach in which the types of variables and expressions are known and checked at compile time, before the program runs, catching type errors early.

programming-language3 related terms

Dynamic Typing

Dynamic typing is a language approach in which variable types are checked at run time rather than compile time, allowing variables to hold values of any type and offering flexibility at the cost of later error detection.

programming-language3 related terms

Compilation

Compilation is the process of translating source code written in a programming language into a lower-level form, such as machine code or bytecode, that a machine or runtime can execute.

programming-language4 related terms

Interpretation

Interpretation is the execution of a program by directly reading and running its source code or an intermediate representation, statement by statement, without first compiling it to native machine code.

programming-language4 related terms

Test-Driven Development

Test-driven development (TDD) is a software practice in which developers write a failing automated test before writing the code to make it pass, then refactor, repeating in short cycles.

testing2 related terms

Mocking

Mocking is a testing technique that replaces a real dependency with a controllable stand-in object, letting a test isolate the code under test and verify how it interacts with that dependency.

testing2 related terms

MIT License

The MIT License is a short, permissive open-source license that lets anyone use, modify, and distribute the software with almost no restrictions, as long as the original copyright and license notice are kept.

licensing4 related terms

ISC License

The ISC License is a permissive open-source license functionally equivalent to the MIT and simplified BSD licenses, using simpler wording.

licensing4 related terms

Apache License 2.0

The Apache License 2.0 is a permissive open-source license that adds an explicit patent grant and attribution requirements on top of MIT-style permissions.

licensing4 related terms

BSD 3-Clause License

The BSD 3-Clause ("New" or "Modified" BSD) License is a permissive license that also forbids using the project's name or contributors to endorse derived products.

licensing4 related terms

BSD 2-Clause License

The BSD 2-Clause ("Simplified" or "FreeBSD") License is a permissive license requiring only that the copyright notice and disclaimer be retained.

licensing4 related terms

GNU GPL v3.0

The GNU General Public License v3.0 is a strong copyleft license: derivative works that are distributed must also be released under the GPL with their source code.

licensing4 related terms

GNU GPL v2.0

The GNU General Public License v2.0 is a widely used strong copyleft license (used by the Linux kernel) requiring distributed derivatives to be released under GPL with source.

licensing4 related terms

GNU LGPL v3.0

The GNU Lesser General Public License v3.0 is a weak copyleft license that lets proprietary software link to the library, while changes to the library itself stay open.

licensing4 related terms

Mozilla Public License 2.0

The Mozilla Public License 2.0 is a file-level (weak) copyleft license: changes to MPL-licensed files must be shared, but they can be combined with proprietary code.

licensing4 related terms

GNU AGPL v3.0

The GNU Affero General Public License v3.0 extends the GPL to network use: users who interact with the software over a network must be offered its source code.

licensing4 related terms

The Unlicense

The Unlicense is a public-domain dedication that releases software with no conditions, letting anyone use it for any purpose without attribution.

licensing4 related terms

CC0 1.0

CC0 1.0 is a Creative Commons public-domain dedication that waives copyright to the fullest extent the law allows; it is common for data and content.

licensing4 related terms

Software Drift

Software drift is the growing gap between the dependencies, runtimes, and frameworks a codebase actually uses and their current, supported versions.

software-process5 related terms

DriftScore

DriftScore is Vibgrate’s 0–100 measure of maintainability drift — how far a stack has moved from current, supported baselines — where 0 is fully current and 100 is maximum drift.

software-process6 related terms

RiskScore

RiskScore is Vibgrate’s 0–100 measure of security and business exposure — the probability and consequence of harm right now — where 0 is safest and 100 is maximum risk.

security6 related terms

DriftRisk™

DriftRisk™ is Vibgrate’s derived 0–100 executive headline, computed purely from DriftScore and RiskScore — one number for how much pressure a codebase puts on the team to act.

security4 related terms

Exploit Prediction Scoring System (EPSS)

EPSS is a daily-updated probability estimate from FIRST, scoring each CVE from 0 to 1 on how likely it is to be exploited in the wild within the next 30 days.

security5 related terms

Known Exploited Vulnerabilities (KEV) Catalog

The KEV catalog is CISA’s authoritative list of vulnerabilities with reliable evidence of active exploitation in the wild — confirmed fact, not prediction.

security5 related terms

Likely Exploited Vulnerabilities (LEV)

LEV is a proposed NIST metric (CSWP 41) that estimates, from a CVE’s EPSS history, the cumulative probability the vulnerability has ever been exploited — a conservative lower bound.

security4 related terms

Open Source Vulnerabilities (OSV)

OSV is a distributed vulnerability database and schema for open-source software, aggregating ecosystem advisory feeds with precise, package-native version matching.

security4 related terms

GitHub Security Advisories (GHSA)

GHSA is GitHub’s curated database of security advisories for open-source packages, with maintainer-reviewed affected-version ranges and fix versions.

security4 related terms

National Vulnerability Database (NVD)

The NVD is NIST’s database that enriches CVE records with CVSS severity scores, product identifiers, and reference data.

security5 related terms

Stakeholder-Specific Vulnerability Categorization (SSVC)

SSVC is a decision-tree methodology from CMU SEI and CISA that prioritizes vulnerabilities by contextual facts — exploitation status, automatability, and mission impact — rather than a single severity number.

security4 related terms

Reachability Analysis

Reachability analysis determines whether the vulnerable code inside a dependency is actually invoked by your application, separating exploitable findings from theoretical ones.

security4 related terms

Libyear

A libyear is the calendar time between the dependency version you use and the latest stable release — a simple, ecosystem-comparable measure of dependency freshness.

software-process4 related terms

Lockfile

A lockfile records the exact, resolved version of every dependency in a project — direct and transitive — so installs are reproducible and the true dependency set is auditable.

software-process4 related terms

End of Life (EOL)

End of life is the date after which a software version no longer receives support or security patches from its maintainer — leaving any vulnerability found afterwards permanently unpatched on that version.

software-process4 related terms

Code Drift

Code drift is how far a codebase — and the AI writing in it — has moved away from current, correct, well-understood truth: current versions, correct APIs, and an accurate picture of the code's own structure.

software-process5 related terms

Dependency Drift

Dependency drift is the growing gap between the dependency versions a project declares and the current, supported releases of those same packages.

software-process6 related terms

AI Context Drift

AI context drift is the gap between the context an AI coding assistant works from — its training data and generic docs — and the exact versions and structure of the codebase it is editing.

ai4 related terms

Drift Budget

A drift budget is a maximum acceptable DriftScore that a project agrees not to exceed, enforced automatically in CI so drift cannot quietly grow back.

software-process4 related terms

Software Currency

Software currency is how up to date a system's components are relative to their current, supported releases — the positive framing of low drift.

software-process5 related terms