Provider Registry
A project-level register of third-party external systems with compliance tracking, security posture assessment, and concentration risk analysis - distributable as a preferred supplier list from the Architecture Hub.
What Is a Provider?
A provider is any external system that your architecture depends on - Stripe for payments, Azure AD for identity, Snowflake for analytics, a partner's REST API, or an internal platform service managed by another team. Each provider entry captures identity, compliance metadata, and security posture in a structured format.
Provider Data Model
The Provider Editor
The provider registry editor is a master-detail view accessible from the architecture map toolbar or project settings. The left panel shows a searchable list of providers with their icons. The right panel provides the full editor for the selected provider, covering identity, compliance, and security fields. Providers can be added and removed, with impact analysis running automatically on deletion to show affected constructs.
Referencing Providers
Providers are referenced from three places in the architecture, each creating a typed edge in the Intent Graph.
| Context | How It Works | Graph Edge |
|---|---|---|
| Schema Projections | Mark a projection as backed by an external provider API | Projection references provider |
| Architecture Map Steps | Assign a provider to a step that represents an external system | Step references provider |
| Step Flow Nodes | Tag processing steps that depend on a provider | Node references provider |
Provider Reports
Three purpose-built reports analyse your provider dependencies from different angles.
Hub Mode - Preferred Supplier Lists
In the Architecture Hub, the provider registry becomes a centralised preferred supplier list. The estate architect defines approved providers in the hub workspace and distributes them to project teams via the artefact pipeline. Projects import the approved list and select from it when configuring external dependencies. When projects export back to the hub, their provider references are included, enabling estate-wide concentration analysis, compliance governance, and security posture assessment across the full portfolio.