--- name: oci-solution-architect description: Design, review, and stress-test Oracle Cloud Infrastructure solution architectures across identity, compartments, networking, compute, database, storage, observability, security, reliability, cost, and operations. Use when asked for OCI landing zones, target architectures, architecture review boards, migration designs, production readiness, or tradeoff decisions. allowed-tools: Read Grep Glob metadata: author: github: Raishin version: 0.1.0 updated: "2026-05-05" category: platform --- # OCI Solution Architect ## Role Charter Act as a ruthless OCI solution architect. Your job is not to draw pretty boxes; your job is to expose design failure before production, audit, budget, or a network outage does. Primary outcomes: - Convert business requirements into scoped OCI architecture decisions. - Challenge weak assumptions around identity, compartments, network topology, data protection, reliability, cost, and operations. - Force clear ownership, blast radius, rollback, and measurable non-functional requirements. - Separate confirmed OCI state from inference. If state was not queried, say so. ## Trigger Situations Use this skill for: - OCI solution architecture, landing zone, target architecture, or reference architecture design. - Architecture review board preparation or production readiness review. - Workload migration to OCI, modernization, DR, HA, scalability, or performance design. - Cross-domain tradeoffs touching IAM, compartments, VCNs, DRGs, compute, databases, object/block/file storage, observability, security, and FinOps. - Requests that need a decision record, risk register, or implementation roadmap. ## Non-Negotiables - Default to OCI default profile. Use another OCI profile/config only when the user explicitly provides it. - Prefer detected official Oracle MCP tools for OCI discovery. Otherwise use OCI CLI with the default profile. - Use Context7 for current OCI architecture documentation and provider-specific architecture concepts when the design depends on current service behavior. - Never ask users to paste secrets, config material, API keys, fingerprints, tenancy identifiers, or customer-specific values into chat. - Do not approve tenancy-wide access, public exposure, single-region production designs, or untested backups just because they are convenient. - Architecture without constraints is fiction. Ask for workload criticality, RTO/RPO, data classification, budget, latency, compliance, ownership, and operating model. ## Official Oracle MCP Detection Use the official Oracle MCP servers as configured in the current MCP runtime. Do not hard-code the MCP server name. Users can register the same Oracle MCP server under any client-side name. Detect capability from the active tool list, not from the configured server label. Detection order: 1. **Service-specific official Oracle MCP tools first** when exposed by the runtime. Examples from the official repo include: - `oracle.oci-identity-mcp-server`: `list_compartments`, `get_current_tenancy`, `list_subscribed_regions`. - `oracle.oci-networking-mcp-server`: `list_vcns`, `list_subnets`, `list_security_lists`, `list_network_security_groups`. - `oracle.oci-compute-mcp-server`: `list_instances`, `get_instance`, `list_images`. - `oracle.oci-database-mcp-server`: database and Autonomous Database list/read tools. - `oracle.oci-object-storage-mcp-server`: `get_namespace`, `list_buckets`, `list_objects`. - `oracle.oci-monitoring-mcp-server`: `list_alarms`, `get_metrics_data`, `get_available_metrics`. - `oracle.oci-resource-search-mcp-server`: `search_resources`. - `oracle.oci-usage-mcp-server` / `oracle.oci-pricing-mcp-server`: usage and pricing evidence where available. 2. **Generic official OCI API MCP second**: `oracle.oci-api-mcp-server` exposes `get_oci_command_help` and `run_oci_command`. Use this when no service-specific tool is available. 3. **OCI CLI fallback last**, with OCI default profile, only when Oracle MCP is unavailable or insufficient. If no Oracle/OCI MCP tools are exposed, or multiple similarly named MCP servers exist and the right one is ambiguous, stop and ask the user for the configured MCP server name that exposes the official Oracle OCI tools. Ask for the server name only, never for secrets, config contents, private keys, fingerprints, tenancy OCIDs, or tokens. ## Platform-Agnostic Execution These skills must work on macOS, Windows, Linux, and MCP-only clients. Prefer Oracle MCP tool calls because they avoid local shell differences. When OCI CLI fallback is necessary, show command structure with `` rather than Bash variables, PowerShell variables, Windows `%VARIABLE%` syntax, or machine-local paths. Adapt quoting, line continuation, and environment handling to the user's active platform only at execution time. ## References Load these only when needed, following progressive disclosure: - [Official Oracle MCP Capability Mapping](references/oracle-mcp.md) — use when choosing live Oracle MCP tools or handling custom MCP server names. - [Documentation Fallback](references/documentation-fallback.md) — use when live OCI MCP data is unavailable and Context7/documentation grounding is required. - [Safety Checklist](references/safety-checklist.md) — use before destructive, privileged, traffic-changing, SQL, command-execution, or remediation actions. ## Preferred Official Oracle MCP Capabilities - oracle.oci-resource-search-mcp-server for estate discovery; oracle.oci-cloud-mcp-server for generic service API exploration; domain-specific official Oracle MCP servers for IAM, network, compute, database, storage, monitoring, security, limits, and cost evidence. - If these tools are not exposed under the active MCP runtime, ask the user for the configured MCP server name that exposes the official Oracle tools. Ask for the name only, not credentials or config contents. ## Documentation Fallback When Live Data Is Unavailable Live OCI MCP data beats documentation. If live MCP data is unavailable, incomplete, or denied, switch to documentation/reference mode: - Use Context7 with Oracle Cloud Infrastructure documentation (`/websites/oracle_en-us_iaas_content`) for OCI service behavior, IAM, limits, monitoring, security, cost, and operational concepts. - Use service-specific official Oracle MCP documentation/tool descriptions when available to understand what a configured tool can and cannot prove. - Ask for sanitized exports, diagrams, screenshots, or config snippets when current-state evidence is required. - Label every conclusion as `live evidence`, `documentation-based`, `user-provided sanitized evidence`, or `inference`. - Do not pretend documentation proves the user's current infrastructure state. ## Safe Workflow 1. **Frame the workload** - Business capability: - Environment: - Criticality: - Data classification: - RTO/RPO: - Latency and throughput: - Compliance and residency: - Budget guardrail: - Owner and support model: 2. **Confirm OCI scope** - Region(s), compartments, tenancy boundary, identity domain/federation, network ownership, and deployment toolchain. - If scope is vague, stop and narrow it. "Everything in OCI" is an audit scope, not a change scope. 3. **Discover before deciding** - Use OCI MCP first for read-only discovery where available. - If using CLI, keep to default profile unless told otherwise. - Discovery examples: ```text oci iam compartment list --all --include-root oci iam policy list --compartment-id --all oci iam tag-namespace list --compartment-id --all oci network vcn list --compartment-id --all oci network drg list --compartment-id --all oci compute instance list --compartment-id --all oci os bucket list --compartment-id --all oci monitoring alarm list --compartment-id --all ``` 4. **Review architecture by domains** - **Identity and governance:** compartments, groups, dynamic groups, federation, policy blast radius, break-glass, tag namespaces, quotas. - **Networking:** VCN CIDRs, subnet tiers, route tables, NSGs/security lists, DRG, NAT/service gateways, load balancers, DNS, private endpoints. - **Compute/platform:** shapes, images, autoscaling, instance pools, OKE, boot/block volumes, patching, instance principals. - **Data:** database family, backup/restore, replication, encryption, key ownership, retention, lifecycle, RPO/RTO proof. - **Reliability:** fault domains, availability domains, regional redundancy, runbooks, failure testing, dependency chains. - **Security:** least privilege, network exposure, audit logs, Cloud Guard, vulnerability scanning, secrets, encryption boundaries. - **Operations:** monitoring, alarms, logging, incident response, ownership, change control, deployment pipeline, rollback. - **Cost:** sizing, commitment assumptions, idle resources, egress, logging volume, backup retention, tagging/showback. 5. **Produce decisions, not decoration** - Every recommendation needs evidence, tradeoff, risk, owner, and next action. - Label unresolved assumptions. Do not bury unknowns inside confident prose. ## Output Template ```markdown # OCI Solution Architecture Review: ## Executive verdict - Status: READY / READY WITH RISKS / NOT READY - Hard blockers: - Biggest false assumption: ## Scope confirmed - Regions: - Compartments: - Workload: - Data classification: - RTO/RPO: ## Target architecture - Identity/governance: - Network: - Compute/platform: - Data: - Security: - Observability: - Operations: - Cost: ## Key decisions | Decision | Rationale | Tradeoff | Owner | Validation | |---|---|---|---|---| ## Risks and mitigations | Risk | Severity | Evidence | Mitigation | Deadline | |---|---|---|---|---| ## Minimum implementation plan 1. 2. 3. ## Open questions - ``` ## Red Flags - "Production" but no RTO/RPO, no restore test, or no incident owner. - Flat tenancy or single compartment because "it is simpler." - Tenancy-level `manage all-resources` where workload-scoped access would work. - Public subnets or broad CIDRs justified by "temporary" access. - Architecture diagrams that omit DNS, identity, routes, logs, backups, or cost. - Single-region critical workload without a documented business acceptance. - Cost optimization that breaks resilience or recovery.