🖥️ Platform

The software layer that turns raw infrastructure into something developers build on. Operating systems, runtimes, web servers, dependency management, and version control — the stage on which applications perform.

🖥️

Operating Systems

Base system software managing hardware and processes

Linux Server

RHEL, Ubuntu Server, Amazon Linux, CentOS Stream

The dominant server OS in enterprise and cloud. Open-source with commercial support options. Powers the vast majority of cloud workloads, containers, and web infrastructure.

🏛️ Context: Standardise on one or two distributions. RHEL for compliance-heavy environments; Ubuntu/Amazon Linux for cloud-native. Automate hardening with CIS benchmarks and golden image pipelines.

Windows Server

Windows Server 2022, Active Directory, IIS

Microsoft's server OS. Required for .NET Framework applications, Active Directory, SQL Server, and Exchange. Per-core licensing carries significant cost in virtualised and cloud environments.

🏛️ Context: Windows licensing in cloud can double compute costs. Migrate .NET Framework to .NET (cross-platform) where possible. Evaluate Azure Hybrid Benefit for existing licences.

Container-Optimised OS

Bottlerocket, Flatcar, Talos Linux

Minimal, immutable operating systems designed solely to run containers. Stripped of unnecessary packages, automatically updated, hardened by default. Dramatically reduced attack surface.

🏛️ Context: Use for Kubernetes node pools. Immutability means no SSH, no package manager — changes require rebuilding the image. This enforces infrastructure-as-code discipline.

☕

Runtimes & Frameworks

Execution engines and developer building blocks

JVM Ecosystem

Java, Kotlin, Scala, Spring Boot, Quarkus

The Java Virtual Machine runs bytecode from multiple languages. Mature ecosystem with enterprise-grade frameworks, JIT compilation, and the largest enterprise talent pool.

🏛️ Context: JVM is the enterprise workhorse. GraalVM Native Image reduces startup for serverless. Spring Boot dominates; Quarkus/Micronaut offer Kubernetes-native alternatives with faster startup.

Node.js / JavaScript

Node.js, Deno, Bun, Express, Next.js

Server-side JavaScript runtime on V8. Event-driven non-blocking I/O excels for APIs and real-time apps. Same language on frontend and backend enables full-stack teams.

🏛️ Context: Excels for I/O-bound workloads, struggles with CPU-intensive tasks. Single-threaded by default — use worker threads or separate services for compute-heavy operations.

.NET Platform

.NET 8+, C#, ASP.NET Core, Blazor

Microsoft's cross-platform development platform. Modern .NET is open-source, runs on Linux. ASP.NET Core for web APIs, Blazor for web UIs. Strong in Microsoft-ecosystem enterprises.

🏛️ Context: Key migration: .NET Framework (Windows-only) → .NET (cross-platform). This unlocks Linux hosting and containerisation, often cutting infrastructure costs significantly.

Python

CPython, Django, FastAPI, Flask

Dominant in data science, ML/AI, automation, and scripting. FastAPI for modern high-performance APIs. Django for batteries-included web development. The GIL limits true parallelism.

🏛️ Context: Lingua franca of data/AI teams. For production APIs, prefer FastAPI over Flask. Performance-critical paths may need Go or Rust. Python 3.13+ relaxes the GIL.

Go / Rust

Golang, Rust, Systems programming

Modern systems languages. Go: simplicity, fast compilation, goroutines for concurrency. Rust: memory safety without GC, C-level performance. Both compile to single binaries with tiny container images.

🏛️ Context: Go dominates cloud tooling (Docker, K8s, Terraform are all Go). Rust emerging for performance-critical services. Both produce small, fast, secure container images.

🌐

Web Serving & Traffic

HTTP servers, proxies, and request handling

Nginx

Nginx, Nginx Plus, OpenResty

High-performance web server and reverse proxy. Event-driven architecture handles massive concurrency. Serves static files, terminates TLS, routes traffic to backends.

🏛️ Context: Most deployed reverse proxy. Nginx Plus adds active health checks and session persistence. OpenResty extends with Lua scripting for edge logic.

Envoy Proxy

Envoy, Service mesh sidecar, xDS API

Modern L7 proxy for cloud-native architectures. Data plane in service meshes (Istio, Linkerd). Provides traffic management, observability, and mTLS between microservices.

🏛️ Context: Envoy sidecars handle mTLS, retries, circuit breaking, tracing without changing app code. Adds latency and resource overhead — justify with microservice complexity.

API Gateway

Kong, AWS API Gateway, Apigee, Tyk

Single entry point for API consumers. Handles authentication, rate limiting, transformation, versioning, and analytics. Separates API management from business logic.

🏛️ Context: Becomes the control point for all communication. Avoid making it a bottleneck — keep transformation minimal. Federated gateways for large organisations.

🛠️

Developer Toolchain

Version control, dependencies, and build systems

Git & Source Control

Git, GitHub, GitLab, Bitbucket

Distributed version control tracking every code change. Platforms add collaboration (pull requests, code review), CI/CD integration, and access management.

🏛️ Context: Trunk-based development reduces merge complexity and enables continuous delivery. Enforce branch protection, require review, integrate SAST scanning into PRs.

Package Registries

npm, PyPI, Maven Central, Artifactory, Nexus

Host and distribute third-party and internal libraries. Private registries proxy public packages and host internal shared code. SCA tools scan for CVEs and licence compliance.

🏛️ Context: Supply chain attacks target registries. Use private registries, enforce SCA scanning, pin versions with lockfiles, and monitor for dependency confusion attacks.

Build & Artifact Systems

Maven, Gradle, Webpack, Docker Build, Bazel

Compile source into deployable artifacts — JARs, container images, bundles. Modern builds produce OCI-compliant images stored in container registries (ECR, ACR, GHCR).

🏛️ Context: Reproducible builds are essential for security/compliance. Multi-stage Docker builds reduce image size. Build caching (Bazel, Turborepo) improves monorepo performance.

Developer Experience

VS Code, IntelliJ, Codespaces, Dev Containers

IDEs and cloud-based developer workstations. Dev Containers standardise the development environment in a container definition, ensuring consistency across all team members.

🏛️ Context: Developer experience directly impacts productivity and retention. Standardise with Dev Containers or Codespaces. Reduce onboarding from days to minutes.

How Platform Connects

⬇️

Infrastructure (Layer 1) → Platform: OS runs on servers/VMs. Runtimes need compute and networking. Web servers bind to network interfaces and depend on underlying storage.

⬆️

Platform → Application (Layer 7): Runtimes execute application code. Frameworks provide the scaffolding. Web servers route requests to application processes.

🔄

Platform ↔ Cloud/DevOps (Layer 4): CI/CD pipelines build and deploy using the toolchain. IaC provisions the platform. Containers package runtime + app together.

🛡️

Platform ↔ Security (Layer 5): OS hardening, dependency scanning, TLS termination at web servers, and supply chain security all live in this intersection.