A clear-eyed look at what you have and what to do about it
What gets reviewed. The codebase (or the no-code app). The data structure. The integrations. The infrastructure. The dependencies. The security posture. The bus factor (how many people understand it).
What you receive. A risk register ranked by likelihood and impact. A data inventory with quality assessment. A modernisation roadmap with staged rebuild plan. A fixed-price quote for the next stage. A clear "do nothing" baseline so you can weigh the modernisation case against actual risk.