Software for regulated organizations and the public sector. Focus areas: AI tooling, agent supervision, and on-premise deployment.
flowchart LR
subgraph CONTEXT["Context"]
MR["mainrag<br/>private-code retrieval<br/>MCP, citations"]
end
subgraph CONTROL["Control"]
NO["noaide<br/>operator console<br/>JSONL transparency"]
end
subgraph RUNTIME["Runtime"]
PS["project-sentinel<br/>sandbox, audit<br/>three control planes"]
end
subgraph TRUST["Trust"]
CO["complianceos<br/>regulated deployment<br/>on-prem evaluation"]
end
AG["Coding agent<br/>(Codex / Claude / Gemini CLI)"]
AG -->|context query| MR
AG -->|observed by| NO
AG -.->|optionally sandboxed in| PS
CO -.->|frames customer evaluation| AG
The four AI-coding repos cover one operational pattern:
- mainrag answers what context does the agent need?
- noaide answers what is the agent doing right now?
- project-sentinel answers what runtime boundaries enforce safety?
- complianceos answers how does a regulated customer evaluate this?
netbird-machine-tunnel sits outside the AI-coding stack — it is a real-product fork (NetBird) maintained against upstream as a separate engineering-discipline signal.
| If you want to see... | Read first |
|---|---|
| AI-coding-agent supervision and audit | noaide — operator console, 5-minute supervision demo |
| Private-code retrieval over MCP for coding agents | mainrag — 3-minute MCP demo, cited search |
| Runtime governance, sandbox isolation, breakout test evidence | project-sentinel — TOGAF v22.1 architecture, 9/9 sandbox breakout tests |
| Regulated AI deployment, ROI framing, EULA evaluation flow | complianceos — KRITIS / NIS2 / BSI audit platform |
| Real-product fork maintenance, Windows AD pre-login VPN | netbird-machine-tunnel — upstream-synced NetBird fork |
Tools around the operational use of coding agents in engineering teams — context, operator control, and runtime boundaries.
- noaide — Browser-based real-time IDE and operator console for AI coding agents
- mainrag — Self-hosted retrieval and context engine for private code and knowledge bases, with MCP server
- project-sentinel — Reference testbed for agent runtime governance, sandbox isolation, and event sourcing
AI-assisted on-premise compliance audit platform for ISO 27001, ISO 22301, NIS2, BSI IT-Grundschutz, and other standards. Proprietary software with a 90-day evaluation pilot.
Real product work on external codebases with continuous upstream maintenance.
- netbird-machine-tunnel — NetBird fork with Windows pre-login machine tunnel (AD/Kerberos via mTLS), continuously synchronized against upstream
- worldsynth — Professional multi-engine synthesizer
See individual repositories for evaluation and support.