Built on open,
proven technology

The application runtime. Chosen for its mature AI/ML ecosystem, readable code, and broad library support for every integration we need.

Lightweight WSGI framework handling all HTTP routing, blueprints, and session management. Jinja2 templating for server-rendered pages.

Production WSGI server running 3 worker processes behind Nginx. Handles concurrent requests with graceful restarts on deploy.

Session-based authentication with secure cookie storage, login_required decorators, and remember-me persistent sessions.

All structured data — users, tenants, agents, tasks, schedules, chat history. Multi-tenant isolation via per-tenant schemas (tenant_{id}).

PostgreSQL extension for storing and querying 1536-dim embedding vectors. Powers Knowledge Base semantic search without a separate vector DB.

Battle-tested synchronous PostgreSQL adapter. Used with connection pooling and RealDictCursor for ergonomic row-as-dict access patterns.

PostgreSQL runs in a Docker container on the VPS with persistent volume mounts. Isolated from the application process for clean upgrades.

Internal agent orchestration layer. Routes messages to the correct agent, loads SOUL personality profiles, and manages the tool-calling loop.

Translates between API formats. Enables seamless switching between Groq, Gemini, Anthropic Claude, and local Ollama with automatic fallback chains.

Ultra-fast inference via Llama 3.3 70B. Used as the primary model for all 7 agents — fast enough for real-time chat, powerful enough for complex reasoning.

Gemini 1.5 Flash serves as automatic fallback when Groq hits rate limits. Transparent to the user — the agent response is the same quality.

Runs local models (Qwen 2.5 Coder, nomic-embed-text) for embedding generation and code tasks. Zero egress cost. Fully air-gapped option for sensitive deployments.

1536-dim embeddings for Knowledge Base ingestion and semantic search. Can be replaced with nomic-embed-text via Ollama for a fully local setup.

Agents deliver results, workflow completions, and Boardroom syntheses directly to your Telegram. Long-polling keeps it free of webhooks and public endpoints.

Two separate flows: Google Sign-In for authentication (PKCE flow, no client secret in browser) and Google Workspace OAuth for Calendar/Gmail agent access.

OAuth 2.0 connection to HubSpot CRM. Sales agent reads contacts and company data to enrich outreach. Tokens stored encrypted per tenant.

Luna (Creative Producer) generates personalized avatar videos from agent-written scripts. Completed videos are delivered via Telegram.

Voice clone synthesis for audio briefings. Faster than video — agents can produce audio updates in seconds and deliver them as voice messages.

Inbound email parsing and outbound delivery via Gmail. Agents can read, draft, and send on behalf of your connected inbox.

No frameworks, no build step, no hydration latency. The entire client bundle is under 50 kB. Pages render in <200 ms even on slow connections.

Theming via CSS variables — light/dark mode, brand colours, spacing. Instant theme switching with zero flash via an inline anti-flash script in <head>.

Flask's default template engine. All pages are server-rendered HTML — fast first paint, excellent SEO, no client-side routing complexity.

Variable-weight Inter for all UI text. Loaded asynchronously with a system-font fallback stack to prevent layout shift.

Dedicated VPS running Ubuntu. Single-tenant capable — one AEGIS instance per customer is possible for maximum isolation and compliance.

Handles TLS termination, HTTP→HTTPS redirects, static file serving, and proxying to Gunicorn. Security headers applied at the Nginx layer.

Auto-renewed TLS certificates via Certbot. HSTS enabled. All traffic is encrypted in transit — no plain-HTTP fallback in production.

Gunicorn and the scheduler run as systemd services with auto-restart on failure. Deployments are a git pull + service restart — zero downtime in <5 seconds.

All application code is versioned on GitHub. Deploys are manual git pulls — giving you full control and audit trail of exactly what ran when.

In-process cron scheduler for agent task and workflow schedules. Runs in the same Python process — no Celery, no Redis, no separate broker to manage.

Extracts text from PDF files page-by-page. Pure Python — no external binary dependencies.

Reads .docx files paragraph by paragraph. Supports modern OOXML format (Word 2007+).

Reads .xlsx files sheet-by-sheet with read-only mode for memory efficiency. Extracts cell values as plain text.

Extracts text from .pptx slide shapes. Each slide becomes a labelled section in the Knowledge Base chunk.