You run five coding agents. Name one change from last week that was verified by anything other than the agent saying "done." FlightDeck is an AI organization operating system — the governance layer that turns agent output into independently verified, budgeted, auditable work.
Need SSO, signed events, or audit export? Email dorrian@agent-forge.app for the EE waitlist.
The executive operations center after the demo seed runs. Velocity counts only CI-attested changes — on unverified work it reads 0, by design.
The category argument
Every AI-agent product sells you more agents. That is the wrong layer to invest in. Agents get swapped, upgraded, and deprecated. The durable asset is the layer they answer to: a ledger of evidence, budgets that bound autonomy, and verification that only counts independently attested work.
You cannot run a business on agent self-reports. The moment two agents touch the same codebase, you already have the trust problem — whose "done" counts?
FlightDeck is that layer. Not another bundle of agents. Not a dashboard that repeats what agents claim. A control plane: nothing counts as done until CI independently attests it, nothing spends without a budget, and every decision lives in an append-only ledger. We built it and Apache-licensed it.
Five mechanisms
Every decision, every piece of evidence, every event — appended, never edited. Evidence is never refused; the audit trail is sacred. Authority is what gets gated, not information. Zero-dependency file ledger to start; Postgres when you want it. Your org's record lives on your infrastructure, not someone else's SaaS.
Every work item carries a budget. Overspend does not fail silently and does not proceed silently — it auto-escalates to a human decision. Autonomy is bounded by explicit numbers, not by hoping the agent stops.
Velocity only moves on work independently attested by CI. GitHub check runs become verified evidence in the ledger. Synced commits stay unverified until CI attests them. Agents cannot say "done," and they cannot impersonate each other — every agent holds its own hashed API key.
Six ledger-signal detectors read the append-only record and propose changes with evidence, projected impact, and risks. It only proposes; humans decide. Its first act on real data was diagnosing its own maker.
Air traffic control, not a chat window. Org health. Initiative portfolio with risk and forecast. Flow map with drag detection. Approvals queue. Business outcomes scorecard — NRR, gross margin, tickets per 1k users. And if nothing is verified, it shows you zero.
How it works
Single container, self-hosted on your cloud or fully air-gapped. Zero-dependency file ledger to start; Postgres when you want it. Verified in CI on every commit — 56 automated tests including a Postgres integration suite.
Agents from any framework or language integrate with one HTTP call. No SDK. Your CI attests completed work via GitHub check runs, which land in the ledger as verified evidence.
Run the demo seed and the exec view populates in minutes: portfolio, budgets, approvals, outcomes. Then note that velocity reads 0 until CI attests something. That is honesty as a demo moment.
Proof — built with itself
We will not show you invented logos or testimonials, because none exist. The substitute is radical dogfooding — FlightDeck's public repo history is the case study.
FlightDeck dogfoods itself: its own GitHub Actions CI attests its own commits into its own ledger. Its velocity metric is CI-verified changes on itself.
The org optimizer's first proposal on real data flagged FlightDeck's own project. We shipped it anyway. That is the product.
Unverified work shows velocity 0 on our own dashboard. That is not a bug; it is the entire point. A metric that can be inflated by an agent's self-report is not a metric.
"Cap flightdeck at Prototyper budgets (no reality port)."
— the FlightDeck org optimizer, first proposal on real data, about FlightDeck itself. Built in the open by one founder plus AI agents, coordinated through FlightDeck itself.
FAQ
No. Dashboards report what agents claim. FlightDeck is a control plane: budgets gate spend, escalations route overspend to humans, and the velocity metric refuses to move on unattested work. The exec view is air traffic control, not a chat window — and if nothing is verified, it shows you zero.
Different layer. Those are observability and tracing for LLM calls — useful, keep them. FlightDeck is org-level governance: budgets, independent verification, decisions, and an append-only audit trail. Tracing tells you what an agent did inside a call; FlightDeck decides what the org accepts as done and what it's allowed to spend.
It's valuable from roughly 2 agents plus a CI pipeline. The moment two agents touch the same codebase, you already have the trust problem: whose "done" counts? One container, one HTTP call — the setup cost is an afternoon, not a platform migration.
It's one container. Zero-dependency file ledger to start, Postgres when you want it, fully air-gapped if you need it. Self-host is the point for this buyer: your org's ledger of decisions and evidence should not live on someone else's SaaS. Verified in CI on every commit.
No. CE is the full product under Apache-2.0: ledger, budgets, escalations, verification plane, org optimizer, executive operations center. EE adds enterprise controls — SSO/RBAC, signed events, audit export, hardening, support SLA. If you never email the waitlist, you still have the whole thing.
License
| Community Edition | Enterprise Edition | |
|---|---|---|
| License | Apache-2.0, free | Waitlist |
| Append-only ledger | Yes | Yes |
| Budgets and escalations | Yes | Yes |
| Verification plane (CI attestation, per-agent hashed keys) | Yes | Yes |
| Org optimizer (six ledger-signal detectors) | Yes | Yes |
| Executive operations center | Yes | Yes |
| Self-host, single container, air-gapped | Yes | Yes |
| SSO / RBAC · Signed events · Audit export · Hardening · Support SLA | — | Yes |
If you never email the waitlist, you still have the whole thing.
The demo seed populates the executive operations center in minutes. Watch velocity sit at 0 until CI attests something — then decide if that honesty is what your org has been missing.
Need SSO, signed events, or audit export? Email dorrian@agent-forge.app for the EE waitlist.