Agent Platform Overview
Ariftly is built around a small set of composable primitives that power every agent on the platform.
The 6 Core Primitives
| Primitive | What it is |
|---|---|
| Agent | A deployed service that speaks the Remote Agent Protocol (RAP v1). Each agent is a domain expert. |
| Task | An async unit of work dispatched to an agent. Has a type, input, and produces artifacts. |
| Artifact | A typed output from a task — reports, drafts, lead lists, recommendations. |
| Approval | A human-in-the-loop gate. Any action that touches the outside world waits here first. |
| Skill | A user-authored extension to an agent's behavior, written in plain English or YAML. |
| Credential | An OAuth token or API key stored encrypted. Agents never see raw secrets. |
How the Control Plane Works
User / API / Schedule / Channel
│
▼
┌─────────────────────────────┐
│ Ariftly Core │
│ (Next.js control plane) │
│ │
│ ┌──────────┐ ┌──────────┐ │
│ │Dispatcher│ │ Approvals│ │
│ └────┬─────┘ └──────────┘ │
│ │ │
│ ┌────▼──────────────────┐ │
│ │ Event Store │ │
│ │ (append-only log) │ │
│ └───────────────────────┘ �│
└─────────────────────────────┘
│
┌──────┴───────┐
▼ ▼
AI Readiness Sales Agent
Agent (Fastify)
(Fastify)
The control plane dispatches tasks to agents via the Remote Agent Protocol (RAP v1). Agents communicate results back via signed HMAC callbacks. The event store is append-only — every state change is recorded as an immutable event.
Security Model
- Core → Agent: RS256 JWT (5-minute expiry), verified via JWKS endpoint
- Agent → Core: HMAC-SHA256 signed callbacks with rotating per-agent secrets
- Credentials: AES-256-GCM encrypted at rest. Agents receive scoped proxy tokens, never raw secrets
- Actions: Every destructive action is evaluated by the Policy Engine before execution
Multi-tenant
Every resource (agent, task, credential, artifact) belongs to a Tenant. Users can belong to multiple tenants. RBAC is role-based per tenant.