Unattended · SOSA-governed · bring-your-own-model

Your AI dev team that works your board, not a new one.

OpsAgents Autopilot drains the Trello, Jira or monday.com board you already use — reads tickets, writes the code, opens the PRs, walks the 7-stage delivery flow — unattended, governed, and on credits you already hold.

Where it runs: your existing board + repo
Idle cost: ~$0 per tick
Never merges to prod on its own

The category problem

Teams already live in a board, a repo, and a CI pipeline.

The “AI software engineer” wave — Devin, GitHub Copilot Workspace, Cursor agents — sells a new surface you must adopt: a new IDE, a new task UI, a new place to babysit an agent one prompt at a time. But the work is already specified where you work. Adopting another surface is the cost, not the value.

Why us

It meets the work where the work already is.

Same job as the agent wave — done on your turf, and safe to leave running.

AxisDevin / Copilot Workspace / Cursor agentsOpsAgents Autopilot
Where it runsa new agent UI you driveyour existing Trello / Jira / monday.com board + GitHub repo
Attendanceinteractive, one task at a timeunattended — fires on a cadence, picks the most-overdue board, ships, stops
Governancetrust the agentSOSA: evidence-gated (PR + green CI on the head SHA before any “done”), $/day circuit-breaker, never-merges-to-prod, proven-outcome ledger, full audit trail
Model costper-seat / metered tokensbring-your-own-model on Bedrock/Vertex — runs on credits you already have; idle ticks cost ~$0
Isolationn/a (single user)per-tenant credential + state isolation
The wedge, in one sentenceIt meets the work where the work already is — and it is safe to leave running.

Who it’s for

A real board, a real repo, more tickets than hands.

01

Dev agencies

Juggling several client boards? Autopilot keeps every board moving overnight — without a human babysitting each one.

02

SMB & seed-stage software teams

A backlog and no spare engineer for the long tail of well-specified tickets. Autopilot drains them to reviewable PRs.

Both share the shape: tolerance for “open a PR I’ll review,” but not for “merge to prod unattended” — which is exactly the SOSA contract.

Safe to leave running

Built around one invariant.

A tenant cannot touch another tenant’s credentials, repositories, or boards — nor our infrastructure or anyone’s production. Here’s how that holds by construction, not by good intentions.

GUARANTEE 01

It never ships to prod on its own

The agent opens PRs and advances cards up to Code Review — then stops. A human on your team merges, under your branch protection.

  • No auto-merge
  • No direct push to main
  • No production reach
GUARANTEE 02

Credentials isolated by construction

  • Per-tenant gateway + own service account — reads only your secrets
  • Board-scoped token (Trello / monday.com) + repo-scoped GitHub App, least privilege
  • Secrets never in config — only the env-var name is committed
  • One tenant per workflow — states can’t collide
GUARANTEE 03

Bounded & audited

  • Per-tenant $/day circuit-breaker + wall-clock cap
  • Destructive-op denylist at the gateway; config writes merge, never replace
  • Default-FAIL verify gate — advances only on evidence seen that session
  • Proven-outcome ledger — every action attributable

Straight answers

The questions every engineering leader asks first.

QWill it merge something broken?

No. It advances up to Code Review and opens a PR; a human merges. Merge requires green CI on the exact head commit. The worst a malicious or prompt-injected ticket can do is open a PR in your own repo that your own engineer reads before it lands.

QWhat does it cost to run?

Idle ticks are ~$0 — pure local + cheap gateway reads, no LLM. You pay only when a board is actually due and actionable, on your own model credits, under a per-tenant $/day cap.

QIs my code & board safe from other tenants?

Per-tenant credential + state isolation. Each tenant runs against its own dedicated gateway with its own service account — never project-wide, never another tenant’s.

Onboarding

A gate, not a signup form.

A tenant is not enabled until all of these are true — and the first run is supervised by an operator before any unattended cadence is switched on:

NDA signed
Board-scoped token minted (Trello / monday.com)
GitHub App installed on your repo(s) only
Per-tenant secret namespace
Daily cost cap set
Isolated state dir provisioned
Dedicated per-tenant gateway
First run operator-supervised
What we’re honest about: for vetted, contracted design-partner tenants the model is closed by construction (independently re-audited, 2026-06-10). The one remaining hardening before open self-serve sign-up of unvetted repos is sandboxed ephemeral runners for untrusted build/test code — not a blocker for the design-partner posture you’d onboard under.

Get started

Point it at your board. Wake up to reviewable PRs.

One supervised pilot on a single module — within days you’ll see a full PR, human code-review and QA before anything merges, with a complete run-ledger.

Supervised
Orchestrated
Secured
Auditable