Your code,not our service.
A zero dependency, full-stack platform delivered as source code you own. Every module is inspectable, modifiable, and replaceable — no vendor lock-in, no per-seat pricing, no abstraction you cannot see through.
Full Ownership not a package, not a service
You get the complete codebase — every module, every line, every test. This is not a hosted service with an API, not an npm package with an abstraction layer. It is source code you can read, modify, and deploy on your own infrastructure.
- Complete codebase delivered — not a package, not an SDK, not a hosted service
- Every module can be inspected, modified, extended, or replaced
- No abstraction you cannot look inside — every line is yours to change
- Deploy on your own infrastructure with full operational control
- No per-seat pricing, no API call limits, no usage-based billing
Core/App Boundary clean separation by design
Core modules handle platform concerns — authentication, encryption, audit, RBAC, MFA, alerting. App modules are where your business logic lives. The boundary is enforced by convention and directory structure, so your features never tangle with infrastructure.
- Core modules: 23 platform modules with ~85 endpoints built and tested
- App modules: your domain-specific business logic in a separate directory
- Modify core when you need to — it is your code, not a locked dependency
- New features follow the same patterns: NestJS module, Prisma schema, Zustand store, policy entry
- Core provides the platform; app provides the product — clean line between them
Server Module System NestJS all the way down
Each server module is self-contained — its own directory with controllers, services, repositories, DTOs, and configuration. Policy registry entries define authorization per endpoint. Event listeners handle cross-module integration without tight coupling.
- NestJS module structure with controllers, services, repositories, and DTOs
- Each module self-contained in its own directory with its own Prisma schema additions
- Policy registry entries define authorization per endpoint — declarative, not imperative
- Event listeners for cross-module integration without direct dependency imports
- Casbin rules generated from database — authorization is data, not hardcoded logic
- 56+ core policy entries covering all controller methods
Client Component System 42 components, 8 stores
A React client organized into core and app component directories with 8 Zustand stores providing typed state management. Authentication flows, settings dashboard, compliance views, and monitoring UI — all built with consistent patterns.
- 42 React components organized in core/ and app/ directories
- 8 Zustand stores with typed state shapes and async actions
- AG Grid for data-heavy views — audit logs, user management, AI usage logs
- Consistent patterns: modal flows, form validation, toast notifications
- Vite for fast development builds and optimized production bundles
Database & Schema 30 tables, encrypted fields, soft deletes
PostgreSQL with Prisma ORM — 30 tables with UUID primary keys, timestamps, composite indexes, and cascade deletes. Transparent encryption via a Prisma client extension means encrypted fields are defined in a central registry and handled automatically on every read and write.
- 30 PostgreSQL tables with UUID primary keys and createdAt/updatedAt timestamps
- Prisma ORM with generated types flowing from schema to API layer
- Transparent encryption extension — field-level AES-256-GCM via schema annotations
- Composite indexes, unique constraints, and cascade deletes defined in Prisma schema
- Soft deletes with isDeleted flags for recoverable data across 11+ models
- 6 Prisma enums: AuditEventType, MfaMethod, AlertSeverity, InvitationStatus, and more
No Vendor Lock-In fork it, ship it, own it
Standard tools with massive communities — NestJS, React, Prisma, PostgreSQL, Terraform. No proprietary runtime, no vendor-specific SDK, no hosted dependency that disappears when a startup pivots. You control every upgrade, every deployment, every decision.
- PostgreSQL — the most widely supported open-source database
- NestJS, React, Prisma, Terraform — industry-standard tools with large communities
- No proprietary runtime or vendor-specific SDK in the stack
- No hosted dependency that disappears when a vendor pivots
- You control every upgrade, every deployment, every decision