RecVue Agent OS Tour
01 · Tour

Agent OS — where we are and where we're going.

Three architectures, drawn at the same fidelity. Today shows the live system from the #0 demo. Architecture A fills the capability gaps at the same scale tier. Architecture B is the cloud-native, multi-tenant target. Same shape across all three; only the adapters swap.

Today Architecture A Architecture B

scroll to begin ↓

02 · Today

Today's architecture — structured pipes, the rest is people.

The system that ships today: 1.5 of 8 agents live, the Memory Layer in production, the Domain Event Store deploying this week. Unstructured input still becomes a human problem.

AI Services · Efsora
Agent Hub
React UI · HITL Cockpit · CS Copilot · Reasoning Graph
React + Vite
Express.js Backend · FCIS
Functional Core + Imperative Shell · WS · Auth · Tenant Context
Express + Drizzle
Memory Hub
KG (Drizzle+pgvector) · Context Graph (LangGraph chkpt) · Vector · Episodic · Domain Event Store
Drizzle + pgvector
Agent Runtime
Orchestrator · 8 Specialists · Tools Registry (api/fn/mcp)
AGT-04 + AGT-08 live · 6 pending
Mediation Hub
Connector Mesh · Doc Understanding · Integration Engine · Sources adapters
Stub adapter
Java Tools Sidecars
11 Spring Boot sidecars · MCP + REST
Not started
KAFKA · AVRO · OTEL
RecVue Platform
React UIs
Billing · Contracts · Revenue · Vendor · Settings
Spring Boot Microservices (11)
MS_Billing · MS_Revenue · MS_Contracts · MS_Invmgt · MS_Vendor · MS_Usages · MS_Settings · MS_Integrations · MS_Bulk · MS_Analytics · MS_Security
Oracle DB
Multi-tenant schemas · PL/SQL · Transactional · Configuration
UI Backend Event Bus Data External ● live ◐ partial ◌ in-progress ⊘ designed ⊠ missing
03 · The 4 gaps

What's missing today — and what fills each gap.

01

Unstructured input

Email · PDF · Slack · EDI · scanned docs — today these become a human problem. CSRs retype them into forms.

Fix: Doc Understanding (Bedrock multimodal) + Intake Agent.

02

Memory scattered

What "we already know" about a customer lives in spreadsheets, Slack threads, and ticket comments. No agent can use it.

Fix: Memory Hub — KG · Context Graph · Vector · Episodic · Domain Event Store.

03

Agents partial

1.5 of 8 specialists shipped. Cash-app + HITL run end-to-end; Order, RevRec, Reconciliation, Copilot, Intake are spec only.

Fix: Build the rest. Architecture A delivers all 8.

04

Audit thin

Application logs in Splunk; no cryptographic proof chain. Regulators want stronger.

Fix: Merkle-on-Postgres in A; QLDB + WORM in B.

04 · Architecture A · Agent OS Extended

Architecture A — fill the capability gaps, same scale tier.

All 8 specialists live. Java Tools Layer ships as 11 sidecars. Connectors + Integration Engine reduce onboarding from 6 months to 6 weeks. Same Postgres, same pgvector — no scale-tier swaps.

What A solves

  • Full agent fleet — Intake · Order · Remittance · Usage · RevRec · Reconciliation · HITL · Copilot
  • Java Tools sidecars: 11 deployments, MCP + REST per RecVue microservice
  • Connectors + Integration Engine: customer onboarding ~6 weeks
  • Domain Event Store productionized: translators · projections · triggers · audit · analytics
  • Audit chain: Merkle-tree-on-Postgres tier (regulator-acceptable)

What A doesn't solve

  • Multi-tenant runtime — still per-tenant deployment
  • Geographic scale — single-region only
  • Compliance ceiling beyond Postgres + Merkle audit
  • RecVue's own platform remediation (their problem, but limits A's safe integration surface)
05 · The strangler-fig path

How A becomes B — port-by-port adapter swaps.

Each module owns one or more ports (FCIS interfaces). Architecture A and B differ only in which adapter is plugged into each port. Ports are invariant; adapters swap. No big-bang.

PortArchitecture A adapterArchitecture B adapter
GraphStore · KGDrizzlePostgresGraphStoreNeo4jGraphStore
EmbeddingProvider · VectorBedrockTitan + pgvectorBedrockTitan + Weaviate
EventStream · MediationPgBossEventStreamKafkaConfluentEventStream
EventStore · Domain EventsPostgresEventStoreEventStoreDB / partitioned
Cache · Memory accel(none today)RedisAdapter
AuditLedger · TrustMerkleTreePostgresLedgerQLDBLedger
MultiTenancyTenantHeader + AsyncLocalStorageOktaJwtClaim + RLS
LakehouseTier · Analytics(warm-tier in Postgres)IcebergLakehouseAdapter

A team that completes Architecture A is a team that has built every Architecture B port; it just hasn't swapped the adapter yet.

06 · Architecture B · Cloud-Native Multi-Tenant

Architecture B — composable platform, streaming core.

Same modules. Different adapters. K8s domain services. Confluent Kafka backbone. Neo4j for graphs. Weaviate for vectors. QLDB for audit. One platform serves every customer.

What B unlocks

  • Multi-tenant runtime: one platform serves all customers; RLS + JWT claims for isolation
  • Geographic scale: multi-region active-active for North America + EU
  • Compliance: QLDB-backed cryptographic proof chain meets SEC 17a-4
  • Cost elasticity: K8s autoscale + managed services scale per-tenant
  • Independent module velocity: domain services on K8s ship independently

What B costs

  • Vendor lock-in: Weaviate · Neo4j · Confluent · QLDB are commercial managed services
  • Operational complexity: 10+ managed services to monitor
  • Migration cost: every adapter rewritten (FCIS core stays put)
  • Requires RecVue's own v4 program for multi-tenant integration to be meaningful
07 · Concept Deep-Dive

Memory Hub — five stores, one mental model.

What the system remembers. Five stores, each with a distinct role; together they form the substrate every agent reasons over.

Knowledge Graph

Domain ontology + entities. The "structured truth" agents reason over.

Drizzle + pgvector

Writes: KG editor · ingest pipelines
Reads: retrieve_kg_context tool

Context Graph

In-flight workflow state via LangGraph checkpoints. Powers HITL resume.

workflow_events + PostgresSaver

Writes: StreamAdapter · checkpointer
Reads: HITL Cockpit · Reasoning Graph

Vector & Semantic

Embeddings + similarity search. Backs slice retrieval and copilot grounding.

pgvector + HNSW

Writes: Embedder cron · ingest
Reads: agents · CS Copilot

Episodic Memory

Last-N cases per customer/agent. Learned patterns. CSR override history.

Designed (not built)

Writes: HITL overrides · agent runs
Reads: agent confidence calibration

Domain Event Store

Translators + projections + triggers + audit log. Backbone of "everything that happened."

Translators (live)

Writes: StreamAdapter translators
Reads: projections · triggers · audit

08 · Concept Deep-Dive

Event-driven backbone — every meaningful occurrence is an event.

The Domain Event Store sits between Mediation and Memory. It translates raw stream events into typed domain events, persists them, projects into read models, fires triggers — and gives every action a place to land.

1

Raw stream

StreamAdapter triple-output: DB · EventEmitter · OTel

DB + EventEmitter + OTel
2

Translator

Per-source translators normalize raw events into domain events

orderTranslator · paymentTranslator · usageTranslator
3

Domain event

Persisted to event store; ordered by tenant + correlation

payment.received · order.placed · usage.metered
4

Projection / Trigger

Read models update; agent triggers fire; audit chain extends

PgBoss workers · trigger registry

Topics

orders.events usage.events billing.events payment.events revrec.events agent.actions audit.log policy.decisions hitl.cases ledger.journals
09 · Concept Deep-Dive

Agent Runtime — orchestrator + 8 specialists + tools registry.

The Orchestrator plans every workflow, routes to the right specialist, enforces policy and confidence floors. Specialists are narrow, typed-tool-only. The Tools Registry is the swap-seam for API/function/MCP tools.

AGT-01 · Orchestrator

Plan · route · policy · dispatch

Event Shell + LangGraph
02

Intake

triage · classify

designed
03

Order

change-order processing

designed
04

Cash App

remittance + match

live · #0
05

Usage

ingestion · metering

designed
06

RevRec

ASC 606

designed
07

Reconciliation

discrepancy detect

designed
08

HITL

escalate · low-confidence

live · #0
09

CS Copilot

graph-grounded chat

designed

Tools Registry

Polymorphic registry: api / function / mcp tool types. Immutable snapshots per agent run. Credential vault. MCP server registry.

Schema designed · tables ready
10 · Concept Deep-Dive

Observability & Trust — OTel · audit · self-learning.

Three things together: every workflow run emits OTel spans with correlation + causation IDs; every agent action lands in an immutable ledger; CSR overrides flow back as policy refinements that the eval harness validates against history.

OTel spans

workflow.run · ws-relay-456
└ orchestrator.plan · 240ms
└ kg.retrieve_slice · 45ms
└ agt-04.execute · 1.2s
└ tool.ms_billing.applyCash · 380ms
└ audit.append · 12ms

Every node = one span; correlation_id ties them together; causation_id chains parent→child.

Audit ledger

A: Merkle-tree-on-Postgres
B: QLDB + WORM SEC retention

Cryptographic proof chain. Each entry signs the previous hash. Regulators verify by replay.

Workflow run viewer · KG replay

Self-learning loop

HITL override
policy.refine()
eval harness replay
confidence floor adjusts

CSR corrects → system internalizes the correction → confidence threshold drifts up per-tenant.

11 · How a request flows

Cash-app remittance from email — end to end, every hop typed and traced.

One inbound email. Ten steps. Doc Understanding → Domain Event → KG slice → Orchestrator → AGT-04 → Java Tools sidecar → MS_Billing → Audit + episodic. HITL fork if confidence dips below the per-tenant floor.

12 · Architecture

The full architecture document.

The complete RecVue agentic architecture in one PDF — read inline below or open in a new tab for full-screen.

Your browser cannot display PDFs inline. Open new_architecture.pdf in a new tab.

Open in new tab ↗

efsora.com · architecture@efsora.com