Skillget

broodlink

mcp
Security Audit
Warn
Health Warn
  • License — License: AGPL-3.0
  • Description — Repository has a description
  • Active repo — Last push 0 days ago
  • Low visibility — Only 5 GitHub stars
Code Pass
  • Code scan — Scanned 12 files during light audit, no dangerous patterns found
Permissions Pass
  • Permissions — No dangerous permissions requested
Purpose
This MCP server acts as a central hub for multi-agent AI orchestration. It connects various autonomous AI agents, allowing them to securely communicate, delegate tasks, and share context through a unified messaging and tool API.

Security Assessment
Overall Risk: Medium.
The project uses JWT authentication to secure its central API, which is a strong security practice, and the automated code scan found no hardcoded secrets or dangerous patterns. However, the recommended installation method pipes a remote script directly into the shell (`curl | sh`). While standard, this practice carries inherent risks if the repository is ever compromised. Additionally, the application uses a complex architecture requiring multiple local services (Ollama, Postgres, Qdrant, NATS), which broadens the system's overall attack surface.

Quality Assessment
The project is very new, explaining the low community engagement (5 GitHub stars) despite recent updates. It is licensed under AGPL-3.0, which is important to note if you plan to integrate it into proprietary software, as it requires derivative works to open-source their code. The fact that it is written in Rust is a positive indicator for performance and memory safety, but the low visibility means it has not yet been extensively battle-tested by the wider developer community.

Verdict
Use with caution: the underlying code appears safe, but execute remote install scripts at your own risk and strictly review the AGPL-3.0 license constraints before integrating.
SUMMARY

Multi-agent AI orchestration platform — coordinate, observe, and govern autonomous agents

README.md

Broodlink

Broodlink lets multiple AI agents work together. Instead of one AI working alone, Broodlink connects several agents — each with different strengths — so they can share knowledge, delegate tasks to each other, and coordinate their work through a single system.

How it works: Every agent connects to a central tool API (beads-bridge) using JWT authentication. When an agent stores a memory, creates a task, or sends a message, beads-bridge routes it to the right database. A coordinator service watches for new tasks and assigns them to the best available agent. A heartbeat service keeps everything healthy. All communication flows through NATS messaging, so agents stay decoupled and the system scales naturally.

Copyright (C) 2025-2026 Neven Kordic [email protected]

Broodlink Operations Dashboard

Install

# macOS / Linux
curl -fsSL https://raw.githubusercontent.com/nevenkordic/broodlink/main/install.sh | sh

# Windows (PowerShell)
irm https://raw.githubusercontent.com/nevenkordic/broodlink/main/install.ps1 | iex

Then run broodlink — the setup wizard handles everything else (Ollama, Postgres, Qdrant, model downloads).

To uninstall:

# macOS / Linux
curl -fsSL https://raw.githubusercontent.com/nevenkordic/broodlink/main/install.sh | sh -s -- --uninstall

# Windows (PowerShell)
& ([scriptblock]::Create((irm https://raw.githubusercontent.com/nevenkordic/broodlink/main/install.ps1))) -Uninstall

From Source

# Recommended: use broodctl to manage the stack
./broodctl up          # Start everything (infrastructure + services)
./broodctl status      # Check full stack status
./broodctl health      # Verify all health endpoints
./broodctl rebuild     # Build from source + restart
./broodctl down        # Stop everything

# First-time setup from scratch
bash scripts/bootstrap.sh

After startup, you'll have:

URL What
http://localhost:1313 Dashboard (Hugo)
http://localhost:1313/workflows/ Visual Workflow Editor
http://localhost:1313/control/ Control Panel (admin)
http://localhost:3310/health beads-bridge API
http://localhost:3312/api/v1/health status-api
http://localhost:3311/health MCP server
http://localhost:3313/health A2A gateway + webhook gateway

Architecture

                    Agents (Claude, Gemma4, custom bots, ...)
                            │
                    ┌───────▼───────┐
                    │ beads-bridge  │ :3310  Tool API (96 tools)
                    │               │   JWT RS256 + Rate Limiting
                    └──┬────┬───┬──┘
                       │    │   │
          ┌────────────┘    │   └────────────┐
          │                 │                │
  ┌───────▼──────┐  ┌──────▼──────┐  ┌──────▼──────┐
  │    Dolt      │  │  Postgres   │  │    NATS     │
  │  :3307       │  │  :5432      │  │  :4222      │
  │ (versioned)  │  │ (hot paths) │  │ (messaging) │
  └──────────────┘  └──────┬──────┘  └──────┬──────┘
                           │                │
                    ┌──────▼──────┐  ┌──────▼──────┐
                    │ embedding-  │  │ coordinator │
                    │ worker      │  │             │
                    └──────┬──────┘  └─────────────┘
                           │
              ┌────────────┼────────────┐
              │            │            │
      ┌───────▼──┐  ┌─────▼────┐  ┌───▼────────┐
      │  Ollama  │  │  Qdrant  │  │ heartbeat  │
      │  :11434  │  │  :6333   │  │ (5m cycle) │
      └──────────┘  └──────────┘  └────────────┘

  ┌──────────────┐  ┌──────────────┐  ┌──────────────┐
  │  status-api  │  │  mcp-server  │  │ a2a-gateway  │
  │  :3312       │  │  :3311       │  │  :3313       │
  └──────┬───────┘  └──────────────┘  └──────────────┘
         │
  ┌──────▼───────┐
  │  Hugo Site   │
  │  :1313       │
  └──────────────┘

Data Flow

  1. Tool calls -- Agent sends POST to /api/v1/tool/<name> -- beads-bridge validates JWT (kid-based multi-key), checks rate limits, guardrails, and budget, writes audit log, dispatches to Dolt or Postgres
  2. Memory + embeddings + search -- store_memory inserts to Dolt + Postgres full-text index + outbox row -- embedding-worker polls outbox every 2s -- smart chunk splitting at heading/code-fence/paragraph boundaries -- Ollama generates vector per chunk -- Qdrant upsert -- extracts entities/relationships via LLM and stores in knowledge graph (Postgres kg_entities/kg_edges + Qdrant broodlink_kg_entities) -- hybrid_search and semantic_search expand queries via Ollama (2-3 alternative phrasings), run each variant in parallel, merge by max score -- BM25 (Postgres tsvector) + vector (Qdrant) fusion with temporal decay and optional reranking -- graph_search/graph_traverse query the knowledge graph -- graceful degradation to BM25-only or vector-only if a backend is down -- delete_memory cleans up Dolt, Postgres, and Qdrant vectors
  3. Task routing -- create_task writes to Postgres + publishes NATS -- coordinator scores all eligible agents (success rate, load, cost, recency), excludes declined agents -- claims atomically -- dispatches to winning agent -- agents can decline_task (re-routes, max 3 declines then dead-letter) or request_task_context (pauses task, publishes questions, auto-resets on timeout) -- failed tasks land in dead-letter queue with auto-retry (exponential backoff)
  4. Workflow orchestration -- start_workflow creates a workflow_runs row + publishes NATS -- coordinator loads formula TOML -- supports conditional steps (when expressions), per-step retries, parallel step groups, step timeouts, and on_failure error handlers -- all step results collected in step_results JSONB
  5. Multi-agent collaboration -- coordinator auto-decomposes complex tasks into sub-tasks via LLM before routing (configurable, fail-open) -- agents can delegate sub-tasks to other agents through the coordinator (request/accept/decline/complete lifecycle) -- completed task outputs are automatically verified by LLM (pass/fail with feedback/skip) -- parent tasks auto-complete when all children finish -- create_workspace + workspace_read/workspace_write for shared context
  6. Budget enforcement -- check_budget middleware deducts tokens per tool call -- set_budget/get_budget tools for management -- daily replenishment via heartbeat -- BudgetExhausted error (402) blocks calls when depleted
  7. Webhook gateway -- a2a-gateway receives Slack slash commands, Teams bot messages, Telegram updates -- parses /broodlink <command> into tool calls -- outbound notifications for agent.offline, task.failed, budget.low, workflow events, guardrail violations
  8. Conversational gateway (v0.7.0) -- a2a-gateway receives Slack/Teams/Telegram messages → creates chat sessions → routes to coordinator for task creation → delivers replies via platform-specific APIs -- list_chat_sessions/reply_to_chat tools for agent interaction -- direct Ollama LLM chat with 10 tools: web_search (Brave), fetch_webpage (direct HTTP GET), remember, schedule_task, list_scheduled_tasks, cancel_scheduled_task, read_file, write_file, read_pdf, read_docx -- auto-fetch from history (v0.11.0): DB query finds URLs from past messages beyond the context window, fetches the most recent, injects content into system prompt — no tool calling needed -- retry with reduced tools (v0.11.0): when model exhausts thinking budget, retries with 3-tool set and last 6 conversation turns -- streaming responses (v0.11.0): Telegram messages stream progressively via editMessageText (~1 edit/800ms, 30-token minimum), tool calls pause stream and show indicator -- multi-Ollama load balancing (v0.11.0): OllamaPool distributes inference across multiple instances (least-loaded healthy, 30s health probe, auto-recovery) -- multi-modal attachments (v0.11.0): Slack file uploads (via url_private + bot token), Telegram photos/documents (via getFile API), and Teams attachments are downloaded, classified (image/audio/video/document), stored to attachments_dir, and persisted in chat_attachments table -- efficiency safeguards: concurrency semaphore, Brave search result cache (5-min TTL), duplicate message suppression (30s dedup), typing indicator refresh (4s) -- busy/dedup replies excluded from conversation history -- Telegram access code authentication -- cascade delete on bot disconnect -- NATS-based credential cache invalidation -- self-healing model failover: on OOM, tries recovery (unload → retry), if still failing enters degraded mode (fallback model answers questions directly), probes primary model every 5 min -- verification timeout caveat (v0.11.0): timed-out verifications append [Unverified] instead of silently passing
  9. Formula registry (v0.7.0) -- bidirectional sync between TOML files and Postgres formula_registry -- system formulas (.beads/formulas/*.formula.toml) synced to Postgres by heartbeat (TOML wins, definition_hash skip when unchanged) -- user formulas written through to custom/ TOML on every create/update -- custom TOML backfilled to Postgres on startup (insert only, never overwrite) -- heartbeat safety net rewrites missing user formula TOMLs within one cycle -- system formulas are immutable via API (must copy to new name) -- name collision guard prevents user formulas from shadowing system names -- list_formulas/get_formula/create_formula/update_formula tools for CRUD
  10. Dashboard auth (v0.7.0) -- session-based RBAC (viewer/operator/admin) -- bcrypt passwords, session tokens in Postgres -- API key fallback when auth disabled -- role enforcement in JS control panel
  11. Heartbeat cycle (every 5 min) -- Dolt commit, agent metrics computation, daily summary generation, stale agent deactivation, memory search index sync (Dolt → Postgres), knowledge graph backfill, KG entity/edge expiry with weight decay, daily budget replenishment, chat session expiry, dashboard session cleanup, formula registry sync (system TOML → Postgres, custom TOML backfill, hash backfill, disk safety net), notification rule evaluation (service_event_error, dlq_spike, budget_low conditions with cooldown and auto-postmortem)
  12. Scheduled task promotion -- coordinator polls scheduled_tasks every 60 seconds -- promotes due tasks into task_queue -- supports one-shot (disable after fire) and recurring (next_run_at += recurrence_secs) -- optional formula execution -- publishes NATS task_available for immediate routing
  13. Notification dispatch -- send_notification tool inserts notification_log + publishes NATS notification.send -- a2a-gateway subscribes and delivers to Telegram (bot API) or Slack (incoming webhook) -- delivery status tracked as pending/sent/failed

Databases

Database Port Purpose
Dolt (MySQL wire protocol) 3307 Versioned brain: agent_memory, decisions, agent_profiles, projects, skills, beads_issues, daily_summary
PostgreSQL 5432 Hot paths: task_queue, messages, work_log, audit_log, outbox, residency_log, approval_policies, approval_gates, agent_metrics, delegations, streams, guardrail_policies, guardrail_violations, a2a_task_map, workflow_runs, memory_search_index (BM25 full-text), kg_entities, kg_edges, kg_entity_memories, budget_transactions, tool_cost_map, dead_letter_queue, task_decompositions, shared_workspaces, webhook_endpoints, webhook_log, chat_sessions, chat_messages, chat_reply_queue, chat_attachments, formula_registry, dashboard_users, dashboard_sessions, platform_credentials, scheduled_tasks, notification_rules, notification_log, service_events, task_negotiations
Qdrant 6333 Semantic vector search: broodlink_memory (768-dim nomic-embed-text) for hybrid_search with query expansion, broodlink_kg_entities (768-dim) for knowledge graph entity similarity

Services

Service Port Transport Purpose
broodlink 3310* HTTP Unified binary: setup wizard, process manager (starts all services + infrastructure), reverse proxy to status-api and Ollama, native chat UI, model management API. Embeds the full Hugo dashboard via rust-embed. Bootstrap graph startup pipeline (DAG of stages: Prefetch → Config → Dependencies → Databases → Services → DeferredInit → Ready with topological sorting and cycle detection). Trust-gated deferred initialization (phased tool access based on agent trust levels: UNTRUSTED → PROBATION → STANDARD → ELEVATED → SYSTEM). *Default port; configurable via --port.
beads-bridge 3310 HTTP + NATS Universal tool API (96 tools), JWT RS256 auth with kid-based multi-key validation, rate limiting, budget enforcement, circuit breakers, JWKS endpoint, SSE streaming, task negotiation tools (decline/context request), deny-list permission pre-filter (O(1) in-memory tool blocking before DB guardrail queries)
coordinator -- NATS only Smart task routing with weighted scoring and token-based prompt pre-filter (keyword overlap scoring before weighted multi-factor routing), atomic claiming, exponential backoff, dead-letter queue with auto-retry, workflow orchestration with conditional steps, parallel groups, per-step retries, timeouts, and error handlers, LLM-powered sub-task decomposition (configurable, fail-open), agent-to-agent delegation protocol (request/accept/decline/complete lifecycle), automated verification pipeline on task completion (pass/fail/skip), scheduled task promotion (60s polling), task negotiation protocol (decline/redirect/context request with max-decline dead-letter), transcript compaction (auto-compacts agent context at 80% token budget, keeps system prompt + summary + last N messages)
heartbeat -- NATS + DB 5-min sync cycle: Dolt commit, agent metrics, daily summary, stale agent deactivation, KG entity/edge expiry with weight decay, daily budget replenishment, formula registry sync, notification rule evaluation
embedding-worker -- NATS + DB Outbox poll -- Ollama nomic-embed-text embeddings -- Qdrant upsert -- LLM entity extraction for knowledge graph, circuit breakers, smart chunk boundaries (heading/code-fence/paragraph-aware splitting)
status-api 3312 HTTP Dashboard API with API key + session auth (RBAC on all mutations), CORS, security headers (HSTS, CSP, X-Frame-Options), SSE stream proxy, control panel endpoints (agent toggle, budget set, task cancel, webhook CRUD, guardrails, DLQ), chat session management, chat attachment retrieval and thumbnails, formula registry CRUD, user management, agent onboarding with JWT generation, verification analytics
mcp-server 3311 HTTP + stdio MCP protocol server (streamable HTTP + legacy stdio), proxies bridge tools
a2a-gateway 3313 HTTP Google A2A protocol gateway, AgentCard discovery, cross-system task delegation, webhook gateway for Slack/Teams/Telegram with inbound command parsing and outbound event notifications, conversational chat gateway with session management, greeting support, direct Ollama LLM chat with 10 chat tools (web_search, fetch_webpage, remember, schedule_task, list_scheduled_tasks, cancel_scheduled_task, read_file, write_file, read_pdf, read_docx), auto-fetch URLs from conversation history (DB query beyond context window), retry with reduced tool set on thinking-only output, streaming responses with progressive Telegram edits, multi-Ollama load balancing (least-loaded healthy instance), multi-modal attachment handling (Slack/Teams/Telegram file downloads, classification, storage), concurrency semaphore, search cache, dedup, typing refresh, self-healing model failover with degraded mode, NATS notification dispatch subscriber (Telegram/Slack delivery), query expansion for memory search

Shared Crates

Crate Purpose
broodlink-config Config struct loaded from config.toml with BROODLINK_* env var overrides
broodlink-secrets SecretsProvider trait -- SopsProvider (dev) and InfisicalProvider (prod)
broodlink-telemetry OpenTelemetry integration with OTLP export (Jaeger) and W3C trace propagation
broodlink-events Streaming event protocol: typed SSE/NATS event envelopes (StreamStart, StreamEnd, RouteStart, AgentMatch, TaskDispatched, ToolExecStart, MessageDelta, PermissionDenied, BudgetExhausted), StreamBuilder for ordered emission
broodlink-runtime Shared utilities: CircuitBreaker, shutdown_signal, cluster-aware connect_nats
broodlink-formulas Formula TOML parsing, JSONB conversion, definition_hash, bidirectional sync helpers
broodlink-fs File system helpers: tilde expansion, attachment storage and retrieval

Configuration

All configuration lives in config.toml. Every field can be overridden with environment variables using the BROODLINK_ prefix:

Env Var Purpose
BROODLINK_CONFIG Path to config file (default: config.toml)
BROODLINK_DOLT_HOST Override Dolt hostname
BROODLINK_DOLT_PORT Override Dolt port
BROODLINK_POSTGRES_HOST Override Postgres hostname
BROODLINK_POSTGRES_PORT Override Postgres port

Deployment Profiles

  • dev: TLS off, SOPS secrets provider, relaxed audit residency
  • prod: Mutual TLS on inter-service connections, Infisical secrets provider, strict audit residency, NATS clustering, Postgres read replicas

Testing

cargo test --workspace                    # 381 unit tests
bash tests/run-all.sh                     # 22 integration test suites
bash tests/e2e.sh                         # 124 end-to-end tests (requires running services)
bash tests/v060-regression.sh             # 164 v0.6.0 regression tests

The E2E suite covers: service health, JWT/API key auth, all tool categories, status API endpoints, background service verification, SSE streaming, NATS integration, error handling, database round-trips, semantic search, hybrid memory search, knowledge graph tools, chat sessions, and login page. The v0.6.0 regression suite covers: budget enforcement, DLQ tooling, OTLP telemetry, KG expiry, JWT rotation, workflow branching, dashboard control panel, multi-agent collaboration, and webhooks. v0.7.0 adds chat integration, formula registry, and dashboard auth test suites. v0.11.0 adds onboarding regression tests (agent_id validation, JWT claims, tilde expansion, payload defaults).

Benchmarks

Measured on Mac Studio — Apple M4 Max, 16 cores (12P + 4E), 128 GB unified memory.

Ollama Models

Model Role Size Generation Accuracy
gemma4:31b Primary chat + vision 19 GB 40 tok/s 100% (13/13 bench)
gemma4:26b Code (MoE) 17 GB 65 tok/s 100% (4/4 bench)
gemma4:e4b Fallback/expansion/KG 9.6 GB 50 tok/s 85% (8/9 bench)
deepseek-r1:32b Verifier 19 GB 9-22 tok/s 75% (3/4 bench)
nomic-embed-text Embeddings 274 MB 13.9 emb/s
snowflake-arctic-embed2:568m Reranker 1.1 GB

vs Cloud Models (published benchmarks)

Model MMLU HumanEval MATH SWE-bench
Claude Opus 4.6 88.7% 94.5% 78.3% 80%+
GPT-4o 87.2% 90.2% 76.6% 33.2%
gemma4:31b (local) ~84% ~87% ~75%
gemma4:26b (local) ~88%

Local models achieve ~85-95% of cloud quality at zero cost, zero latency, full privacy.

Services & Databases

Component Latency
Service health endpoints 23–29ms
Bridge tool call (no DB) 36ms
Bridge tool call (Postgres) 38ms
Bridge tool call (Qdrant + Ollama) 135ms
Postgres queries (402–8233 rows) 0.3–1.1ms
Disk sequential write 6.5 GB/s

Platforms

Pre-built binaries for all platforms — no build tools required:

Platform Architecture Archive
macOS ARM (Apple Silicon) .tar.gz
macOS Intel (x86_64) .tar.gz
Linux x86_64 .tar.gz
Linux ARM64 (aarch64) .tar.gz
Windows x86_64 .zip

Download from the latest release, or use the one-liner install scripts above. All archives include SHA256 checksums. Push a version tag (git tag vX.Y.Z && git push origin vX.Y.Z) to trigger the release workflow.

Prerequisites

  • Rust 1.75+ with cargo-deny
  • Hugo 0.120+ (extended edition)
  • age + SOPS (secrets management)
  • Dolt SQL server
  • PostgreSQL 15+
  • NATS 2.10+
  • Qdrant 1.7+
  • Ollama with nomic-embed-text model
  • Python 3.10+ (for agent SDK)

Scripts

Script Purpose
install.sh One-liner installer (macOS/Linux): detects OS/arch, downloads with progress bar, verifies SHA256, installs to /usr/local/bin. Pass --uninstall to remove.
install.ps1 One-liner installer (Windows): downloads with progress, verifies SHA256, installs to %LOCALAPPDATA%\Broodlink\bin, adds to PATH. Pass -Uninstall to remove.
broodctl Stack manager: up/down/restart/rebuild/status/health/logs/doctor — single command for everything
scripts/bootstrap.sh One-shot setup: prerequisites check, infrastructure, secrets, databases, build, onboard, start
scripts/start-services.sh Start/stop all 7 Rust services + Hugo (--stop to stop)
scripts/build.sh cargo deny + tests + release build + Hugo
scripts/secrets-init.sh Generate JWT keypair, create .secrets/env, scaffold secrets.skeleton.json
scripts/db-setup.sh Create databases, run all 32 migrations, create Qdrant collections
scripts/rotate-jwt-keys.sh Generate new JWT keypair with kid fingerprint, retire old keys after grace period
scripts/backfill-search-index.sh One-time backfill of Postgres memory_search_index from Dolt agent_memory
scripts/backfill-knowledge-graph.sh One-time backfill of knowledge graph entities from existing memories
scripts/seed-formulas.sh Seed formula_registry from .beads/formulas/*.formula.toml (deprecated — heartbeat handles sync automatically)
scripts/create-admin.sh Create dashboard admin user with bcrypt password
scripts/start-gateway.sh Start a2a-gateway with .env sourcing
scripts/onboard-agent.sh Register an agent: generate JWT, insert profile, create system prompt
scripts/infra-start.sh Start/stop/status for native infrastructure (PostgreSQL, NATS, Dolt, Qdrant, Ollama, Jaeger) via brew services
scripts/dev.sh Start/stop dev stack (native infrastructure + services + Hugo)
scripts/launchagents.sh Install/manage macOS LaunchAgents for all services
scripts/generate-tls.sh Generate self-signed CA + server certificates for TLS

Directory Structure

broodlink/
├── crates/
│   ├── broodlink-config/         # Configuration loading + validation
│   ├── broodlink-events/         # Streaming event protocol (SSE/NATS typed envelopes)
│   ├── broodlink-secrets/        # SecretsProvider trait + implementations
│   ├── broodlink-telemetry/      # OpenTelemetry + OTLP export
│   ├── broodlink-runtime/        # CircuitBreaker, shutdown_signal, connect_nats
│   ├── broodlink-formulas/       # Formula TOML parsing, JSONB conversion, sync helpers
│   └── broodlink-fs/             # File system helpers, attachment storage
├── rust/
│   ├── broodlink/                # Unified binary: setup wizard, process manager, dashboard, chat UI
│   ├── beads-bridge/             # Universal tool API (96 tools, task negotiation)
│   ├── coordinator/              # NATS task routing + workflow orchestration + decomposition + delegation + verification
│   ├── heartbeat/                # Periodic sync + health checks
│   ├── embedding-worker/         # Outbox → Ollama → Qdrant pipeline + KG entity extraction
│   ├── status-api/               # Dashboard API + control panel endpoints
│   ├── mcp-server/               # MCP protocol server
│   └── a2a-gateway/              # A2A protocol gateway + webhook gateway
├── agents/                       # Python SDK: typed clients, Click CLI, BaseAgent framework, ML utilities
├── status-site/                  # Hugo dashboard (WCAG 2.1 AA, 18 pages)
│   └── themes/broodlink-status/  # 18 pages
├── install.sh                    # One-liner installer (macOS/Linux)
├── install.ps1                   # One-liner installer (Windows)
├── broodctl                      # Stack manager (up/down/status/rebuild/doctor)
├── migrations/                   # SQL migrations (33 files, additive only)
│   ├── 001_dolt_brain.sql
│   ├── 002_postgres_hotpaths.sql
│   ├── 003_postgres_functions.sql
│   ├── 004_approval_gates.sql
│   ├── 005_agent_metrics.sql
│   ├── 005b_agent_max_concurrent.sql
│   ├── 006_negotiations.sql
│   ├── 007_streams.sql
│   ├── 008_guardrails.sql
│   ├── 008b_agent_budget_tokens.sql
│   ├── 009_a2a_gateway.sql
│   ├── 010_task_result.sql
│   ├── 011_workflow_orchestration.sql
│   ├── 012_memory_fulltext.sql
│   ├── 013_knowledge_graph.sql
│   ├── 014_budget_enforcement.sql
│   ├── 015_dead_letter_queue.sql
│   ├── 016_workflow_branching.sql
│   ├── 017_multi_agent_collab.sql
│   ├── 018_webhooks.sql
│   ├── 019_chat_sessions.sql
│   ├── 020_formula_registry.sql
│   ├── 021_dashboard_auth.sql
│   ├── 022_schema_hardening.sql
│   ├── 023_platform_credentials.sql
│   ├── 024_platform_credentials_meta.sql
│   ├── 025_missing_indexes.sql
│   ├── 026_formula_sync.sql
│   ├── 027_service_events.sql
│   ├── 028_proactive_skills.sql
│   ├── 029_negotiation_protocol.sql
│   ├── 030_chat_attachments.sql
│   └── 031_runtime_settings.sql
├── tests/                        # Integration + E2E test suites
├── templates/                    # System prompt template for agent onboarding
├── scripts/                      # Build, setup, onboarding, and dev scripts
├── launchagents/                 # macOS LaunchAgent plists (8 services)
├── .beads/formulas/              # Workflow formula definitions
│   └── custom/                   # User-created formulas (auto-persisted from Postgres)
├── .secrets/                     # Encrypted secrets (age + SOPS)
├── config.toml                   # Application configuration
├── deny.toml                     # cargo-deny license/ban rules
├── podman-compose.yaml           # Container orchestration (optional, dev only)
└── podman-compose.prod.yaml      # Prod containers: 3-node NATS, PG replicas, TLS

Beads Workflow Formulas

Located in .beads/formulas/:

Formula Purpose
research.formula.toml Multi-step web research with source evaluation
build-feature.formula.toml End-to-end feature: plan, implement, test, document
daily-review.formula.toml Daily ops review: metrics, blockers, summary
knowledge-gap.formula.toml Audit memory, prioritize gaps, research and fill
coding-agent.formula.toml Code generation with planning, implementation, review, and testing
custom/incident-postmortem.formula.toml Gather evidence, root cause analysis, prevention plan, final report

Visual Workflow Editor

The dashboard includes a drag-and-drop visual editor at /workflows/ for authoring and editing formulas. Built with custom SVG (no external JS dependencies):

  • Canvas: Zoom/pan, port-to-port edge drawing, node dragging, snap-to-grid, auto-layout (Kahn's topological sort)
  • Node types: Step (rect), Condition (diamond), Start/End (circles) with role badges and tool count indicators
  • Property panel: All FormulaStep fields including searchable tool multi-select, agent role, prompt, output schema, error handler
  • Validation: Real-time cycle detection (DFS), duplicate name checks, empty field warnings — blocks save on errors
  • Serialization: Bidirectional Formula ↔ graph conversion preserving all step fields, parallel groups, and conditional edges
  • Persistence: Node positions saved to localStorage keyed by formula name; undo/redo with debounced history stack

Security

Broodlink applies defence-in-depth across all services:

Layer Mechanism
Authentication JWT RS256 (beads-bridge, MCP), API key + session tokens (status-api), Bearer token (a2a-gateway)
Authorization RBAC (viewer/operator/admin) enforced on every status-api mutation endpoint via require_role()
Transport HSTS, CSP default-src 'self', X-Frame-Options DENY, X-Content-Type-Options nosniff on all HTTP services
Input validation 10 MiB body limits, query LIMIT clamping (1–1000), anchored regex, path traversal prevention, webhook SSRF blocking
Secrets SOPS/age encryption, constant-time API key comparison, bcrypt passwords (cost 12), 12-char minimum policy
Resilience Fail-closed guardrails, fail-closed condition evaluation, circuit breakers, rate limiting, SSE stream caps (100 max, 1h TTL)
Container read_only: true, no-new-privileges, dropped capabilities in production compose
CI cargo-deny license and advisory audit

External Integrations

  • MCP: Agents connect via the mcp-server, which proxies all 96 bridge tools over MCP protocol (streamable HTTP or stdio transport) with JWT authentication
  • A2A: The a2a-gateway implements Google's Agent-to-Agent protocol -- exposes an AgentCard at /.well-known/agent.json, accepts task delegation from external A2A-compatible agents, and bridges them to internal Broodlink tasks
  • Webhooks: The a2a-gateway also serves as a webhook gateway -- receives Slack slash commands (/broodlink agents), Teams bot messages, and Telegram bot updates -- parses commands into bridge tool calls -- sends outbound notifications (agent.offline, task.failed, budget.low, workflow events, guardrail violations) to configured webhook endpoints

License

GNU Affero General Public License v3.0 or later -- see LICENSE.

Reviews (0)

No results found