FAQ · v0.8.1

Frequently asked questions

Answers to typical questions about the Agentic Software Factory v0.8.1 — platform, setup, wizard, adapters, quality gate, settings, security, licensing and roadmap. If your question is missing, drop us a line: hello@softwarefabrik.io.

Platform Setup & install Wizard & project creation Adapters & models Quality gate Settings Security & compliance License & pricing Roadmap

Platform in general

What is the Agentic Software Factory?

The Agentic Software Factory is a local web application that lets you kick off, supervise and trace AI-assisted development in a structured way. It connects project capture (with or without the wizard), automatic generation of Markdown specifications, run orchestration against coding CLIs (Claude Code, Codex, Gemini, Aider), live logs, Git discipline and an automatic quality gate. The goal is not "magic AI coding with one click" — it's reproducible, reviewed results you can hand to your team.

What's happened since v0.4.0?

Seven minor releases have taken the platform from "MVP with two wizard templates" to a fully orchestrated solo-dev tool. Short list:

v0.4.0 — settings + wizard. /einstellungen with override order PROJECT > USER > GLOBAL > YAML + 5-min TTL cache; four-step wizard with two templates and version cache.
v0.5.0 — polyglot. Four more wizard templates: .NET Backend, Python FastAPI, Node Express, plus the later Existing-Repo-Import. Six templates total.
v0.6.0 — conductor. Per-role model routing (preferredModel passed as --model flag); plugins/skills sync (platform writes .claude/settings.local.json and .claude/agents/<role>.md before every run); repo-import wizard and PROJECT_NOTES.md.
v0.7.0 — hardening. Container-per-run sandbox (Docker/Podman with --cpus 2 --memory 4g --pids-limit 512 --read-only --network=none) switchable via setting; run templates saved from successful runs; live token stream via line-by-line NDJSON parser.
v0.8.0 — UX peak. Cost estimate in wizard step 4 (local via JTokkit); inline diff of workspace changes before approval; browser notifications via the Web Notifications API on run completion.
v0.8.1 — wizard polish. Progress stepper, objective preview, server-side required-field validation, version-cache empty state.

The news page has the full release notes.

How does it differ from using Claude Code directly in the shell?

With direct shell use you have to organise project definition, guardrails, approvals, Git discipline and status oversight manually. The Software Factory makes those aspects visible and reusable — you don't kick off one coding pass, you orchestrate a sequence of plan, implement, review and validate, with live logs and a quality-gate verdict at the end. It's not a different coding mode, it's a different abstraction layer.

Who is the platform for?

Primarily for software architects, lead developers, technical project managers and small teams who want to do AI-assisted development in a more controlled, reproducible way — typically in mid-sized companies, regulated industries, or consultancies that have to document code outcomes. It's not meant as a mass consumer product and isn't aimed at hobbyists who want to generate a quick script — Claude Code on its own is faster for that.

What problems does the platform solve?

Too few or unstructured commits during AI-assisted coding.
Lack of transparency around logs, status and approvals.
Inconsistent project definitions across teams.
Hard to reuse good project setups (start from scratch every time).
High manual effort orchestrating multiple coding CLIs.
Missing automated quality assessment of AI-generated output.

What agent roles are envisaged?

Typical: Architect, Developer, Reviewer, QA, Security Reviewer, Documentation, Merge/Release. Each role can have a preferredModel — an Architect might use claude-opus-4-7 for deep design decisions, a Reviewer the faster claude-haiku-4-5. Roles are serialised as Markdown into AGENTS.md and read by the coding agent as context.

What's a typical workflow?

Capture the project idea (wizard or quick create).
Fill in project fields or take what the wizard pre-filled.
Generate Markdown artifacts and read them once.
Verify the team composition (or accept the default).
Create a run with a clear goal, move to READY, start.
Follow logs, phases and Git diff, click approvals.
After COMPLETED, run the quality gate, review findings.
If needed, set up a follow-up run with a corrective goal.

Why work with Markdown artifacts?

Files like PROJECT.md or INSTRUCTIONS.md are human-readable, versionable and friendly to AI tools. They form the "working contract" between user, platform and agent. The agent reads them as a top-level brief, you can edit them and trace changes in Git history. Unlike binary configurations or DB columns, Markdown is also useful outside our platform — you never get locked into a proprietary format.

Why Spring Boot + Thymeleaf instead of Angular/React?

Version 1 prioritises orchestration, run model, Git/build integration and traceability. A server-rendered UI with Spring Boot and Thymeleaf reduces complexity — no separate frontend build, no API versioning, no double authentication. That makes the product core trustworthy faster. A SPA version is on the backlog (ADR-0015 under discussion), but only after the core is stable.

Is the platform a real multi-agent system?

Not in the sense of "multiple agents running in parallel and talking to each other". v1 prepares roles, teams and workflow structure for that, but starts with one executing adapter per run. The goal is a clean extension path, not maximum complexity in step one. True multi-agent (different models per phase, mutual review) is on the roadmap from phase 5/6 onwards.

Setup & install

What are the prerequisites?

Docker (24+) and Docker Compose v2.
Free port 8080 (web) and 5432 (Postgres, bound to localhost).
~5 GB disk space for container images, build cache and first workspaces.
A .env file with bootstrap admin credentials and master key.

You don't need to install Java, Maven or Node locally as long as you stay in container mode. Only when you use real vendor adapters such as claudecode or codex do you need that CLI locally.

How do I start the platform?

From the repo root:

git clone https://github.com/janda-io/SoftwareFabrik.git
cd SoftwareFabrik
# create .env with ADMIN_USER, ADMIN_PASSWORD, DB_PASSWORD, SECRETS_MASTER_KEY
docker compose up -d

Generate the master key with openssl rand -base64 48. Details in the quickstart.

Does the platform work offline?

Depends on the tier:

Community and Professional: usable up to 30 days offline (grace period after lease expiry). After that the 24-hour emergency grace can be activated once with one click.
Enterprise Self-Hosted: up to 90 days offline. The license server typically lives on the internal network anyway.
Enterprise Air-Gap: fully offline. Renewal once a year via a signed certificate file (USB stick or controlled file transfer).

Can it be run air-gapped?

Yes, with an Enterprise Air-Gap license. The platform itself has no hard internet dependency. What you need:

A fully offline-verifiable license certificate (Ed25519-signed, 365 days).
Annual renewal via USB stick or file transfer.
The LLM must be on-prem (e.g. Ollama with Qwen 3 Coder, DeepSeek V3.2). Vendor cloud adapters aren't possible in air-gap mode.
Version cache must be seeded in internet mode — alternatively the code-level fallback versions kick in.

What data is sent to external servers?

In the default setup only:

To the license server: license ID (UUID), device fingerprint hash (SHA-256), email hash, client version, ISO country of the IP.
To the version lookup (Maven Central, GitHub, npm): just unauthenticated HTTP GETs.
To the configured LLM vendor: your prompt + workspace contents. Depends on the vendor.

In air-gap mode: nothing. Details in the transparency document.

Wizard & project creation

How does the wizard work internally?

The wizard is a four-step controller at /wizard with its own persistence in wizard_draft (V12). Steps:

Pick a template: you choose between spring-boot-backend and static-frontend. The template determines the questions in step 2.
Questions: per template a fixed set of questions (Java version, DB, architecture style, Node version, build tool, …). Answers are stored in a JSON column.
Quality-gate toggles: ArchUnit, OWASP, Trivy, Playwright. Which ones appear depends on the template (e.g. ArchUnit only for backends).
Summary: overview of all answers, then "Create project". On completion the wizard creates a ProjectDefinition, fills all editor fields, sets the draft status to completed.

Drafts survive browser reload and server restart. The next visit to /wizard shows a "Resume draft" button that takes you to the last saved step. Unfinished drafts are auto-deleted after 30 days (cleanup job at 04:00).

Which templates exist?

Template	Content	Quality-gate toggles
`spring-boot-backend`	Java backend with Spring Boot. Java 21 or 25, DB choice Postgres / H2 / MySQL, architecture style hexagonal / layered / modulith.	ArchUnit, OWASP, Trivy
`static-frontend`	Static frontend with HTML/CSS/JS. Build tool Vite or Astro. Node 20 or 22.	Trivy, Playwright

Snippets sit on the classpath under resources/wizard/templates/<name>/ and exist in DE and EN (you choose the language in wizard step 2).

How do version values reach the wizard?

From the version_cache (V13). A daily @Scheduled job at 03:00 fetches current stable versions from three sources:

Maven Central for Spring Boot, ArchUnit, OWASP Dependency-Check.
GitHub Releases for the Trivy CLI.
npm registry for Playwright.

Cache keys are functional, not technical: spring-boot.3.x, archunit.latest, trivy.cli.latest, … If the cache is empty or stale, the wizard falls back to hard-coded versions from the source.

What happens if the version cache is stale?

"Stale" means: Java-computed, the last refresh is more than 25 hours old. The wizard still shows the values (with a stale badge in the admin UI), and you can hit "Refresh now" at /einstellungen/wizard/versions to trigger a synchronous lookup. If the lookup job has failed multiple times, the last error is shown in the last_error column.

How do I disable the wizard and only use "Quick create"?

You don't need to disable it — the "Quick create" button stays on the project list and opens a two-field form (project title, product name). You go straight to the editor and fill the rest yourself.

If you want to hide the wizard completely (e.g. because your team only uses quick create), there's a toggle in settings under UI for "Wizard menu entry". The route stays technically reachable — we only hide it from navigation.

Can templates be extended?

Yes, but only in code. A new template is a new entry in TemplateRegistry (immutable record with fields and supported toggle IDs), plus accompanying snippet files under resources/wizard/snippets/<lang>/<toggleId>.md and base prompts under resources/wizard/prompts/<lang>/<templateId>/basis.md. Six templates are registered today (Spring Boot Backend, Static Frontend, .NET Backend, Python FastAPI, Node Express, Existing-Repo-Import). A UI-based template manager (custom templates via drag-and-drop) stays a V2 topic.

Adapters & models

Which adapters exist?

Adapter	Purpose	Prerequisite
`claudecode`	Anthropic Claude Code CLI	Local CLI install + Anthropic API key
`codex`	OpenAI Codex CLI	Local install + OpenAI API key
`gemini`	Google Gemini CLI	Local install + Google API key
`aider`	Aider (open source)	Local install + LLM provider config (Anthropic, OpenAI, local)
`mock`	Test adapter, no API call	None. Always available.

How do I configure default models per adapter?

Under /einstellungen → Adapter. Each adapter has a Default model field:

execution.model.claudecode — typical claude-sonnet-4-6 or claude-opus-4-7.
execution.model.codex — typical gpt-5.
execution.model.gemini — typical gemini-2.5-pro.
execution.model.aider — typical claude-3-7-sonnet-20250219.

These defaults are used for new runs unless the user explicitly picks another model in the run-creation dialog. Per AgentDefinition there's an additional preferredModel field (V11) you can set per role — it lands in the UI in phase 5.

What is the mock adapter for?

The mock adapter is a test adapter that works without an API key and writes deterministic pseudo tokens into the workspace. Ideal for:

First platform tests: quickstart, onboarding without vendor cost.
CI pipelines: when you want to test the platform mechanics, not the LLM.
Bug reproduction: if a run shows weird logs, you can replay it with mock without burning real tokens.

Output is not "real code" — more like pseudo content that simulates a typical run flow.

Can I pick a different adapter per run?

Yes. The run-creation page has an "Adapter" dropdown. If you pick something there, it overrides the global default (override order: RUN > PROJECT > USER > GLOBAL > YAML). Useful for A/B comparisons: same brief, once with Claude, once with Codex, then compare results.

Quality gate

What does the quality gate do?

The quality gate is an automatic assessment of the run output. It calls multiple reviewers, collects their findings and produces an aggregated verdict (PASSED / WARNING / FAILED / SKIPPED / ERROR). Reviewers are read-only — they don't write into the workspace, they only inspect.

Which reviewers are available?

aider-review — invokes the Aider CLI in read-only mode, looks for code smells and improvements.
claude-review — invokes Claude Code in read-only mode and has the model critique its own output.
security — static heuristic engine: scans for hardcoded passwords, weak crypto, SQL injection patterns, missing input validation, …
architecture-reviewer — compares code against the architecture spec in PROJECT.md + WORKFLOW.md. Detects layer violations and bad dependencies.
hallucination-review — looks for invented method calls, non-existent packages, or made-up API signatures.

What do the verdicts mean?

PASSED — no findings, all reviewers green.
WARNING — some findings below the blocking threshold.
FAILED — at least one blocking finding (by policy or special rule).
SKIPPED — quality gate was not run (e.g. because the run was cancelled).
ERROR — a reviewer crashed (e.g. its CLI is missing). Deliberately not swallowed.

What are the special rules?

Two finding types are always blocking, regardless of policy:

SECURITY/HIGH — e.g. hardcoded secrets in committed code, weak crypto algorithms, obvious SQL injection.
ARCHITECTURE/CRITICAL — e.g. a domain class importing Spring, web layer reaching directly into infrastructure.

This rule prevents an overly relaxed policy from quietly waving through critical issues.

What's the difference between strict and lenient policy?

strict (default): every WARNING blocks subsequent phases. Good for production setups.
lenient: WARNING is shown but doesn't block. Good for first tutorial runs and experimental projects.

Special rules (SECURITY/HIGH, ARCHITECTURE/CRITICAL) are blocking either way.

Settings

What can I configure in the settings area?

Under /einstellungen (ADMIN-only) you can configure:

Workspace: default root path for run workspaces.
Git: user name and email for auto-commits.
Adapter: default adapter and default model per adapter.
Budget: daily and weekly token caps, soft threshold.
Wizard: version cache overview and manual refresh.
Quality gate: policy strict / lenient, reviewer activation.

What is the override order?

PROJECT > USER > GLOBAL > YAML. A project-level value beats a user-level value beats a global value beats the default in application.yml. SettingService implements this resolution uniformly for all settings.

How does the token budget work?

You set a daily token cap (e.g. 2,000,000) and/or a weekly token cap. Per run, used tokens (input + output) are summed. Two modes:

Soft threshold (default 80 %): on breach the UI shows a warning banner. New runs remain possible.
Hard limit at 100 %: new run creation is blocked with the message "daily budget reached". Running runs are not aborted — they finish.

Reset at midnight (local time) for daily, Sunday 00:00 for weekly.

When do settings changes take effect?

At most 5 minutes after saving, because SettingService uses a 5-minute TTL cache. That's an intentional trade-off: fewer DB hits per resolve, slight delay in return. To see changes immediately, click "Invalidate cache now" on the settings page.

Who can change settings?

Only users with the ADMIN role. Primarily the bootstrap admin (SOFTWAREFABRIK_ADMIN_USER); you can create more admins under /admin/users. Every change creates an audit log entry with subject (who), key, old value, new value, timestamp.

Security & compliance

How does the platform handle security and privacy?

The platform aims for data-minimal, traceable use:

No secrets in source, no plaintext password in logs.
API keys AES-GCM-encrypted in Postgres (master key from env var).
Passwords BCrypt-hashed at cost 12.
Audit log for all security-relevant events.
Approval policies before critical phases.
docker-compose Postgres mapping pinned to 127.0.0.1 — not accidentally exposed.
pgJDBC 42.7.11 with the CVE-2026-42198 fix.

How is a user authenticated?

In v1: local authentication with username + password against the platform DB. BCrypt-hashed passwords, CSRF protection, session cookies (HttpOnly, Secure, SameSite=Lax). For the Enterprise tier, additional Keycloak OIDC with the device authorization grant — one-time browser login, then the app keeps an encrypted refresh token locally.

What goes into the audit log?

Login attempts (successful + failed, with user subject and IP country).
Settings changes (key, old value, new value, subject, timestamp).
Run starts (run ID, adapter, model, subject).
Approval decisions (phase, decision, subject).
Adapter configuration changes (integration setup with encrypted API key).

Append-only — nothing is deleted or edited. Table audit_event.

Is the platform suitable for regulated environments?

It's well aligned — traceability, structure, documentation, Git discipline and explicit approvals are built in. Concrete hardening (e.g. ISO-27001, BAIT, DORA conformance) depends on the deployment environment and needs additional organisational measures. For government we recommend the air-gap tier with on-prem LLM.

License & pricing

Which license tiers exist?

Three tiers:

DEMO: registration-free after download, mock adapter only, 5 runs/month, fully local, no server contact.
COMMUNITY: automatic after registration, includes the Claude adapter, 20 runs/month, 10 min per run, 3 agents per team — good for trying things out, not enough for larger projects.
FULL: upgrade by an admin (or via contract), no limits, all adapters, all reviewers.

How much does the platform cost?

The platform itself is free in DEMO and COMMUNITY tiers. FULL/Professional is paid (price on request), Enterprise Self-Hosted and Enterprise Air-Gap are individual contracts. What costs extra are vendor API costs (Anthropic, OpenAI, Google) for actual coding calls — the platform only acts as a broker there.

Which LLMs are supported?

Anthropic Claude (official API, AWS Bedrock, Google Vertex AI).
OpenAI (official API or Azure OpenAI).
Google Gemini (Vertex AI).
On-prem via Ollama or vLLM: Qwen 3 Coder, DeepSeek V3.2, GLM-5.1, others.

LLM choice is the customer's call and configured in the adapter. Air-gap mode allows on-prem LLMs only.

Can I switch between tiers?

Community → Professional: any time via account upgrade.
Professional → Enterprise: via contact, individual migration including contractual alignment.
Enterprise deployment switch (e.g. cloud → self-hosted): part of the contract, applied with a new license file.

What are the Community tier limits?

10 successful runs per day (reset at 00:00 local time).
3 parallel agents per run.
No team features, no SSO, no support SLA.
Failed, cancelled or timed-out runs don't count.

Roadmap & extension

How does it differ from LangChain / LangGraph / AutoGPT?

LangChain and LangGraph are library frameworks for Python developers building AI workflows themselves. AutoGPT is an experimental auto-run agent that decomposes tasks largely autonomously. The Software Factory is not a library — it's a finished web application with a defined workflow (project → artifacts → run → quality gate). You don't program it, you use it. The audience is therefore much broader: not only Python devs with an AI background, but every lead developer.

When does multi-agent execution arrive?

Roadmap phase 5/6 (summer/autumn 2026). Concretely: a different agent per phase (Plan = Architect / Implement = Developer / Review = Reviewer), with role-specific models. The DB schema prep is already in place via V11 (agent_preferred_model) — only the orchestration logic is missing.

Can external plugins / adapters be loaded?

In v1: no. Adapters are added as Java classes in the codebase. A plugin API (e.g. via Java Service Provider Interface or Spring Boot Starter mechanism) is on the backlog (ADR-0014). We deliberately defer it because a stable plugin API design is only worth designing once the adapter logic has iterated a few times.

Is there a roadmap?

Yes, in the repo at docs/roadmap/reifegrad-roadmap.md. Current state (May 2026): v0.4 done, v0.5 in progress (multi-model per role, web IDE stub). Larger themes like multi-tenant, external plugin API and SPA frontend are v0.7+ on the horizon.

Is there deeper technical background available?

Yes. As an architecture deep-dive there's a separate whitepaper covering the architectural foundations of agentic software development: reference architecture, agent orchestration, AI guardrails, shared knowledge stores and integration into the SDLC. The PDF (76 pages) is free and downloadable without registration.

What's the best way to get started?

The quickstart (10 minutes, mock adapter, no API cost). Once that runs: tutorial with the real Claude Code adapter (45 minutes). If you'd rather just click around without installing: live demo.