Proposal · for reviewAINA · Paperclip team · AIOPS-2662026-07-01
AINA Minas Tirith OS
The White City as the control plane. You're the marketing-bound King; Donna is Steward — the team ships itself, and you review outcomes on a surface you pull, never pings that interrupt you.
Direction confirmed — but do NOT rename + flip in one pass. The council was unanimous: sequence it repair → verify → flip, or we repeat three "never again" mistakes (false-done, drift, detection-without-action). The calibration's real value: it caught four live landmines before we touched anything.
Section 01
The 4 landmines calibration caught
63 of 64 agents' manifests are corrupted — a secret-scrubber overwrote real authority_order values with the literal string [REDACTED]. Routines read these at wake; repair is a blocking prerequisite.
Donna doesn't exist as a Paperclip agent yet — only a thin 11-line bridge stub. "Donna is CEO" is false until a real record exists.
COO is a LIVE 10th agent dispatching build lanes, wired as Jessica's deputy. Paperclip allows exactly one CEO — retiring Jessica must dispose of COO explicitly.
0 of 7 routines actually fire (all paused), and COO's health-marker file is the external scaffolding we're removing → replace with a native task-watchdog.
Locked with you
COO folds into Donna for now (re-design the COO responsibility later; no Slack pings to you — digests & escalations go to a pull surface you check). Donna = a new clean Paperclip record. Jessica retired. reportsTo slugs stay stable.
Section 02
The White City — seven levels
A Steward who administers in the King's absence, a Council of Lords each sovereign over a district, a Guard that watches but never builds, an Archive that remembers so the city doesn't repeat its mistakes.
So the agent playing a role actually has the skill for it:
Layer
What
1 · Hermes-native
29 skills auto-loaded on hermes_local (software-dev, devops, github, research, mlops, red-teaming, delegate-to-specialist…) — Donna + heads + Finch
2 · Paperclip
company (decision-contract, handoff, code-reviewer, pr-writer, grill-me) + dept + per-agent via skills:sync
3 · Ruflo powers
rag-memory/agentdb (memory) · intelligence/SONA (self-learning) · aidefence [req. at launch]/security-audit (Silva/Théoden) · testgen/jujutsu (Gimli/Éowyn) · cost-tracker/observability (Fury). Plugin-only — NEVER the swarm layer (it caused the April failure; Paperclip orchestrates).
4 · Memory loop
the heads' compounding intelligence (below) — a real build item
Frodo's release skills (parked earlier, folded back): github-pr-workflow, cloudflare-preview-proof, merge-gate, release-announcement — Keeper of the Gate of Release.
The heads' memory & learning loops — a real build (their memory is empty today)
Each Hermes head gets a per-head Tier-1 MEMORY.md + USER.md, a self-evolving loop (on wake read memory; after each task log what worked/failed → weekly distill to fewer, sharper rules), Tier-2 FTS5 session search (automatic), and the LLM Wiki for the domain heads (Galadriel/data, Círdan/research, Arwen/curriculum) — a separate world-knowledge layer that compounds and cuts hallucination. This is what makes them get smarter every week.
Section 04
Self-running, natively — no scaffolding, no pings
Heartbeat OFF + wake-on-demand ON per agent (active 24/7, $0 idle), set deliberately and audited.
Routines (activate 2–3 first, each cron + real agentId + one live test-fire): Donna's founder-digest → a pull review surface, not Slack; Fury's backlog-dispatch (4h); Finch's memory sweep.
Native task-watchdogs on ~8 lane-roots, assigned to a Guard-tier reviewer, never the lane's own head (producer ≠ verifier).
Retire COO's file-marker watchdog → native. Docker: not used (native + git-worktree).
Company goal → Donna's strategy (you approve once) → she delegates → the citadel ships → she escalates only genuine irreversibles, to the surface you pull.
Section 05
Execution — repair → verify → flip
ACT reversible (Donna/Finch) · Ali your gate
ACT Repair the ~63 [REDACTED] manifests (pointers to source, never inlined). Blocking prerequisite.
Ali Create Donna's new clean record + fold COO's loop into her; retire COO + marker.
ACT Global 64-file re-point Jessica/mission_control → Donna's UUID (grep to zero).
ACT Heartbeat-off / wake-on-demand audit across all 62.
Ali Verify no agent flipped paused → live; founder sign-off before "landed."
Section 06
Still needs you
Canary head + proof bar (recommend a low-stakes head; proof = memory round-trip + FTS5 hit + one delegation).
BIZ-44 security gate — threat-model / dpa-consent / secret-rotation docs are missing; block the relaunch claim, or run in parallel?
Ask Donna — deferred by design: her Hermes gateway is live, and poking it with a speculative query is the exact "don't disturb the running agent" mistake. Recommend routing this proposal to her once you lock the direction.