⚠️ Sample / Illustration repository — NOT production-ready.This codebase is published as a reference implementation to illustrate a multi-agent deployment-assistant pipeline. It is not intended for direct production use. Before deploying anywhere beyond a sandbox, you are expected to conduct your own security review, complete the deferred posture items listed in Security & Known Posture Items, harden IAM scoping, validate the prompt-injection surface, and add the operational controls (auth, audit, rate limiting, observability, DR) appropriate to your environment. The maintainers make no warranty as to fitness for any particular purpose.
A generalized, AI-powered product deployment assistant. Uses a multi-agent pipeline (Strands + Amazon Bedrock) to guide users through deploying any product catalog on AWS: gathering requirements via interview, generating architecture designs, producing Infrastructure-as-Code (CloudFormation), and creating documentation.
The system is product-agnostic — the product catalog, interview fields, deployment patterns, and validation rules are all driven by configuration files (config.yaml + catalog.lock.yaml), not hardcoded logic.
# Install dependencies
cd backend && uv sync && cd ..
cd frontend && pnpm install && cd ..
# Configure environment
cp backend/.env.sample backend/.env
# Edit backend/.env — set AI_DEPLOY_AWS_REGION to your Bedrock-enabled region
# Start both services
./dev.shBackend: http://localhost:8000/ping | Frontend: http://localhost:3000
See Local Development Guide for detailed setup.
Browser → Next.js Frontend (wizard UI)
↓ API calls
FastAPI Backend (orchestrator)
├── Interview Planner (Sonnet 4.5) → plans questions from KB + catalog
├── Interview Executor (Haiku 4.5) → gathers requirements from user
├── Design Agent (Sonnet 4.5) → generates 3 architecture options
├── IaC Agent (Sonnet 4.5) → produces CloudFormation templates
└── Documentation Agent (Sonnet 4.5) → diagrams + user guide
↕
Knowledge Base (Bedrock KB or Local files)
+ Catalog Lock File (deterministic field schema)
| File | Purpose | Maintained by |
|---|---|---|
config.yaml |
Product identity + KB connection + policy overrides (~10 lines) | Developer (hand-edited) |
catalog.lock.yaml |
Full product schema — use cases, fields, patterns, appliance config | Generated from KB, reviewed + committed |
- Interview — AI-guided requirements gathering (fields from catalog)
- Design — 3 architecture options grounded in KB documents
- IaC — CloudFormation generation (parameterize, compose, or generate)
- Documentation — Architecture diagram and user guide
The system supports three KB modes (auto-selected by config):
| Mode | When | How |
|---|---|---|
| Bedrock | AI_DEPLOY_KNOWLEDGE_BASE_ID is set |
AWS Bedrock KB API with vector search |
| Local | knowledge_base.local_path in config.yaml |
TF-IDF search over local markdown files |
| Null | Neither configured | Graceful no-op (LLM uses built-in knowledge) |
├── config.yaml # Product identity (hand-edited)
├── catalog.lock.yaml # Generated product schema (committed)
├── compose.yaml # Docker Compose for Floci (local AWS emulator)
├── dev.sh # One-command local development startup
├── knowledge-base/ # Local KB documents (dev fallback)
│ ├── realtime-inference/ # use_case/deployment_type/doc_type.md
│ ├── batch-inference/
│ └── training/
├── scripts/ # Setup and utility scripts
│ ├── setup-local.sh # Provision Floci resources (DynamoDB, S3, SQS, Cognito)
│ ├── setup-bedrock-kb.sh # Create/configure Bedrock Knowledge Base
│ └── generate-kb-metadata.sh # Generate KB sidecar metadata files
├── backend/
│ ├── lambdas/ws/ # WebSocket Lambda handlers (authorizer, connect, etc.)
│ └── src/
│ ├── config/ # Settings, auth, AWS client, metrics, observability
│ ├── agents/ # LLM agent implementations (interview, design, iac, docs)
│ ├── models/ # Pydantic data models
│ ├── services/ # Business logic (catalog loader, KB provider, plan cache, etc.)
│ ├── storage/ # DynamoDB+S3 storage layer
│ ├── tools/ # Agent tools (KB search, save_artifact, mermaid validator)
│ ├── prompts/ # Template prompt files ({product_name} variables)
│ ├── validation/ # cfn-lint, cfn-guard, checkov pipeline
│ ├── workers/ # SQS Lambda workers + local async worker
│ └── routes/ # FastAPI endpoints
├── frontend/ # Next.js wizard UI
└── infra/ # AWS CDK infrastructure (ECS, Lambda, DynamoDB, etc.)
See Configuration Guide for full schema documentation.
All env vars use the AI_DEPLOY_ prefix. Key variables:
| Variable | Required | Description |
|---|---|---|
AI_DEPLOY_AWS_REGION |
Yes | AWS region for Bedrock and services (default: us-west-2) |
AI_DEPLOY_KNOWLEDGE_BASE_ID |
No | Bedrock KB ID (omit for local KB) |
AI_DEPLOY_DYNAMODB_TABLE |
No | DynamoDB table name (default: ai-deploy-table) |
AI_DEPLOY_S3_ARTIFACTS_BUCKET |
No | S3 bucket for artifacts (default: ai-deploy-artifacts) |
AI_DEPLOY_PRIMARY_MODEL_ID |
No | Bedrock model for design/planning (default: Sonnet 4.5) |
AI_DEPLOY_LIGHTWEIGHT_MODEL_ID |
No | Bedrock model for interview execution (default: Haiku 4.5) |
AI_DEPLOY_COGNITO_USER_POOL_ID |
No | Cognito pool ID (omit for local dev) |
AI_DEPLOY_AGENTCORE_MEMORY_ID |
No | AgentCore Memory ID for cross-session memory |
AI_DEPLOY_DEBUG |
No | Enable debug mode (default: false) |
See backend/.env.sample for the complete list.
# Run backend only
cd backend && uv run uvicorn src.main:app --reload
# Run tests
cd backend && uv run pytest tests/ -q
# Run frontend
cd frontend && pnpm devFor development without AWS Bedrock access, place documents in knowledge-base/:
knowledge-base/
{use_case}/
{deployment_type}/
{document_type}.md # architecture, sizing, configuration, etc.
The local KB provider indexes these files and performs TF-IDF text search with the same metadata filtering as Bedrock. Set AI_DEPLOY_KNOWLEDGE_BASE_ID="" to use local mode.
This repository is a sample. The list below tracks known posture items that are intentionally deferred or suppressed with rationale. Treat this as a starting point for your own security review, not a sign-off.
- Bedrock Knowledge Base ARN scope — The Lambda and ECS task IAM grants
for
bedrock-agent-runtime:Retrieve/RetrieveAndGenerateuse aknowledge-base/*resource wildcard scoped to the deployment account+region. This is because the policy is generated before the KB ID is known. The recommended hardening is to thread the actual KB ID (or its CfnOutput-derived ARN) into the IAM grant so the wildcard is replaced withknowledge-base/<id>. Findings are suppressed ininfra/lib/lambda.tsandinfra/lib/ecs.tswith reference to this section. Tracked as a follow-up.
AwsSolutions-APIG4on WebSocket$disconnectandsubscriberoutes — API Gateway WebSocket APIs only accept authorizers on$connect(AWS platform constraint). Auth context propagates viarequestContext.authorizerand the subscribe handler enforces tenant isolation. Seeinfra/lib/websocket.tsandbackend/lambdas/ws/ws_subscribe.py.AwsSolutions-IAM4on Lambda service roles — the AWS-managedAWSLambdaBasicExecutionRoleandAWSLambdaVPCAccessExecutionRoleare the canonical platform integrations. Seeinfra/lib/lambda.ts.AwsSolutions-IAM5action wildcards onkms:GenerateDataKey*andkms:ReEncrypt*— these expand within thekms:namespace only and are resource-bound to the customer-managed key on the same statement. Seeinfra/lib/ecs.ts.
- Prompt-injection surface: the design and IaC agents consume free-text user input and KB-derived content; before any external exposure you should add output filtering, response length caps, and review the agent tool surface for unintended side effects.
- Lock files are committed (
pnpm-lock.yaml,package-lock.json,uv.lock). CI must usenpm ci/pnpm install --frozen-lockfile/uv sync --frozento enforce them. - SAST suppressions are documented inline (
# nosec,# nosemgrep) with rationale; see.semgrep.ymlfor the project-wide rule disables.
See AWS Deployment Guide for CDK-based production deployment.
Ryan Dsilva, AI Acceleration Architect at AWS
Ragib Ahsan, AI Acceleration Architect II at AWS