The platform

The agentic AI you can run entirely inside your own network — and, in strict mode, prove nothing ever left.

For banks, government, defense, energy, and healthcare — organizations whose data and source code cannot leave their infrastructure. It reads code, edits files, runs commands, and acts on your business apps, with every action governed by your admins and cryptographically recorded.

01

PLAN

The agent proposes; humans approve — plan mode presents numbered steps, and every code change appears as a reviewable diff before anything is written.

02

ACT

It reads and understands your codebase with semantic search, edits files, runs commands and tests, and searches the web — all inside your network on local open-weight models.

03

PROVE

Every step, tool call, and approval lands in the Agent Flight Recorder — a tamper-evident hash chain your auditors can verify offline.

The NeueCode workbench — strict mode sealed, web off, audit on

The real product — not a mockup.

It works like an autonomous engineer

Every behavior below is documented platform behavior — not a promise.

Searches your codebase

Semantic search that understands the repo and lands on the right file and line.

Patches files as reviewable diffs

Surgical edits presented for approval, with a stale-file guard that refuses to clobber files that changed underneath it.

Runs commands

Shell execution behind a safety denylist — risky actions wait for human approval.

Runs your tests

Auto-detects pytest / npm / go / cargo, reads the pass-fail summary, and reacts to failures.

Works with git

Status, diffs, and commits — every change flows through your normal review process, and commits wait for approval.

Queries your databases

Works with Postgres, MySQL/MariaDB, SQL Server, Oracle, SQLite, and MongoDB — any DB change waits for your approval.

Researches the web — governed

Search, page fetch, and a real headless renderer — through the egress broker, locked off entirely in strict mode.

Verifies its own work

Self-correction plus a deterministic verifier that checks claims against what tools actually returned.

Pursues bounded goals

Set a high-level goal and it works toward it on a bounded, approval-gated loop.

A full platform, not just an agent

Sovereign coding agent

A reason-act-observe loop that understands your repo, edits surgically through reviewable diffs, and runs commands behind a safety denylist.

Trustworthy by design

Self-correction, a deterministic verifier that checks claims against what tools actually returned, prompt-injection defense, and poisoning-resistant memory.

Persistent per-user memory

Remembers across sessions with six memory types and semantic recall, and learns reusable skills from solved tasks — strictly isolated per user and per project.

Your models, your GPUs

Local open-weight models (Qwen3-Coder-class and others) with drop-in loading, a VRAM-aware multi-model gateway, and a versioned registry with eval-gated automatic rollback — no per-token cloud bills.

Your apps, your accounts

An admin-curated app catalog (GitHub, Jira, Slack, Gmail, and more) — each user connects their own account, with an instant kill switch, auto-locked in strict mode.

Multi-agent orchestration

A supervisor delegates to specialist sub-agents — researcher, analyst, sysadmin, and code-reviewer — each sandboxed to its own tools and governed by the same policies.

It gets sharper the more you use it.

NeueCode learns your environment — and everything it learns stays on your servers, isolated per user and per project.

Remembers your context

Six memory types with semantic recall bring back the relevant past work and decisions, right when they matter.

Learns reusable skills

It captures how it solved something and reaches for that same approach the next time.

Checks its own work

A grounded verifier compares its claims against what the tools actually returned, and revises before it answers.

The NeueCode System Power dashboard — showing the agent’s growth: memory, skills, knowledge, and learning, from real signals
Every admin watches the agent grow — memory, skills, knowledge, and learning — from real signals, on your own servers. Learning you can see and measure, not a black box.

A sovereign runtime

Not just "on-prem" — on-prem in a way an independent auditor can verify without trusting us or your operators.

strict

Cloud and network egress locked off — provably on-prem, air-gap ready. Weakening it is guarded and audited.

hybrid

Governed egress: every call passes a deny-by-default broker that blocks anything not explicitly allowed and signs a per-run manifest.

open

For teams that want full cloud access — with the same governance and recording.

  • A governance console: every capability class toggles org-wide and per role — ships locked down; you open what you need.
  • Fail-closed policy: if policy can't be resolved, the system falls back to a safe minimal core — never wide open.
  • Dual identity: human users and machine API clients as first-class principals, with least-privilege checks on every single tool call.
  • Enterprise identity: single sign-on via Active Directory / LDAP and SAML 2.0 — your directory stays the source of truth.
  • Ships compiled: the backend arrives as native machine code, not readable source — and licenses are hardware-bound to the server they were issued for, validated offline.
  • Admin-managed settings vault: keys entered once, write-only and masked — the customer never touches the database.

The full security architecture — egress broker, defenses, and audit: Security

Built for regulated environments. Auditable like it.

“Verify it yourself” beats “trust our badge.”

Blocks outbound traffic by default

A deny-by-default egress broker stops anything not explicitly allowed — in strict mode, cloud egress is locked off entirely.

Signs a manifest of every run

Each session emits a signed record of what was reachable and what left — if anything left at all.

Records every action in a tamper-evident chain

The Flight Recorder hash-chains every step, tool call, and approval — any later edit breaks the chain.

Verifiable by your auditors — offline

Verifier tools the auditor runs themselves; neither we nor your operators sit in the trust path.

Compliance evidence export mapped to EU AI Act Articles 12 & 14, DORA, NIS2, SOC 2 CC6 controls, ISO 42001, and SAMA/NCA.

NeueCode is not certified against these frameworks — we give you the evidence to make your case.

Works where your people work

Web workbench

Full agent chat with approvals and the complete admin console — bilingual EN/AR with RTL.

Desktop app

Windows, macOS, Linux — tools execute on the developer's own machine; the server never touches their files.

VS Code

A sidebar agent inside the editor with native diff approval — a .vsix that installs offline.

API

OpenAI-compatible and native agentic endpoints for machine-to-machine use.

Deployment and infrastructure services — GPU/CUDA server setup, model deployment, and MLOps — delivered by the same team that built the platform. Deployment services · Get the app

Frequently asked questions

Does our code ever leave the network?

NeueCode runs on your servers with local open-weight models. In strict mode, cloud and network egress are locked off by a deny-by-default broker — and that is provable via the signed per-run manifests. In hybrid and open modes, you define what is allowed, and everything is recorded.

What does "provable" actually mean?

Every action lands in a tamper-evident hash chain (the Agent Flight Recorder), and every run emits a signed manifest. The verifier tools run offline and are operated by the auditor themselves — neither NeueCode nor your operators sit in the trust path.

Are you SOC 2 or ISO certified?

No. Our compliance evidence export is mapped to frameworks including SOC 2 CC6 controls, ISO 42001, and the EU AI Act — we give you the evidence to make your case, and we don't claim certifications we don't hold.

Which models does it run?

Local open-weight models on your own GPUs — GGUF and safetensors with drop-in loading and a multi-model gateway. You can bring your own cloud key only if and where policy allows, outside strict mode.

Can it be deployed air-gapped?

Yes — a repeatable install on your own infrastructure that doesn't phone home, and internet-reaching apps are automatically locked off in strict mode.

NeueCode™ — The coding agent for organizations whose source code cannot leave the network — with signed audit proof.