Hodos maps every service, tool, secret and running agent into one live graph — then serves each agent exactly the context it's allowed to reach, over MCP. Context for your agents. Guardrails included.
Give an agent raw API keys and you've given it your whole company. Hodos hands it a graph instead: every read filtered by policy, every running agent inventoried alongside the code it came from, every action audited. Connect over MCP and your agents get exactly what they're allowed to see — nothing more.
// agent asks — Hodos answers, policy filters → impact_of_change("checkout-web") Affected: payment-api (tier-1), ledger-svc Owners to notify: team-payments Scorecard: Silver — this change needs Gold Verdict: block & open a ticket ✗ 3 nodes hidden by policy — the agent never saw the prod secrets it isn't allowed to reach
Flat catalogs store attributes. Hodos stores relationships — so a real query language (OpenCypher) walks your dependency graph to any depth. Multi-hop where-used and blast radius aren't a feature bolted on; they're what a graph is. Ask "what breaks?" and get an answer, not a list.
MATCH (n)-[:DEPENDS_ON*1..4]->(:service {name:"orders-db"}) RETURN DISTINCT n.name, n.owner ┌──────────────┬───────────────┐ │ 17 services │ 4 teams │ ├──────────────┼───────────────┤ │ payment-api │ team-payments │ │ checkout-web │ team-web │ │ ledger-svc │ team-fintech │ └──────────────┴───────────────┘
docker compose up, connect GitHub, get a catalog with owners and dependencies in minutes — zero modeling. Outgrow the defaults? Define custom entity kinds, scorecards and policies in YAML — versioned in git, reviewed as a PR, applied with a Terraform-style plan / apply. In Port you wait for an admin to build a blueprint. Here, your team ships its own — and review is the guardrail.
apiVersion: hodos/v1 kind: OntologyKind metadata: {name: process} spec: attrs: criticality: {type: enum, values: [low, high]} relations: - {rel: IMPLEMENTS, from: component, to: process} $ hodos plan # review the diff, like Terraform $ hodos apply # exactly what you reviewed
The enforcement engine is open too — governance you can't audit is governance you can't trust.
FSL-licensed: every release auto-converts to Apache-2.0 after two years. We can't rug-pull you.
Never per-seat — adoption shouldn't cost you money. Self-host, or a managed cloud hosted in the EU.