Tuple Tech
AI Agents/Forge AI
Stratos AI Platform

Infrastructure Simplified

Forge AI

Turn plain-language requests into deployed, verified AWS infrastructure — with a human approval step before anything is provisioned.

"Create a VPC with public and private subnets, a NAT gateway, and security groups."

CloudFormation & TerraformCreate · Read · Update · DeleteHuman-approvedGitOpsVerified & recoverable

A disciplined path for every deployment

A human stays in control at the decision point — nothing is provisioned without approval.

1
Plan
Generate & validate IaC from your request

The agent writes the Infrastructure-as-Code, validates and auto-fixes it in an internal loop, then presents a clear plan for your review.

2
Approve
Review the plan, resources & inputs

Full resource list, advisory warnings, generated IaC, and any required inputs — all visible before you approve. Choose Approve, Discuss, or Reject.

3
Execute
Provision resources, resolving secrets

After approval, Forge AI collects any required inputs, resolves secret references from your managed store, and provisions the resources.

4
Verify
Confirm state; guided recovery if needed

Deployed resources are verified against the plan. If anything needs attention, guided investigation helps you recover — then IaC is pushed back to Git.

From a sentence to running infrastructure

Describe the AWS infrastructure you need in plain English — no hand-written templates. Forge AI generates the IaC, validates and repairs it, then presents a clear plan for your review.

  • Works across the full lifecycle: create, read, update, and delete
  • Supports both AWS CloudFormation and Terraform
  • Pushes verified IaC back to Git after deployment
  • If the request is ambiguous, Forge AI asks before planning
Forge AI · Workflow cd25974b rev 1us-east-2
Using AWS CloudFormation agent, create a VPC in us-east-2 with public & private subnets, NAT gateway, and a webserver security group.
Deployment Plan · Workflow cd25974b rev 1
14 to create · 0 to modify · 0 to destroy
createAWS::EC2::VPC
createAWS::EC2::Subnet (×4)
createAWS::EC2::NatGateway
createAWS::EC2::SecurityGroup
createAWS::EC2::RouteTable (×2)
Current approval required
Review the current plan and choose Approve, Discuss, or Reject.
✓ ApproveDiscussReject
Deployment Complete
14 resources deployed and verified. Git publish succeeded → branch: main

Everything you need to manage cloud infrastructure

Ten integrated capabilities across planning, approval, execution, and recovery — built to keep a human in control at every step.

Plain language in, IaC out

Describe what you need. Forge AI writes the CloudFormation or Terraform for you — no template authoring required.

Choice of IaC backend

Deploy with AWS CloudFormation or Terraform. Name the sub-agent in your request and the workflow routes accordingly.

Full lifecycle (CRUD)

Not just create — read, update, and delete existing infrastructure, inspecting current state before acting.

Validate & auto-fix

Generated templates are validated and corrected in an internal loop before a plan is ever shown to you.

Human-in-the-loop approval

Review the resource list, warnings, and inputs, then Approve, Discuss, or Reject. Nothing is provisioned without approval.

Secrets by reference

Provide secret-store paths — a Secrets Manager ARN or SSM Parameter Store path — never plaintext. Sensitive inputs are redacted.

GitOps integration

Changed IaC is pushed back to your repository via Direct Commit or Pull Request, with target branches shown.

Verify & guided recovery

Deployed resources are verified against the plan. If something needs attention, guided investigation helps you resolve it.

Custom startup scripts

Run your own setup script on launched EC2 instances to install and configure applications at boot.

Resilient sessions

Reconnect to an in-progress workflow after a refresh, and hand control between tabs or sessions with Take Control.

Secrets, handled safely

You never paste plaintext secrets. Provide a reference — a Secrets Manager ARN or SSM Parameter Store path. Sensitive inputs are redacted in plans and previews. Secrets are resolved at deploy time from AWS Secrets Manager, SSM Parameter Store, or HashiCorp Vault.

GitOps integration

After deployment, the finalized IaC is pushed back to your Git repository via Direct Commit or Pull Request. Target branches are shown before you choose. Every change is versioned, auditable, and recoverable.

Verify & guided recovery

Deployed resources are verified against the plan. If something needs attention, guided investigation helps you resolve it — so you always know the actual state of your infrastructure.

Forge AI · Read existing infrastructure
List all the CloudFormation stacks from us-east-2 region.
Query Results — ListStacks completed
infra-agent-vpcCREATE_COMPLETE
SshKeyPairStackCREATE_COMPLETE
infra-agent-stratos-deployCREATE_COMPLETE
cf-infra-agentDELETE_COMPLETE
Delete the SshKeyPairStack CloudFormation stack from us-east-2 region.
Deployment Plan · 0 create · 0 modify · 1 destroy
Deletes SshKeyPairStack. Main risk: accidental removal of all managed resources.
ApproveDiscussReject

Managing existing infrastructure

Beyond creating resources, Forge AI reads, updates, and deletes what already exists — inspecting current state before making changes. Every destructive action goes through the same Plan → Approve → Execute → Verify path.

  • Read & report on existing CloudFormation stacks or Terraform state
  • Update live resources with a clear before/after plan
  • Delete with approval — no silent teardowns
  • Inspect current state before every action to prevent surprises

Ready to try Forge AI?

Reach out to get access. Once onboarded, begin your request by naming the sub-agent — AWS CloudFormation Agent or AWS Terraform Agent — so it routes correctly. The clearer and more detailed your request, the better the result.