tot-enterprise

AI-assisted development your business can actually control.

tot-enterprise — shared environment where your team writes code with AI agents under a single set of rules. Constitution, roles, budgets, and audit log — out of the box. No more shadow AI or ungoverned copilots.

View pricing Talk to us

The problem

AI in your team today is a black box.

Every developer uses their own AI tools with their own prompts. No shared rules, no cost visibility, no audit trail. The bigger the team, the harder it gets.

No governance

AI agents can modify any file, ignore architecture decisions, and bypass code review. You find out after the PR is merged.

Hidden costs

No way to see how much each developer, team, or project spends on AI. Budget surprises at the end of the month.

Security risks

API keys, credentials, and internal data leak to third-party AI providers without anyone knowing.

What is tot-enterprise

One workspace. Shared rules. Full visibility.

tot-enterprise is a shared development environment where your entire team works with AI agents under a unified set of governance rules — the project constitution.

Create workspace

Connect your repository. tot indexes structure, dependencies, and architecture automatically.

Define constitution

Set rules for the project: forbidden actions, architecture constraints, naming conventions, security policies.

Invite team

Add developers, reviewers, and leads. Each role gets its own set of tools, views, and permissions.

Work with AI

Every agent session runs within the constitution. Violations are caught before code is committed.

Review & audit

Full audit trail of every agent action, cost, and governance decision. Exportable reports.

Project constitution

Rules that AI agents can't ignore.

The constitution is a set of enforceable rules for your project. Unlike prompts or guidelines, constitution rules are verified by LSP analysis after every agent action. Violations block the change.

constitution.toml enforced · 8 rules active

# Architecture rules

rule "no-direct-db-writes" = "All database writes must go through the repository layer"

rule "api-versioning" = "Every public API endpoint must include a version prefix"

# Security rules

rule "payment-idempotency" = "All payment operations must be idempotent"

forbidden "drop-table" = "DROP TABLE, TRUNCATE, DELETE without WHERE"

# Budget rules

budget "per-session" = "$5 max per agent session"

budget "per-team-daily" = "$200 max per team per day"

Project portfolio

Multiple projects. One set of rules.

Real products are never a single repo. tot-enterprise lets you group projects into a portfolio with an inherited constitution, cross-project links, and contract monitoring — so changes in one service don't silently break another.

portfolio · acme-platform 3 projects · 14 cross-links · constitution inherited

portfolio acme-platform ← root constitution

└—

api-gateway inherits root + own rules

exposes: REST /v2/orders, /v2/users, /v2/payments

└—

billing-service inherits root + own rules

consumes: api-gateway /v2/payments · exposes: gRPC BillingService

└—

mobile-app inherits root + own rules

consumes: api-gateway /v2/orders, /v2/users

Cross-project violation detected

api-gateway Agent renamed /v2/payments/refund → /v2/payments/reverse

tot Contract break: billing-service consumes /v2/payments/refund — endpoint no longer exists

action Change blocked. Agent must update both projects or preserve the old endpoint.

Contracts verified on every commit across linked projects API · gRPC · Events · DB schemas

Constitution inheritance

Define rules at the portfolio level — every child project inherits them automatically. Projects can add their own rules but can't override the parent.

Cross-project links

Declare which services consume which APIs, events, or shared schemas. tot tracks these links and blocks changes that would break a consumer.

API contract monitoring

REST, gRPC, GraphQL, and event schemas are tracked across projects. Renaming an endpoint, changing a field type, or removing a method triggers an alert before the change lands.

Shared data models

When multiple services share a database or schema, tot ensures migrations in one project don't break queries in another. Schema changes are validated against all consumers.

Portfolio dashboard

See all projects, their health, active violations, agent spend, and contract status in one view. Filter by team, service, or rule category.

Dependency graph

Visual map of how your services connect. See which projects depend on which contracts. Understand the blast radius of any change before it happens.

Why business chooses tot

Ship faster without losing control.

Predictable AI costs

Set budgets per developer, per team, and per project. See real-time spend dashboards. Get alerts before limits are hit. No more end-of-month surprises from uncapped API usage.

Architecture compliance

Constitution rules enforce your architecture decisions automatically. AI agents can't bypass layering, naming conventions, or module boundaries. Violations are caught at generation time, not in code review.

Security & data protection

Built-in encrypted vault. Secrets are redacted before reaching any AI provider. Forbidden action rules prevent destructive operations. Full audit log for compliance teams.

Faster onboarding

New developers get structural visualization of the entire codebase from day one. Architecture views, data model browser, and API contract maps replace weeks of "reading the code."

Measurable productivity

Activity dashboards show tasks completed, agent usage, cost per feature, and time-to-merge. Real data for engineering leadership — not vanity metrics.

Code quality at scale

Every AI-generated change is verified through LSP analysis, architecture diffs, and constitution checks before it reaches code review. Structural review replaces line-by-line diffing.

Roles & access

Every person and every agent has a defined role.

tot-enterprise splits access by responsibility. Each role sees its own tools, views, and review surface. Agents are treated as team members with explicit permissions.

Developer

Writes code, launches agents, creates pipelines. Full access to editor, terminal, and agent sessions within their scope.

Reviewer

Reviews through structural lenses — architecture, API, data models. Approves or requests changes per lens, not per file.

Lead

Defines constitution, manages roadmap, sets budgets, and configures forbidden actions. Controls what AI can and cannot do.

Admin

Manages workspace settings, SSO configuration, team membership, billing, and compliance exports. Full audit access.

Enterprise

Built for teams that need more than a copilot.

SSO & SAML

Integrate with your identity provider. Google Workspace, Okta, Azure AD. Single sign-on for the entire team.

On-premise deployment

Run tot-enterprise on your own infrastructure. Air-gapped environments supported. No data leaves your network.

Audit & compliance

Every agent action, secret access, and governance decision logged. Export to SIEM. SOC 2 and GDPR friendly.

Custom AI providers

Bring your own LLM. Connect to OpenAI, Anthropic, or self-hosted models. Switch providers per project or per team.

Multi-workspace

Separate workspaces per product, team, or client. Shared constitution templates across workspaces. Centralized billing.

Dedicated support

Priority support channel, custom onboarding, and quarterly business reviews. SLA guarantees for enterprise customers.

Ready to bring AI governance to your team?

tot-enterprise is in active development. Request early access or talk to us about your team's needs.

Request early access hello@tot.dev