Architecture Deep-Dive

The Agent Fleet

A swarm of specialized state machines, not a naive LLM wrapper.

Enterprise security cannot rely on a single, monolithic "AI chat" prompt. TuringMind operates a fleet of highly specialized, LangGraph-powered autonomous agents. Each agent is a deterministic state machine designed for a specific security or engineering workflow.

Layer 1: Agent Fleet
PR ReviewerFail-Open CI Pipeline & Gatekeeper
OrchestratorCyclic State Machine & Traversal
DependencySupply-Chain Hardening & Upgrades
Search IntelProgressive Narrowing Search
Layer 2: Compute & Orchestration
LangGraph RouterPlan → Execute → Pivot State Machine
20s
25s
CheckpointedLLMCascading Execution Wrapper
TURINGMIND_QNA_TOOL (DATA BUS)
Layer 3: Data Foundation
Gobbler Pipeline
PARSE
CHUNK
MAP
Preserves function logic, drops naive vectorization, and explicitly maps control flow edges.
Semantic Graph Index
FalkorDB: Deterministic call stack traversal providing absolute control flow paths.

1. The PR Review Agent (Fail-Open CI)

The PRReviewAgentExecutor is built to run entirely inside your CI pipeline. Unlike the Orchestrator, it uses a strict linear pipeline to ensure it never hangs a build.

PR Opened
Context Merge
Loads repo diff + .turingmind.yml config.
Fail-Open Engine
CheckpointedLLM
20s25s30s
Threshold Check
Evaluates against severity config
Pass
Post actionable inline suggestions.
Block
Fail CI. Mask vulnerability comment.
  • CheckpointedLLM: Uses a custom wrapper with cascading timeouts (20s → 25s → 30s) to gracefully degrade during API outages, ensuring your developers are never blocked by an AI failure.
  • Threshold Gatekeeper: Evaluates findings against the strict severity thresholds defined in your .turingmind.yml.

2. The Security Orchestrator

The LangGraphAgentExecutor is our heavy-duty triage agent. It is a cyclic state machine that eliminates phantom CVEs by mapping the actual control flow of your application.

The Orchestrator runs a continuous Plan → Execute → Evaluate cycle. Each iteration queries the Semantic Graph Index and pivots based on what it finds. Here's the state machine in action:

Execution Trace: CVE-2019-10744 (lodash)

1. TRIGGER

Pipeline detects Prototype Pollution vulnerability in lodash.merge.

2. PLAN

Agent formulates strategy to locate all AST nodes invoking merge.

3. EXECUTE

Agent calls turingmind_qna_tool to query the Gobbler Index. Locates 3 usages in config/loader.ts.

4. EVALUATE (Control Flow Analysis)

Agent traces data flow backwards from the invocation. Discovers the payload passed to merge is statically defined and not user-controllable.

5. SYNTHESIS

Agent definitively proves the vulnerability is deterministically unreachable via control-flow analysis. Verdict: Phantom CVE (Suppressed).

Specialized Sub-Agents

For specific interactive tasks and dependency management, we deploy targeted sub-agents based on CLI-native paradigms.

Dependency Update Agent

A specialized variant focused entirely on supply-chain security. It uses the perplexity_dependency_tool to scour the web for unpinned dependencies, known CVEs, and breaking changelogs, then cross-references them against your codebase's AST to warn developers if an upgrade will break their implementation.

Code Analyzer

Traces dependencies, structural imports, and business logic patterns across the monorepo to build a holistic understanding of system architecture.

Search Specialist

Executes "progressive narrowing" using parallel ripgrep and glob tools to find highly specific code vulnerabilities without hallucinating.

Continue reading

Mythos Readiness

See the full fleet in action: 2,847 scanner alerts reduced to 1 deterministically proven exploit.

Connect your repo and eliminate 95% of SCA noise today.

Book a technical deep-dive