Skip to content

Architecture

Project Summary

AICO is an open-source project to build an emotionally present, proactive AI companion with durable memory and inspectable internal state. It is designed for local-first operation and for running as an operable system (CLI, scheduler, logs, metrics), not just a chat interface.

Core Principles: - Local-First Privacy: All data and processing are local by default, with encrypted storage and secure communication. - Modular, Extensible System: System → Module → Component hierarchy, message-driven, plugin-ready. - Production-Ready Foundation: Focus on reliable, tested infrastructure before advanced features. - Brain-Inspired Memory: Complementary learning systems (fast hippocampal + slow cortical) for genuine relationship evolution. - Knowledge Graph Intelligence: Property graph with temporal reasoning for relationship modeling. - Adaptive Learning: Thompson Sampling and RLHF for behavioral optimization. - Operability: CLI-first operations, inspectability, and explicit persistence layers.

Planned Principles: - Natural Family Recognition: Multi-modal identification (architecture defined, implementation planned). - Embodiment: Visual/audio presence with 3D avatars (ready for integration). - Autonomous Agency: Proactive behavior and goal generation (architecture defined, implementation planned). - Personality & Emotion: Sophisticated simulation (architecture defined, implementation planned).

System Features

AICO's features are organized into logical modules for development and deployment:

👥 Social Relationship Intelligence

Production Implementation: - Property Graph Storage: Knowledge graph storage and tooling (PostgreSQL-backed subsystems + graph analytics) - Multi-Pass Entity Extraction: GLiNER zero-shot recognition + LLM relationship extraction - Entity Resolution: 3-step deduplication (semantic blocking → LLM matching → merging) - Temporal Reasoning: Bi-temporal tracking (valid_from, valid_until, is_current) - Graph Analytics: PageRank importance, Louvain community detection, betweenness centrality - GQL/Cypher Queries: Full graph query language via GrandCypher - Graph Fusion: Conflict resolution and canonical ID management - HNSW Search: Approximate nearest neighbor for fast entity similarity

Planned Features: - Dynamic relationship learning from interactions - Voice biometrics and behavioral pattern analysis - Natural family member recognition

🗣️ Conversation & Memory

Production Implementation: - Three-Tier Memory Architecture: Working (LMDB) + Semantic (ChromaDB) + Adaptive (AMS) - Hybrid Search V3: Semantic embeddings + BM25 keyword + IDF filtering + RRF fusion - Working Memory: 30-day TTL, sub-millisecond access, conversation-scoped - Knowledge Graph: Full property graph with temporal reasoning and multi-hop queries - Memory Album: User-curated memories (conversation + message level) with emotional tone - Memory Consolidation: Background "sleep phases" integrate experiences without forgetting - Behavioral Learning: Skill library with RLHF and Thompson Sampling - Context Assembly: Multi-factor scoring (recency, relevance, relationship) - Chat Interface: Real-time text conversation with streaming responses - Multi-turn Dialogue: Complex conversation flow with context preservation

Planned Features: - Voice interaction (speech-to-text and text-to-speech) - Autonomous agency (goal generation, curiosity-driven learning) - Proactive engagement and conversation starters

🤖 Task Automation & Scheduling

Production Implementation: - Cron-Based Scheduler: Production-ready task scheduler with resource awareness - Built-in Maintenance Tasks: Log cleanup, key rotation, health checks, database vacuum - AMS Tasks: Consolidation, feedback classification, Thompson sampling, trajectory cleanup - KG Tasks: Graph consolidation, entity resolution, relationship inference - Resource Monitoring: CPU/memory tracking for adaptive execution - Task History: Complete execution tracking with success/failure logging - Database Schema v4: scheduled_tasks, task_executions, task_locks tables

Planned Features: - Personality simulation (trait-based modeling with Big Five/HEXACO) - Emotion simulation (C-CPM 4-stage appraisal; Phase 1 implemented, further phases planned) - Meta-cognition and self-assessment

😊 Sentiment & Emotion Analysis

Production Implementation: - Text Sentiment: BERT Multilingual sentiment classification - Emotion Analysis: RoBERTa 6-emotion classification (joy, sadness, anger, fear, surprise, disgust) - Intent Classification: XLM-RoBERTa multilingual intent understanding - Memory Album Integration: Automatic emotional tone detection for memory organization

Planned Features: - Facial emotion recognition (computer vision) - Voice emotion analysis (audio-based) - Mood tracking and empathetic response generation - Advanced emotion simulation (C-CPM extensions)

🎭 Frontend & User Experience

Production Implementation: - Flutter 3.27+: Cross-platform UI (macOS, iOS, Android, Linux, Windows) - Glassmorphic Design: Premium UI with backdrop blur, noise textures, organic curves - Riverpod 3.0: Modern state management with compile-safe code generation - Drift + SQLCipher: Encrypted local message cache with <200ms load times - Message Actions: Hover-based toolbar (Copy, Remember, Regenerate, Feedback) - Connection Management: Resilient API service with exponential backoff - Real-time Streaming: WebSocket support for streaming AI responses - Offline-First: Cache-first loading with background sync - Dio HTTP Client: Feature-rich client with interceptors and retry logic

Planned Features: - 3D Avatar System (Three.js + Ready Player Me + TalkingHead.js) - Voice interaction (speech-to-text and text-to-speech) - Gesture and eye tracking - Multi-device roaming with P2P encrypted sync

🔒 Privacy & Security

Production Implementation: - Secrets: OS keychain/keyring-backed secret storage - CurveZMQ: 100% encrypted message bus with mandatory mutual authentication - Argon2id: Memory-hard KDF for master key derivation - PBKDF2: Database encryption key derivation (100k iterations) - NaCl/libsodium: Modern cryptography for frontend (Ed25519, X25519) - JWT Authentication: HS256 tokens with 24-hour expiry and refresh - Platform Keychain: OS-native secure storage (Keychain, Credential Manager) - Logs: Centralized log storage via Loki (queried via LogQL)

Planned Features: - Consent management and granular privacy controls - Federated learning for privacy-preserving model improvements

🔌 Extensibility & Administration

Production Implementation: - Plugin System: Message bus, log consumer, validation, security, rate limiting, encryption - API Gateway: FastAPI with REST + WebSocket, 12+ endpoint groups - CLI v1.1.0: 15 command groups with 100+ subcommands for complete system administration - Task Scheduler: Extensible task system with built-in and custom tasks - Developer Tools: Schema management, protobuf generation, testing utilities - Configuration management: Schema-validated YAML configuration with CLI tooling - Health Monitoring: Comprehensive system health and performance tracking

Planned Features: - Plugin marketplace and community extensions - External integrations (calendar, email, smart home) - Automated update system with rollback

Design Principles

  • Agency Over Pure Reactivity - AICO initiates and acts, not just responds
  • Local-First by Default - All personal data and core inference runs locally
  • Modular Architecture - Decoupled components with clear interfaces
  • Message-Driven Integration - Event-based communication via central message bus
  • Multi-Modal Embodiment - Visual, auditory, and textual presence
  • Emotional Intelligence - Sophisticated emotion recognition and simulation
  • Privacy by Design - User control of all data and processing

Architectural Decisions

Implemented: - CurveZMQ Message Bus - 100% encrypted pub/sub with mandatory mutual authentication - Protocol Buffers 6.32 - High-performance binary serialization for backend (5.0 for Flutter) - Topic-Based Pub/Sub - Hierarchical topics with prefix-based routing - Three-Tier Memory - Working (LMDB) + Semantic (ChromaDB) + Adaptive (AMS) - Hybrid Search V3 - Semantic + BM25 + IDF filtering + RRF fusion - Property Graph - NetworkX + PostgreSQL + ChromaDB for knowledge graph with temporal reasoning - Thompson Sampling - Contextual bandit for skill selection and behavioral learning - Qwen3 Abliterated 8B - Uncensored foundation model for character consistency - Plugin Architecture - Modular backend with lifecycle management - Repository + UnitOfWork - per-request PostgreSQL transaction/session pattern

Planned: - C-CPM Emotion Model - Component Process Model for emotion simulation (Phase 1 implemented, advanced phases planned) - Multi-Faceted Agency - Goal generation, curiosity, planning, meta-cognition - 3D Avatar System - Three.js + Ready Player Me + TalkingHead.js - Sandboxed Plugin Execution - Isolated environments with permission controls - Atomic Updates - Reliable system updates with rollback capabilities

System Architecture

AICO's architecture is organized into domains, modules, and components:

AICO System
├── Domain: Core Infrastructure
│   ├── Module: Message Bus
│   │   ├── Component: Topic Management
│   │   ├── Component: Message Routing
│   │   └── Component: Plugin Integration
│   ├── Module: Plugin Manager
│   │   ├── Component: Plugin Discovery
│   │   ├── Component: Sandbox Execution
│   │   └── Component: Permission Management
│   ├── Module: API Gateway
│   │   ├── Component: External Interfaces
│   │   └── Component: Protocol Adapters
│   ├── Module: Resource Monitor
│   │   ├── Component: CPU Usage
│   │   ├── Component: Memory Usage
│   │   ├── Component: Battery Status
│   │   └── Component: System Load Metrics
│   └── Module: Update System
│       ├── Component: Version Management
│       └── Component: Atomic Updates
├── Domain: Autonomous Agency
│   ├── Module: Goal System
│   │   ├── Component: Goal Generation
│   │   ├── Component: Goal Prioritization
│   │   └── Component: Goal Tracking
│   ├── Module: Planning System
│   │   ├── Component: Plan Formulation
│   │   ├── Component: Plan Execution
│   │   └── Component: Plan Adaptation
│   ├── Module: Curiosity Engine
│   │   ├── Component: Novelty Detection
│   │   ├── Component: Exploration Strategy
│   │   └── Component: Interest Model
│   ├── Module: Job Scheduler
│   │   ├── Component: Task Queue
│   │   ├── Component: Priority Scheduling
│   │   └── Component: Idle Detection
│   └── Module: Initiative Manager
│       ├── Component: Proactive Engagement
│       └── Component: Conversation Starter
├── Domain: Personality & Emotion
│   ├── Module: Personality Simulation
│   │   ├── Component: Trait Vector System
│   │   ├── Component: Value System
│   │   ├── Component: Expression Mapper
│   │   └── Component: Consistency Validator
│   ├── Module: Emotion Simulation
│   │   ├── Component: Appraisal Engine
│   │   ├── Component: Affect Derivation
│   │   └── Component: Expression Synthesis
│   └── Module: Emotion Recognition
│       ├── Component: Facial Analysis
│       ├── Component: Voice Analysis
│       └── Component: Text Analysis
├── Domain: Self-Awareness
│   ├── Module: State Monitoring
│   │   ├── Component: System Health
│   │   └── Component: Performance Metrics
│   └── Module: Meta-Cognition
│       ├── Component: Reflection Engine
│       └── Component: Self-Assessment
├── Domain: Intelligence & Memory
│   ├── Module: LLM Module
│   │   ├── Component: Model Management
│   │   ├── Component: Inference Engine
│   │   └── Component: Resource Coordination
│   ├── Module: Conversation Engine
│   │   ├── Component: Conversation Flow
│   │   ├── Component: Prompt Conditioning
│   │   └── Component: Response Processing
│   ├── Module: Memory System
│   │   ├── Component: Episodic Memory
│   │   ├── Component: Semantic Memory
│   │   ├── Component: Behavioral Learning
│   │   └── Component: Memory Consolidation
│   └── Module: Learning System
│       ├── Component: Continual Learning
│       └── Component: Skill Acquisition
├── Domain: User Interface
│   ├── Module: Context Manager
│   │   ├── Component: Conversation State
│   │   └── Component: User Context
│   └── Module: Presentation Layer
│       ├── Component: Flutter UI
│       ├── Component: Avatar System
│       └── Component: Voice & Audio
├── Domain: Privacy & Security
│   ├── Module: Consent Manager
│   │   ├── Component: Permission Control
│   │   └── Component: Data Governance
│   ├── Module: Encryption System
│   │   ├── Component: Data Encryption
│   │   └── Component: Secure Communication
│   └── Module: Audit System
│       ├── Component: Activity Logging
│       └── Component: Compliance Monitoring
├── Domain: Administration
│   ├── Module: System Config Manager
│   │   ├── Component: Config Loader
│   │   └── Component: Config Validator
│   ├── Module: Instrumentation & Logging
│   │   ├── Component: Log Aggregator
│   │   ├── Component: Log Rotation
│   │   └── Component: Diagnostics Export
│   ├── Module: Resource Monitor (Admin)
│   │   ├── Component: System Status Dashboard
│   │   ├── Component: Resource Alerts
│   │   └── Component: Health Checks
│   ├── Module: Plugin Admin
│   │   ├── Component: Install/Disable/Update
│   │   └── Component: Sandbox Policy Control
│   ├── Module: Update Admin
│   │   ├── Component: System Updates
│   │   └── Component: Module Updates
│   ├── Module: Audit & Compliance (Admin)
│   │   ├── Component: Admin Log Access
│   │   └── Component: Compliance Dashboard
│   ├── Module: Backup & Restore
│   │   ├── Component: Snapshot Manager
│   │   └── Component: Restore Engine
│   ├── Module: Developer Tools
│   │   ├── Component: Hot Reload
│   │   └── Component: Profiling & Debug
│   ├── Module: Admin Access Control
│   │   ├── Component: Admin Authentication
│   │   └── Component: Privilege Management
│   ├── Module: Notification Center
│   │   ├── Component: Critical Event Alerts
│   │   └── Component: Admin Messaging
│   └── Module: Policy Manager
│       ├── Component: Resource Limits
│       └── Component: Plugin Permissions
└── Domain: Extensibility & Integration
    ├── Module: Plugin System
    │   ├── Component: Community-Developed Extensions
    │   └── Component: Skill Acquisition
    ├── Module: API Gateway
    │   ├── Component: External Interfaces
    │   └── Component: Protocol Adapters
    ├── Module: External Integrations
    │   ├── Component: Calendar, Email, Smart Home
    │   └── Component: Custom Integrations
    ├── Module: Custom Skills
    │   ├── Component: User-Defined Behaviors
    │   └── Component: Response Generation
    ├── Module: Developer Tools
    │   ├── Component: SDKs and Documentation
    │   └── Component: Testing Framework
    ├── Module: Marketplace
    │   ├── Component: Plugin Discovery
    │   └── Component: Distribution Platform
    └── Module: Automated Updates
        ├── Component: Self-Updating System
        └── Component: User Control

Main parts

The AICO system consists of the following main parts: - Backend service - Frontend app - Modelservice - Admin UI - CLI

Backend Service

Python-based persistent service providing core AICO functionality: - Plugin-based architecture with FastAPI and ZeroMQ message bus - Transactional storage using PostgreSQL (Repository + UnitOfWork per request) - Continuous operation enabling autonomous agency and background processing - Modular design with lifecycle management and dependency injection

Frontend App

Flutter-based cross-platform user interface: - Thin client design connecting to backend via REST/WebSocket - Real-time communication for notifications and status updates - Cross-platform support for desktop, mobile, and web - Responsive interface with avatar integration via WebView

Modelservice

Lightweight LLM inference service: - Ollama integration with automatic binary management - REST API gateway for model inference requests - Cross-platform deployment with native binary handling - Resource coordination with backend monitoring systems

CLI

Professional command-line interface: - Rich output formatting with tables and colors - Cross-platform executables via PyInstaller - Direct backend integration through ZeroMQ and REST APIs - Administrative functions for system management

Architecture Patterns

AICO's core architecture is designed to maximize modularity and maintain low coupling, with clear boundaries between domains (e.g. Personality, Emotion, Agency, Memory, etc.). The system uses a message-driven architecture with distinct frontend and backend components.

Modular Message-Driven Design

  • Each domain/module is a distinct code package or subsystem with its own internal state, logic, and strict interface.
  • All communication between backend modules is via the internal message bus (ZeroMQ) using Protocol Buffers for high-performance binary serialization. External API communication with the frontend uses JSON over HTTP/WebSocket for web-standard compatibility.
  • No direct function calls or shared state between modules (except for startup/configuration)—all data exchange is through published/subscribed messages.
  • Each module subscribes to topics and publishes outputs on its own topics, using versioned, validated Protocol Buffer schemas.
  • Modules can be developed, tested, and even replaced independently as long as they honor the message contracts.

Low Coupling and Contract Guarantees

  • Loose Coupling: Modules are only coupled by the message schemas and topic contracts—not by code dependencies or shared state.
  • Contract Enforcement: The message bus enforces versioned Protocol Buffer schemas, so if a publisher or subscriber changes, integration tests will catch contract violations.
  • Pluggability: Any module could, in theory, be extracted into a separate process or container in the future with minimal refactor, since all communication is already message-based.

Client-Service Architecture

  • Separation of Concerns: Frontend handles presentation and user interaction, backend manages all AI processing and data persistence.
  • Persistent Backend Service: Backend runs continuously as a system service, enabling proactive agency and background processing.
  • Thin Client Pattern: Frontend is a lightweight client that connects to the backend via REST API/WebSocket.

Architecture Overview

flowchart LR
    subgraph Frontend [Frontend Layer]
        UI["Flutter App<br/>User Interface"]
        ADMIN_UI["Admin UI<br/>(React)"]
        CLI["CLI"]
    end

    subgraph Gateway [API Gateway Layer]
        APIGW["API Gateway<br/>(REST/WebSocket/ZeroMQ)"]
    end

    subgraph Backend [Backend Domains & Modules]
        CORE_AI["Core AI<br/>Chat, Personality, Emotion"]
        AUTONOMY["Autonomous Agency<br/>Goal System"]
        EMBODIMENT["Embodiment<br/>Avatar System"]
        DATA["Data & Memory<br/>Layer, Federation"]
        PLUGIN["Plugin System"]
        ADMIN_DOMAIN["Administration<br/>Admin Modules"]
        INFRA["Infrastructure<br/>Update, Instrumentation"]
    end

    subgraph Infra [Cross-Cutting]
        BUS["Message Bus<br/>(ZeroMQ, Protocol Buffers)"]
    end

    %% Connections
    UI --> APIGW
    ADMIN_UI --> APIGW
    CLI --> APIGW

    APIGW --> CORE_AI
    APIGW --> AUTONOMY
    APIGW --> EMBODIMENT
    APIGW --> DATA
    APIGW --> PLUGIN
    APIGW --> ADMIN_DOMAIN
    APIGW --> INFRA

    BUS --- CORE_AI
    BUS --- AUTONOMY
    BUS --- EMBODIMENT
    BUS --- DATA
    BUS --- PLUGIN
    BUS --- ADMIN_DOMAIN
    BUS --- INFRA

Communication Flow:

  1. Frontend → API Gateway: HTTP/WebSocket calls for user interactions
  2. API Gateway → Message Bus: Publishes events to appropriate topics
  3. Message Bus → Modules: Distributes messages to subscribed backend modules
  4. Module → Module: Inter-module communication via message bus only
  5. Backend → Frontend: Real-time updates via WebSocket notifications

Key Architectural Principles:

  • 🔄 Message-Driven: All backend communication via ZeroMQ pub/sub
  • 🏗️ Modular Design: Independent modules with clear boundaries
  • 🔌 Loose Coupling: Modules only depend on message contracts
  • ⚡ Responsive UI: Frontend never blocks on backend processing
  • 🔒 Secure: API Gateway controls all external access
  • 📈 Scalable: Modules can be moved to separate processes/containers

Frontend

The AICO frontend is implemented as a Flutter application that serves as a thin client, focusing on user interface and real-time interaction while delegating all heavy processing to the backend service.

Flutter Application Architecture

  • Thin Client Design: The UI (Flutter app) is a lightweight client that connects to the backend via local REST API/WebSocket.
  • Real-time Communication: WebSocket connections enable real-time updates from the backend for notifications and status changes.
  • Responsive Interface: UI remains responsive at all times since no heavy processing occurs in the frontend.
  • Cross-platform Support: Flutter enables consistent experience across desktop, mobile, and web platforms.

Frontend Responsibilities

  • User Interface Rendering: Chat interface, settings, avatar display, and all visual components.
  • User Input Handling: Text input, voice capture, gesture recognition, and user interactions.
  • Real-time Updates: Receiving and displaying notifications, status updates, and background accomplishments from the backend.
  • Local State Management: Managing UI state, user preferences, and temporary display data.

Connection Management

  • Automatic Reconnection: Frontend automatically reconnects to backend service if connection is lost.
  • Offline Graceful Degradation: UI provides appropriate feedback when backend is unavailable.
  • Session Continuity: When UI reconnects, backend proactively notifies of any background accomplishments or updates.

Update Management

  • Update Notifications: Displays update availability notifications from the backend with changelog details.
  • User Consent Interface: Provides UI for users to approve, schedule, or defer updates.
  • Update Progress: Shows download and installation progress for both frontend and backend updates.
  • Restart Coordination: Handles graceful shutdown and restart during update installation.
  • Update Preferences: Allows users to configure update settings (automatic/manual, channels, scheduling).
  • Rollback Interface: Provides one-click rollback option if users experience issues post-update.

Backend

The AICO backend runs as a persistent system service, handling all AI processing, data management, and autonomous agency tasks. This design enables continuous operation and proactive behavior even when the UI is closed.

Service Architecture

  • System Service: Backend runs as a persistent service with PID file management and graceful shutdown
  • Plugin-Based Core: Modular architecture using BackendLifecycleManager, ServiceContainer, and BasePlugin hierarchy
  • Continuous Operation: Background tasks and autonomous agency continue when UI is closed
  • Resource-Aware Processing: Intelligent resource management with configurable policies
  • Process Management: Signal-based shutdown coordination and background task management

Data Layer

AICO uses a multi-database architecture with specialized databases for different data types:

1. PostgreSQL - Core Application Data

Purpose: Transactional application data - User profiles and authentication - Conversations and messages
- Knowledge graph (nodes, edges, properties) - Agency system (goals, plans, skills) - Memory metadata and preferences

Architecture Pattern: Repository + UnitOfWork - Domain Models: Clean business entities (Pydantic) - Repositories: Data access abstraction layer - UnitOfWork: Transaction management and connection pooling - SQLAlchemy Core: Modern SQL abstraction (not ORM)

Technology Stack: - PostgreSQL 18.1 (Docker container) with aico_core schema - asyncpg for async operations (backend API) - psycopg2 for sync operations (CLI tools) - Connection pooling via SQLAlchemy - Docker volume for persistent storage

Key Features: - ACID transactions - Referential integrity - JSON/JSONB for flexible data - Full-text search capabilities

2. InfluxDB - Time-Series Telemetry

Purpose: Metrics and time-series telemetry - System performance metrics - API request/response times - Model inference latency - Resource utilization

Technology Stack: - InfluxDB 2.x (Docker container) with aico_telemetry bucket - OpenTelemetry instrumentation - Direct HTTP API integration - Docker volume for persistent time-series data

Key Features: - High-performance time-series storage - Automatic downsampling - Retention policies - Grafana-compatible queries

Note: InfluxDB telemetry is available in Pro/Enterprise deployments.

3. Loki - Log Aggregation

Purpose: Structured application logs with LogQL query support

Technology Stack: - Loki 2.9 (Docker container) - HTTP push API and LogQL queries

Key Features: - Label-based indexing for fast filtering - LogQL queries for tails, filters, and aggregations - Queried from the CLI via aico logs ...

4. ChromaDB - Vector Embeddings

Purpose: Semantic memory and similarity search - Conversation segment embeddings - Knowledge graph entity embeddings - Semantic search and retrieval

Technology Stack: - ChromaDB with persistent storage - Sentence-transformers for embeddings - Cosine similarity search

Key Features: - Hybrid search (semantic + keyword) - Automatic embedding generation - Metadata filtering

Learning System

  • Continual Learning: Ongoing learning from interactions and experiences.
  • Skill Acquisition: Learning new capabilities and behaviors.

Data & Storage Layer

  • Primary Storage (PostgreSQL): Core transactional storage, accessed via Repository + UnitOfWork per request
  • Vector Database (ChromaDB): Embedding storage for semantic search
  • Working Memory (LMDB): Fast TTL-based short-term memory store
  • Log Storage (Loki): Structured logs with LogQL queries
  • Telemetry (InfluxDB): Optional time-series metrics (Pro/Enterprise)

Context Manager

  • Conversation State: Maintains current conversation context and history.
  • User Context: Tracks user preferences, mood, and situational context.

State Monitoring

  • System Health: Monitors backend system health and performance.
  • Performance Metrics: Tracks system performance and resource usage.

Meta-Cognition

  • Reflection Engine: Self-reflection on learning and behavior.
  • Self-Assessment: Evaluation of capabilities and performance.
  • Permission Control: Manages user permissions and privacy settings.
  • Data Governance: Ensures compliance with privacy policies.

Encryption System

  • Data Encryption: Encrypts stored personal data and memories.
  • Secure Communication: Ensures secure communication channels.

Audit System

  • Activity Logging: Logs system activities for transparency.
  • Compliance Monitoring: Monitors compliance with privacy and security policies.

Backend Use Cases

  • Proactive Preparation: AICO prepares summaries or suggestions while UI is closed.
  • Background Skill Development: Agency module practices or updates skills, pausing if user becomes active.
  • Dynamic Resource Management: System throttles non-essential jobs during high CPU/memory usage or on battery power.
  • Continuous Availability: Backend remains ready to respond instantly when user opens UI.

Shared Library Architecture

AICO employs a shared library approach for cross-subsystem logic to maintain DRY principles while enabling early development access to core functionality.

Design Philosophy

Problem: Core functionality (security, data models, utilities) needed across multiple subsystems (CLI, backend, frontend) with different development timelines.

Solution: Standalone shared libraries that can be imported by any subsystem, following the aico.* namespace hierarchy.

Current Library Structure

aico/
├── shared/                     # Unified shared library
│   ├── pyproject.toml          # Namespace package configuration
│   └── aico/
│       ├── __init__.py         # Namespace package declaration
│       ├── core/               # Core utilities
│       │   ├── config.py       # Configuration management
│       │   ├── logging.py      # Structured logging with ZMQ transport
│       │   ├── bus.py          # Message bus client
│       │   ├── paths.py        # Cross-platform path management
│       │   └── process.py      # Process and PID management
│       ├── security/           # Security & encryption
│       │   ├── key_manager.py  # Key derivation and session management
│       │   └── __init__.py
│       ├── data/               # Data layer
│       │   └── PostgreSQL/
│       │       └── encrypted.py # Encrypted database connections
│       └── proto/              # Protocol Buffers
│           ├── aico_core_logging_pb2.py
│           └── aico_core_common_pb2.py
├── backend/                    # Backend service
│   ├── pyproject.toml          # Dependencies: -e ../shared/
│   ├── main.py                 # Service entry point
│   ├── log_consumer.py         # Log persistence service
│   └── api_gateway/            # Plugin-based gateway
├── cli/                        # CLI application
│   ├── requirements.txt        # Dependencies: -e ../shared/
│   └── commands/               # CLI command modules
├── cli/                        # Development CLI
│   ├── pyproject.toml          # includes aico-shared dependency
│   └── aico_main.py
└── frontend/                   # Flutter frontend
    └── pubspec.yaml            # May reference shared schemas

Startup Sequence

The current backend follows this initialization sequence:

  1. Main Process (main.py):
  2. Initialize configuration and logging
  3. Setup PID file management and signal handlers

  4. Initialize core services and lifecycle manager

  5. API Gateway (BackendLifecycleManager):

  6. Initialize ServiceContainer with dependency injection
  7. Register and start services/plugins with priority ordering

  8. Setup FastAPI integration with single lifespan context and domain routing

  9. Plugin Lifecycle:

  10. Message bus broker starts on ports 5555/5556
  11. Log consumer service begins ZMQ subscription
  12. Protocol adapters register endpoints

  13. Middleware plugins configure security stack

  14. Service Ready:

  15. Health endpoints available
  16. Background tasks running
  17. Graceful shutdown handlers active

Implementation Patterns

Namespace Packages

All shared libraries use Python namespace packages:

# setup.py for each shared library
setup(
    name="aico-security",
    packages=["aico.security"],
    namespace_packages=["aico"]
)

Development Installation

Subsystems install shared libraries in development mode:

# In backend/pyproject.toml or cli/pyproject.toml
[tool.uv.sources]
aico-shared = { path = "../shared", editable = true }

# Dependencies section includes:
dependencies = [
    "aico-shared",
    # ... other dependencies
]

Usage Examples

CLI Usage (Early Development): 

# CLI can use security features before backend exists
from aico.security import AICOKeyManager
from aico.security.filesystem import SecureFilesystem

key_manager = AICOKeyManager()
fs = SecureFilesystem(key_manager)
fs.setup_encrypted_directory("/path/to/data")

Backend Usage (Production): 

# Backend imports same libraries
from aico.security import AICOKeyManager
from aico.data.models import Conversation
from aico.core.config import Config

# Identical API, different context
key_manager = AICOKeyManager()
config = Config.load()

Development Workflow

  1. Library-First Development: Core functionality implemented as shared libraries
  2. CLI Integration: Development tools import and use shared libraries
  3. Backend Integration: Production backend imports same libraries
  4. Cross-Language Sharing: Data models/schemas can be shared with frontend via JSON/Protocol Buffers

Library Categories

  • aico.security: Key management, encryption, authentication
  • aico.data: Data models, schemas, repositories
  • aico.core: Configuration, logging, message bus
  • aico.common: Utilities, constants, helpers
  • aico.ai: AI/ML utilities (when needed)
  • aico.tools: Development and debugging utilities

This approach ensures KISS (simple imports), DRY (single implementation), and enables rapid development while maintaining professional code organization.