How we build

Every feature starts as a written spec — what it does, what it doesn't, how we know it works. The spec is reviewed before code is written and remains the contract throughout. When the AI generates something off-spec, the spec wins, not the code.

Claude, Google Antigravity, Codex, and Cursor — used in different combinations across the spec-to-build process, not all at once on everything. Each tool is picked for what it does best at a given phase: architecture review, agentic spec-to-build runs, code generation, paired editing. We orchestrate the workflow; they handle the heavy lifting. The leverage compounds: a small team ships at the velocity of a much larger one.

Data model, service boundaries, failure modes, scaling axes, and security boundaries are decided before code. The architecture and supporting specs live as plain markdown in the repo (CLAUDE.md and topic-specific docs) — any AI tool, model, or editor can read them, so every session starts with shared context, not from scratch.

Every PR reviewed by a senior engineer. Every architectural call signed off before code lands. AI-generated code is inspected, not blindly merged. The AI accelerates output; the human keeps the bar.

100% IaC on AWS (SST or CloudFormation). No clicks in the console. Every environment is reproducible from a single command and a Git history. Roll forward, roll back, or stand up a new region with the same workflow.

Structured logs, error tracking, and request tracing wired at every service boundary before launch. A runbook is written and tied to specific alerts. Whoever's on call can debug a 2am incident without paging the original builders.

GitHub Actions CI/CD from day one. Fixed dev / QA / production environments for a clear path from change to release. Promotion between stages is gated on tests passing; rollback is one click. No manual deploys, no hand-edited config in production.

Security posture defined upfront, before code is written. Dependency scanning in CI (Snyk, GitHub Advanced Security). Least-privilege IAM enforced. AI agents bounded by scoped permissions. Pre-launch security review before any user touches the system.

Claude (Opus for architecture, Sonnet for review, Haiku for batched workloads). Google Antigravity for agentic spec-to-build flows. Claude Code and OpenAI Codex for code generation and refactors. Cursor for IDE-paired editing. Amazon Bedrock for production AI in regulated workloads; OpenRouter/TogetherAI for breadth. Not every build needs all of them — each tool used where it earns its place.