MCP-only
Use this when the connection is the job and your team will operate the workflow directly.
- Connectivity validation
- Scoped host setup
- Read-only or constrained rollout
How I Work
Start with the workflow creating the most drag.
This is a specialist engagement: scoped, artifact-backed, and designed to give your team a safer operating path, not another person to manage. Fix the first workflow, add oversight when the risk rises, and extend only when several systems must stay in sync.
External specialist. Scoped delivery. Production boundaries.
Relationship boundary
You are not hiring an internal admin.
You are bringing in a specialist to diagnose, rebuild, and govern one critical operating path. The work is scoped, visible, and designed for your team to inherit.
- You bring the workflow, constraints, and approval owner.
- CREATE SOMETHING maps the rules, builds the control layer, and ships the operating artifacts.
- Your team gets visibility through runbooks, approvals, release evidence, and working software.
Offer logic
See how the engagement changes as the stakes rise.
The detailed surface below shows when the work is just connectivity, when it becomes implementation, and when it needs governed execution with explicit review and blocked states.
Route a qualified inbound lead, create the internal brief, and notify the owner.
HubSpotNotionSlack
- Verified account and role scope
- Matched qualified-lead policy pack
- Recorded owner, timestamp, and lane id
mcp_contract.yamloutcome_contract.mdrelease-evidence.json
Auto-allow with release evidence
The workflow can run automatically because scope, ownership, and downstream writes are already bounded.
Offer ladder
From connection wedge to governed execution.
Start with the narrowest offer that proves value. Add Policy OS when the workflow starts touching revenue, compliance, or customer trust.
Workflow Infrastructure
Fix the first workflow your team still protects by hand and make the handoffs reliable.
- Business-rule mapping
- Workflow implementation
- Auth and access setup
- Portable runbooks and handoff artifacts
Policy OS
The governed execution layer that makes Skills + MCP safe to run faster in production.
- Approval and block boundaries
- Reason-coded access decisions
- Release checks and incident loops
- Evals tied to real workflow behavior
Enterprise Extension
Add this when several systems, teams, or compliance requirements must stay aligned.
- Cross-system orchestration
- Custom trust boundaries
- Deterministic retries and recovery
- Auditability for multi-team operations
Governed execution
Where Policy OS fits.
Workflow Infrastructure gets the first handoff working. Policy OS decides what runs automatically, what needs review, and what stops. That is the point where speed stops being a demo and becomes an operating path.
Governed Execution
Policy OS
Hub MCP routes the request, and Policy OS decides what can run automatically, what waits for approval, and what stops with a reason.
Client LLM
Ops Inbox
Background Agent
Routes
Hub MCP Tenant, host, session
Decides
Policy OS Reason-coded governance
Auto-allowApprovalBlock
CRM
ERP
Workflow System
Safe actions run fast. Risky actions route to approval. Disallowed actions stop with a reason.
Operating Artifacts
What ships with every governed engagement
Every governed engagement ships as artifacts your team can inspect, run, inherit, and operate.
mcp_contract.yaml
Tools, resources, auth scope, and transport boundaries.
agent_contract.yaml
Allowed actions, approvals, escalation triggers, and operating limits.
outcome_contract.md
Success metrics, fallback triggers, and ownership boundaries.
runbook.md
Recovery steps, operator lanes, and rollback expectations.
golden-task checks
Regression evidence that keeps releases tied to real workflow behavior.
Questions
What buyers usually need clarified before the first call.
What is your primary service?
Workflow Infrastructure fixes the first painful workflow. Policy OS becomes the core engagement once speed needs approvals, release controls, and ongoing oversight. Enterprise Extension covers the highest-stakes environments.
Are you joining our team or running internal ops?
No. I operate as an external specialist. You get scoped delivery, artifact-backed visibility, approval points, and a clean handoff instead of open-ended staff augmentation.
Do you build full business systems and run onboarding?
When full system development and team onboarding are the primary need, I provide a direct referral path to Half Dozen. .agency is optimized for workflow infrastructure and governed execution, not ongoing admin coverage.
What does .agency own?
.agency owns the rules, approvals, handoffs, release controls, and operating artifacts around the workflow. Your team keeps business context, approval ownership, and long-term control.
When should we add Policy OS?
Add it when failures become expensive or the workflow touches revenue, customer trust, compliance, or several systems that must stay in sync.
Do you still offer MCP-only?
Yes. MCP-only still works for discovery, compliance-constrained pilots, or teams that need the connection before the operating layer.
Do clients own the implementation?
Yes. Clients retain ownership of code, workflows, and operating documentation. The delivery is meant to stay portable after launch.
Why the phrase Skills + MCP?
Client-facing delivery is Skills + MCP. MCP handles trust and connectivity. Skills carry behavior and workflow intent.
Map the workflow
Map the workflow that's creating the most drag.
We will define the handoffs, approvals, failure modes, and escalation path before any implementation work starts.