Stop Writing Backlogs: Autensa Ships Code While You Sleep
What if your product backlog could write itself—and then ship itself?
Picture this: It's 3 AM. Your competitors are asleep. Your team is offline. But your product is getting smarter. AI agents are scanning your market, analyzing your competitors' SEO gaps, and discovering conversion opportunities you'd never have time to research. By morning, three fully-tested pull requests are waiting in your GitHub repo, each backed by research, impact scores, and feasibility analysis.
Sounds like science fiction? It's not. It's Autensa—the world's first Autonomous Product Engine—and it's already running in production for teams who refuse to let human bandwidth limit their shipping velocity.
If you're still manually triaging Jira tickets, writing user stories, and begging engineers for estimates, you're living in the past. The future belongs to teams who let Autensa mission control orchestrate AI agents through the OpenClaw Gateway to research, ideate, build, test, and ship—24/7, without burnout, without standups, without the endless backlog grooming sessions that kill momentum.
Ready to see how it works? Let's dive into the engine that's making "ship while you sleep" a reality.
What Is Autensa (mission-control)?
Autensa—hosted at crshdn/mission-control—is an open-source, self-hosted dashboard and orchestration engine for autonomous product development. Built on Next.js 14 with TypeScript 5 and SQLite 3, it connects to the OpenClaw Gateway (a separate WebSocket-based AI agent runtime) to execute a complete product improvement pipeline without human intervention beyond a single swipe.
The project was created by crshdn and has rapidly evolved from a simple task orchestration dashboard into what its creators call "the world's first Autonomous Product Engine (APE)." The name "Autensa" itself hints at its purpose: autonomous enhancement—products that literally improve themselves.
Why is it trending now? Three converging forces:
- AI agent capabilities have crossed a threshold—Claude, GPT-4, and open models can now reliably read codebases, write features, and review diffs
- Developer burnout is at epidemic levels—teams need leverage, not more headcount
- The "vibe coding" movement exposed a gap—people want to build without managing complexity, but they need production-grade reliability
Autensa fills that gap with structured autonomy: AI agents with checkpoints, crash recovery, cost caps, and human approval gates. It's not reckless automation—it's orchestrated intelligence with guardrails.
The architecture is deliberately modular. Autensa (the dashboard + autopilot engine) runs on port 4000. OpenClaw Gateway (the AI runtime) runs on port 18789. They communicate via WebSocket. Your data stays local in SQLite. Your code stays in your repos. Your API keys stay in your environment variables. This is privacy-first autonomy—no centralized data collection, no ad trackers, no SaaS lock-in.
Key Features That Separate Autensa From Toy Demos
Let's be honest: you've seen a hundred "AI coding agents" that break on real codebases, hallucinate APIs, and cost a fortune with zero visibility. Autensa is engineered for production. Here's what makes it different:
🔬 Product Autopilot — The Full Pipeline
This isn't a chatbot that writes snippets. It's a closed-loop system:
- Autonomous Research — AI agents analyze your codebase, scan your live site, and research competitors, user intent, conversion patterns, and SEO gaps on configurable schedules
- AI-Powered Ideation — Research feeds into scoring models that generate concrete features with impact scores, feasibility estimates, and technical approaches
- Swipe to Decide — Tinder-style interface: Pass, Maybe, Yes, or Now! Every swipe trains your product's preference model
- Automated Build → PR — Approved ideas flow through Builder → Tester → Reviewer agents, culminating in a GitHub pull request with full context
🚛 Convoy Mode — Parallel Multi-Agent Execution
Large features don't stall on single-agent bottlenecks. Autensa decomposes work into subtasks with dependency-aware DAG scheduling. Three to five agents work simultaneously with health monitoring, auto-nudge for stalled agents, and checkpoint-based crash recovery—work resumes from the last save point, never from scratch.
💬 Operator Chat — Real-Time Course Correction
Don't wait for a PR to give feedback. Queued Notes deliver context at the next checkpoint. Direct Messages interrupt the agent immediately. Full chat history preserved per task.
💰 Granular Cost Tracking & Budget Caps
Per-task costs. Per-product aggregation. Daily and monthly caps that auto-pause dispatch when exceeded. Breakdown by agent, model, and time period. No surprise $500 API bills.
🧠 Knowledge Base & Learner Agent
A dedicated agent captures lessons from every build cycle—what worked, what failed, what patterns emerged. This knowledge injects into future dispatches so mistakes aren't repeated.
🛡️ Automation Tiers
Choose your risk tolerance:
| Tier | Behavior |
|---|---|
| Supervised | PRs created, you review and merge |
| Semi-Auto | PRs auto-merge when CI passes and review agent approves |
| Full Auto | End-to-end: idea → deployed feature |
🔀 Workspace Isolation
Each task gets isolated execution: Git worktrees for repo-backed projects (no branch conflicts), task sandboxes for local projects, dedicated port allocation (4200–4299), and serialized merge queues with conflict detection.
Real-World Use Cases Where Autensa Dominates
1. The Solo Founder Who Can't Hire Yet
You're building an MVP alone. Customer feedback is piling up in Intercom, but you're drowning in infrastructure, marketing, and fundraising. Point Autensa at your repo and live URL. It researches competitor features you haven't built, generates prioritized ideas, and ships PRs while you pitch investors. Your only job: swipe Yes or No over morning coffee.
2. The Platform Team Buried in "Small Requests"
Internal tools teams die from a thousand papercuts—"can you add this CSV export?" "this button needs a tooltip." Autensa's preference learning understands your platform's patterns. Small, well-scoped improvements ship autonomously in Supervised mode. Your engineers tackle architecture; agents handle polish.
3. The Agency Managing 20+ Client Codebases
Each client product needs continuous improvement to justify retainers, but context-switching kills productivity. Autensa runs independent research and ideation cycles per product. One dashboard, twenty autopilots. Convoy mode handles larger client feature requests with parallel agent execution.
4. The Open Source Maintainer Fighting Bitrot
Your project has 500 stars but you're the only active maintainer. Autensa scans for outdated dependencies, security patterns, and documentation gaps. The Learner agent captures your project's conventions from merged PRs, then applies them to new contributions automatically.
5. The Startup Recovering from Technical Debt
Legacy code terrifies junior developers and stalls sprints. Autensa's research agents identify the highest-impact refactoring opportunities. The planning phase generates detailed specs with clarifying questions. You approve, agents execute—with tests, with review, with checkpoint recovery if something breaks.
Step-by-Step Installation & Setup Guide
Getting Autensa running takes under 10 minutes if you have the prerequisites. Here's the complete path from zero to autonomous shipping.
Prerequisites
- Node.js v18+ (download)
- OpenClaw Gateway — install globally:
npm install -g openclaw - AI API Key — Anthropic (recommended), OpenAI, Google, or OpenRouter
Local Installation
# Clone the repository
git clone https://github.com/crshdn/mission-control.git
cd mission-control
# Install dependencies
npm install
# Copy environment template
cp .env.example .env.local
Edit .env.local with your gateway connection:
# Required: WebSocket URL to OpenClaw Gateway
OPENCLAW_GATEWAY_URL=ws://127.0.0.1:18789
# Required: Authentication token from OpenClaw config
OPENCLAW_GATEWAY_TOKEN=your-token-here
Finding your token: Check
~/.openclaw/openclaw.jsonunder thegateway.tokenfield.
Start the System
# Terminal 1: Start OpenClaw Gateway
openclaw gateway start
# Terminal 2: Start Autensa dashboard
npm run dev
Navigate to http://localhost:4000 — you'll see the mission control interface.
Production Deployment
# Build optimized production bundle
npm run build
# Start production server on port 4000
npx next start -p 4000
Docker Deployment (Recommended for Teams)
# Create environment file for Docker
cp .env.example .env
Configure .env with Docker-aware gateway URL:
# Use host.docker.internal when OpenClaw runs on your Docker host
OPENCLAW_GATEWAY_URL=ws://host.docker.internal:18789
OPENCLAW_GATEWAY_TOKEN=your-token-here
For remote OpenClaw instances, use the reachable
ws://orwss://URL instead.
# Build and start containers in detached mode
docker compose up -d --build
Access at http://localhost:4000.
Useful Docker commands:
# Stream logs in real-time
docker compose logs -f mission-control
# Stop containers gracefully
docker compose down
# ⚠️ Nuclear option: stop and DELETE all data (SQLite + workspaces)
docker compose down -v
Data persistence: Compose uses named volumes:
mission-control-data→ SQLite database at/app/datamission-control-workspace→ workspace files at/app/workspace
Security Hardening
Generate production tokens:
# 64-character hex token for API authentication
openssl rand -hex 32
# 64-character hex secret for webhook HMAC validation
openssl rand -hex 32
Add to .env.local:
MC_API_TOKEN=your-64-char-hex-token
WEBHOOK_SECRET=your-64-char-hex-token
When MC_API_TOKEN is set:
- External API calls require
Authorization: Bearer <token> - Browser UI works automatically (same-origin requests bypass)
- SSE streams accept token as query parameter
For full production hardening, see PRODUCTION_SETUP.md in the repository.
Multi-Machine Setup with Tailscale
Run Autensa on your laptop, OpenClaw on a Hetzner VPS:
# Use Tailscale's secure mesh networking
OPENCLAW_GATEWAY_URL=wss://your-machine.tailnet-name.ts.net
OPENCLAW_GATEWAY_TOKEN=your-shared-token
The README recommends Hetzner VPS for reliable self-hosting.
REAL Code Examples From the Repository
Let's examine actual implementation patterns from the Autensa codebase, with detailed explanations of what each section does and how to leverage it.
Example 1: Environment Configuration Template
From the README's quick start, here's the minimal .env.local configuration:
# .env.local — minimal configuration for local development
# WebSocket endpoint for OpenClaw Gateway agent runtime
# Default port 18789 matches OpenClaw's default gateway binding
OPENCLAW_GATEWAY_URL=ws://127.0.0.1:18789
# Authentication token — prevents unauthorized gateway access
# Retrieved from ~/.openclaw/openclaw.json gateway.token field
OPENCLAW_GATEWAY_TOKEN=your-token-here
What's happening here: Autensa uses WebSocket (not HTTP) for bidirectional real-time communication with the OpenClaw Gateway. This enables streaming responses from agents, health heartbeat checks, and immediate operator chat delivery. The token-based auth ensures even local deployments aren't vulnerable to cross-site attacks. For production, switch to wss:// (WebSocket Secure) and rotate tokens regularly.
Example 2: Docker Compose Environment for Containerized Deployment
# .env — Docker-specific configuration
# host.docker.internal resolves to the Docker host from inside containers
# Critical: standard localhost/127.0.0.1 won't work from within Docker network
OPENCLAW_GATEWAY_URL=ws://host.docker.internal:18789
OPENCLAW_GATEWAY_TOKEN=your-token-here
The networking nuance: This is a common Docker pitfall. Containers have their own localhost—127.0.0.1 inside the Autensa container refers to the container itself, not your host machine running OpenClaw. host.docker.internal is Docker's DNS alias for the host. On Linux, you may need --add-host=host.docker.internal:host-gateway depending on your Docker version. For remote gateways, simply substitute the actual IP or Tailscale hostname.
Example 3: Secure Token Generation Commands
# Generate cryptographically secure random tokens for production
# API authentication token — protects all /api/* endpoints
# 32 bytes = 64 hex characters = 256 bits of entropy
openssl rand -hex 32
# Webhook HMAC secret — verifies agent callback integrity
# Prevents spoofed completion notifications from malicious actors
openssl rand -hex 32
Security architecture: Autensa implements defense in depth. The MC_API_TOKEN enables Bearer token authentication on all API routes—critical if you expose the dashboard to the internet. The WEBHOOK_SECRET enables HMAC-SHA256 signature verification on agent completion callbacks, preventing attackers from faking "task done" messages to corrupt your build queue. These aren't optional extras; they're production necessities for autonomous systems that modify your code.
Example 4: Database Reset and Inspection Commands
# Nuclear reset: delete entire SQLite database to start fresh
# Use when migrations fail or you need clean state for testing
rm mission-control.db
# Inspect database schema and tables
# Useful for debugging, custom reporting, or backup verification
sqlite3 mission-control.db ".tables"
Operational insight: Autensa uses SQLite with 21 automatic migrations. The database auto-creates on first startup and backs up before applying migrations (as of v2.0.1). Key tables include products, research_cycles, ideas, swipe_history, preference_models, cost_events, convoys, work_checkpoints, and agent_mailbox. For production at scale, consider WAL mode for SQLite or plan a migration path to PostgreSQL using the abstraction layer in src/lib/db/.
Example 5: Proxy Bypass for Corporate/VPN Environments
# Linux / macOS: prevent proxy from intercepting localhost traffic
export NO_PROXY=localhost,127.0.0.1
# Windows Command Prompt
set NO_PROXY=localhost,127.0.0.1
# Docker: pass through to container environment
docker run -e NO_PROXY=localhost,127.0.0.1 ...
The hidden failure mode: Corporate proxies, VPNs (like Hiddify), and intercepting security tools break agent callbacks by capturing localhost traffic. The symptom is mysterious 502 errors on agent completion. This environment variable is the fix—documented in Issue #30 after community debugging. Always set this in constrained network environments.
Advanced Usage & Best Practices
Preference Model Training
Your first 20 swipes are critical. Be decisive—ambiguous training creates noisy models. Use "Maybe" intentionally for ideas you want resurfaced with fresh context, not as a soft rejection.
Cost Cap Calibration
Start with aggressive daily caps ($10–20) while learning your agents' burn rate. The per-task tracking reveals which models and agents are cost-efficient for your codebase complexity.
Convoy Mode for Refactoring
Large refactors fail when agents lose context. Decompose into: (1) type definition updates, (2) consumer migrations, (3) test updates, (4) deprecation cleanup. The DAG ensures correct ordering.
Product Program Evolution
Treat your Product Program as living documentation. Review and refine monthly based on shipped features' real-world impact. The Karpathy AutoResearch pattern rewards specificity over breadth.
Checkpoint Strategy
Set checkpoints every 5–10 minutes for exploratory work, every 2–3 minutes for risky refactors. The restore API enables manual recovery when auto-recovery doesn't trigger.
Comparison With Alternatives
| Capability | Autensa | GitHub Copilot | Devin | AutoGPT |
|---|---|---|---|---|
| Autonomous research | ✅ Market + competitor + SEO | ❌ None | ⚠️ Limited | ❌ None |
| Human approval gates | ✅ Swipe interface | N/A (assistive) | ⚠️ Session-based | ❌ Unsupervised |
| Multi-agent orchestration | ✅ Convoy mode with DAG | ❌ Single agent | ✅ Limited | ⚠️ Chaotic |
| Cost controls | ✅ Per-task + caps | ✅ Usage limits | ❌ Opaque | ❌ Uncontrolled |
| Self-hosted / privacy | ✅ Fully local | ❌ Cloud-only | ❌ Cloud-only | ⚠️ Partial |
| Crash recovery | ✅ Checkpoints | N/A | ⚠️ Manual | ❌ None |
| GitHub PR automation | ✅ Full pipeline | ❌ Suggestions only | ✅ Direct commits | ⚠️ Unreliable |
| Preference learning | ✅ Per-product models | ❌ Global only | ❌ None | ❌ None |
| Open source | ✅ MIT License | ❌ Proprietary | ❌ Proprietary | ✅ Open |
When to choose Autensa: You need structured autonomy with guardrails, cost visibility, and full data control. You want AI that learns your product's specific context, not generic coding assistance.
When others win: Copilot for real-time pair programming in IDE; Devin for fully-managed cloud experimentation; AutoGPT for unconstrained research without production requirements.
FAQ
Q: Is Autensa free to use? A: Yes, Autensa is MIT-licensed open source. You pay only for your AI API usage (Anthropic, OpenAI, etc.) and infrastructure. No SaaS fees, no seat licenses.
Q: Can I use Autensa without OpenClaw Gateway?
A: No—OpenClaw is the required agent runtime. Install it via npm install -g openclaw. The separation keeps the dashboard lightweight and the AI runtime independently scalable.
Q: How much does it cost to run? A: Infrastructure: $5–20/month on Hetzner. AI costs vary by model and task complexity—typical small features cost $0.50–3.00 in API calls. The built-in cost tracking shows exact spend per task.
Q: Will agents break my production code? A: Not if you use Supervised or Semi-Auto tiers. Full Auto requires explicit opt-in per product. All changes go through PRs with review agent inspection. Workspace isolation prevents cross-task contamination.
Q: What programming languages are supported? A: Any language your AI model can write. The agents read and write based on model capabilities—TypeScript, Python, Go, Rust, etc. Test agent execution depends on your repo's test framework.
Q: How do I update to new versions?
A: git pull then npm install. Migrations run automatically. v2.0.1+ creates timestamped database backups before migrations. Review the Releases page for breaking changes.
Q: Can multiple team members use one Autensa instance?
A: Yes, though role-based access control is basic. Set MC_API_TOKEN for API security. For team scaling, deploy behind an SSO proxy or contribute RBAC improvements upstream.
Conclusion
Autensa isn't another AI coding toy. It's a production-grade autonomous product engine that transforms how teams ship software—researching markets, generating features, and delivering pull requests while you focus on strategy, creativity, and the human problems only you can solve.
The swipe interface gives you control without friction. Convoy mode scales complexity without chaos. Cost tracking eliminates surprise bills. Checkpoint recovery ensures resilience. And everything stays on your infrastructure, under your control, with your data.
The teams already running Autensa aren't replacing developers—they're amplifying them. They're escaping backlog tyranny. They're shipping at the speed of insight, not the speed of meetings.
Your product could be improving itself tonight. The only question is: will you let it?
⭐ Star Autensa on GitHub | 🎮 Try the Live Demo | 💬 Join the Discord
Stop managing a backlog. Start shipping on autopilot. 🚀
