feat: AgentFlow routing, multi-tenant architecture, Telegram setup

## Added
- Multi-tenant AgentFlow architecture documentation
- AgentFlow routing guide with scoring algorithm
- Telegram bot configuration and default flow
- New example agents (k8s-ops, devops, docker-ops, echo, status, assistant)

## Changed
- /run agent command now routes through handle_natural_language
- Uses pre-loaded agents with correct model (google:gemini-2.5-flash) and tools
- All example agents updated to use google:gemini-2.5-flash
- Agent loading flag logic fixed for proper pre-loading

## Fixed
- Agents now load correctly regardless of flows configuration
- /run agent no longer uses hardcoded Anthropic fallback
- Tools and system prompts correctly applied from agent YAML

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>

Author: initcron

.hive-memory/architecture-lego-blocks.json

@@ -0,0 +1,48 @@
+{
+  "philosophy": "Modular, pluggable framework where components are reusable building blocks",
+  "design_principles": [
+    "Pluggable Triggers - Add new event sources without changing core",
+    "Composable Nodes - Chain processing steps in any order",
+    "Swappable Agents - Use any LLM provider with consistent interface",
+    "Extensible Tools - Add custom tools via MCP or built-in",
+    "Flexible Memory - Choose backend based on use case",
+    "YAML-First - Declarative configuration for everything"
+  ],
+  "core_building_blocks": {
+    "triggers_input": [
+      "Slack", "WhatsApp", "Telegram", "GitHub", "HTTP",
+      "Schedule", "PagerDuty", "Kafka", "SQS"
+    ],
+    "nodes_processing": [
+      "Transform", "Agent", "Conditional", "Parallel",
+      "Join", "Wait", "Approval", "Loop", "End"
+    ],
+    "outputs": ["Slack", "Discord", "HTTP", "Email", "File"],
+    "agents": {
+      "components": ["LLM Provider", "Instructions", "Context", "Tools"],
+      "providers": ["OpenAI", "Anthropic", "Google", "Ollama", "Groq"]
+    },
+    "memory": ["InMemory", "File", "SQLite", "Redis (planned)"],
+    "tools": ["Shell", "HTTP", "FileSystem", "MCP", "kubectl"]
+  },
+  "orchestration": {
+    "AgentFlow": {
+      "description": "Workflow orchestration with nodes + connections",
+      "schema": "v1 (current)"
+    },
+    "AgentFleet": {
+      "description": "Multi-agent parallel execution and coordination",
+      "status": "implemented"
+    }
+  },
+  "extension_traits": {
+    "TriggerPlatform": {
+      "methods": ["start()", "handle_event()"],
+      "purpose": "Implement for new event sources"
+    },
+    "NodeExecutor": {
+      "methods": ["execute()"],
+      "purpose": "Implement for new processing steps"
+    }
+  }
+}

.hive-memory/implementation-status.json

@@ -0,0 +1,48 @@
+{
+  "version": "0.1.15",
+  "last_updated": "2025-12-18",
+  "core_engine_status": "~85% complete",
+  "implemented_features": {
+    "triggers": {
+      "complete": ["Slack", "HTTP/Webhook", "Schedule/Cron", "Manual CLI"],
+      "partial": ["Discord"]
+    },
+    "nodes": {
+      "complete": ["Transform", "Agent", "Conditional", "Slack", "Discord", "Wait", "Parallel", "Join", "Approval", "End"],
+      "partial": ["HTTP"]
+    },
+    "platform_features": {
+      "complete": [
+        "Slack reactions approval (✅/❌)",
+        "Approval whitelist (approval_allowed_users)",
+        "Bot self-approval prevention",
+        "Conversation memory (per-channel/thread)",
+        "Multi-tenant routing (FlowRouter)"
+      ]
+    },
+    "llm_providers": ["OpenAI", "Anthropic", "Google", "Ollama", "Groq"],
+    "memory_backends": ["InMemory", "File", "SQLite"]
+  },
+  "planned_triggers": {
+    "P1": [
+      {"name": "WhatsApp", "issue": "#23"},
+      {"name": "Telegram", "issue": "#24"},
+      {"name": "GitHub", "issue": "#25"}
+    ],
+    "P3": [
+      {"name": "PagerDuty", "issue": "#26"},
+      {"name": "Kafka", "issue": "TBD"},
+      {"name": "SQS", "issue": "TBD"}
+    ]
+  },
+  "planned_nodes": ["Loop", "HTTP (full implementation)"],
+  "traits": {
+    "TriggerPlatform": "trait for new event sources - start() and handle_event()",
+    "NodeExecutor": "trait for new processing steps - execute()"
+  },
+  "next_steps": [
+    "Build tutorials for individual users",
+    "Implement P1 triggers (WhatsApp, Telegram, GitHub)",
+    "Convert applicable v1alpha1 examples to v1"
+  ]
+}

.hive-memory/session-2025-12-18-roadmap.json

@@ -0,0 +1,38 @@
+{
+  "session_id": "session-2025-12-18-roadmap-organization",
+  "date": "2025-12-18",
+  "summary": "AgentFlow roadmap creation and example organization",
+  "completed_tasks": [
+    "Created ROADMAP.md with feature tracking and architecture philosophy",
+    "Documented 'Lego Blocks for Agentic Automation' modular architecture",
+    "Moved 6 v1alpha1 examples to examples/flows/planned/ directory",
+    "Created GitHub issues #23-26 for trigger implementations",
+    "Updated all documentation with issue links",
+    "Committed and pushed changes to main (2afcddc)"
+  ],
+  "architecture_principles": [
+    "Pluggable Triggers - Add new event sources without changing core",
+    "Composable Nodes - Chain processing steps in any order",
+    "Swappable Agents - Use any LLM provider with consistent interface",
+    "Extensible Tools - Add custom tools via MCP or built-in",
+    "Flexible Memory - Choose backend based on use case",
+    "YAML-First - Declarative configuration for everything"
+  ],
+  "github_issues_created": {
+    "#23": "WhatsApp trigger support (P1)",
+    "#24": "Telegram trigger support (P1)",
+    "#25": "GitHub webhook trigger (P1)",
+    "#26": "PagerDuty trigger (P3)"
+  },
+  "priority_focus": "Individual users first (WhatsApp, Telegram, GitHub), then enterprise (PagerDuty, Kafka, SQS)",
+  "schema_versions": {
+    "v1": "Current - nodes + connections arrays (implemented)",
+    "v1alpha1": "Planned - fleet + actions arrays (future)"
+  },
+  "key_files_modified": [
+    "ROADMAP.md (created)",
+    "examples/flows/planned/README.md (created)",
+    "examples/flows/planned/*.yaml (moved from examples/flows/)"
+  ],
+  "commit": "2afcddc - docs: Add ROADMAP.md and organize v1alpha1 examples"
+}

CHANGELOG.md

@@ -8,13 +8,55 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 ## [Unreleased]
 
 ### Added
+- **Agent Tool Execution System** - Full tool execution support for agents
+  - Built-in tools: `kubectl`, `docker`, `helm`, `terraform`, `aws`, `git`, `shell`
+  - File tools: `read_file`, `write_file`, `list_directory`, `search_files`
+  - Observability tools: `prometheus_query`, `loki_query`
+  - Tools registered and passed to LLM with definitions
+- **Kubernetes-Style Agent Discovery** - Load agents by `kind: Agent` and `metadata.name`
+  - Agents indexed by `metadata.name`, not filename
+  - Support for both K8s-style and flat YAML formats via `AgentConfigInput` enum
+  - `--agents-dir` flag for pre-loading agents on server startup
 - **Approval User Whitelist** - Configure which users can approve destructive commands
   - New `approval_allowed_users` field in platform config (Slack implemented)
   - Platform-agnostic design: supports `U12345678`, `slack:U12345678`, `email:user@company.com` formats
   - Currently implemented: Raw Slack user IDs (e.g., `U015VBH1GTZ`)
   - Planned: Global `spec.approval.allowed_users` for multi-platform deployments
   - If not configured, anyone can approve (backward compatible)
   - Documentation and example config updated
+- **Multi-Tenant AgentFlow Architecture** - Enterprise-ready multi-tenant deployments
+  - Route different channels/users/patterns to different agents
+  - Support for multiple organizations in single daemon
+  - Environment isolation per AgentFlow (kubeconfig, namespace, env vars)
+  - Comprehensive architecture documentation at `docs/architecture/multi-tenant-agentflows.md`
+- **Telegram AgentFlow Example** - Complete Telegram bot setup following Slack pattern
+  - New `examples/configs/telegram-k8s-flow.yaml` example
+  - Same architecture as Slack bot with channel/user/pattern routing
+- **AgentFlow Routing Documentation** - Complete guide on how routing works
+  - Flow scoring algorithm explained
+  - Common routing patterns (pattern-based, channel-based, user-based)
+  - Debugging tips and best practices
+  - New guide at `docs/guides/agentflow-routing.md`
+
+### Changed
+- All example agents updated to use `google:gemini-2.5-flash` as the primary model
+- Improved debug logging for agent parsing and tool registration
+- Documentation updated with correct model names for all providers
+- **`/run agent` command now routes through AgentFlow** - Uses pre-loaded agents with correct model and tools
+  - No longer creates hardcoded Anthropic fallback
+  - Follows same code path as natural language messages
+  - Ensures consistent behavior across commands and chat
+
+### Fixed
+- System prompts from agent YAML files now correctly loaded and used
+- Agent execution error handling with proper response to platforms
+- Bracket structure in `handle_natural_language` function
+- **Agent loading flag logic** - Fixed issue where agents weren't loaded when flows directory didn't exist
+  - Introduced proper `agents_loaded` boolean tracking
+  - Agents now correctly pre-load regardless of flows configuration
+- **`/run agent` using wrong model** - Fixed hardcoded Anthropic model to use pre-loaded agent's configuration
+  - Now uses `google:gemini-2.5-flash` from agent YAML
+  - Tools and system prompts correctly applied
 
 ### Notes
 - Config changes to `approval_allowed_users` require server restart (hot-reload coming in [Issue #22](https://github.com/agenticdevops/aof/issues/22))

agents/devops-agent.yaml

@@ -9,9 +9,10 @@ metadata:
     category: devops
 
 spec:
-  model: openai:gpt-4o
+  # IMPORTANT: Use google:gemini-2.5-flash for all agents
+  model: google:gemini-2.5-flash
 
-  instructions: |
+  system_prompt: |
     You are a DevOps assistant helping with various infrastructure and deployment tasks.
 
     Your capabilities:

agents/k8s-ops.yaml

@@ -0,0 +1,58 @@
+# Kubernetes Operations Agent
+# Primary agent for Telegram/Slack bot interactions
+#
+# Loaded automatically when running:
+#   aofctl serve --agents-dir ./agents
+#
+apiVersion: aof.dev/v1alpha1
+kind: Agent
+metadata:
+  name: k8s-ops
+  labels:
+    category: infrastructure
+    platform: kubernetes
+
+spec:
+  # IMPORTANT: Use google:gemini-2.5-flash for all agents
+  model: google:gemini-2.5-flash
+  max_tokens: 4096
+  temperature: 0.3
+
+  # Built-in tools available to this agent
+  tools:
+    - kubectl
+    - helm
+    - docker
+    - shell
+
+  system_prompt: |
+    You are an expert Kubernetes operations engineer helping users manage their clusters.
+
+    ## Your Capabilities
+    - Execute kubectl commands to manage Kubernetes resources
+    - Deploy applications using Helm charts
+    - Diagnose pod issues, check logs, and troubleshoot
+    - Scale deployments and manage replicas
+    - Provide best practice recommendations
+
+    ## Safety Rules
+    1. ALWAYS use `kubectl create deployment` instead of `kubectl run` for deployments
+    2. For commands that modify or delete resources, output in this format:
+       ```
+       requires_approval: true
+       command: "kubectl delete pod nginx-12345"
+       reason: "This will terminate the running pod"
+       ```
+    3. Never execute commands that could cause data loss without approval
+    4. Always confirm the namespace before destructive operations
+
+    ## Output Format
+    - Use markdown formatting for readability
+    - Show command output in code blocks
+    - Explain what each command does
+    - Warn about potential impacts
+
+  memory:
+    type: InMemory
+    config:
+      max_messages: 20

crates/aof-runtime/src/executor/runtime.rs

@@ -40,6 +40,10 @@ impl Runtime {
 
     /// Load an agent from YAML configuration file
     ///
+    /// Supports both flat and Kubernetes-style YAML formats:
+    /// - Flat: `name:, model:, system_prompt:, tools:, ...`
+    /// - K8s: `apiVersion:, kind: Agent, metadata:, spec:, ...`
+    ///
     /// # Arguments
     /// * `config_path` - Path to the YAML configuration file
     ///
@@ -53,10 +57,16 @@ impl Runtime {
             AofError::config(format!("Failed to read config file {}: {}", config_path, e))
         })?;
 
+        // AgentConfig has #[serde(from = "AgentConfigInput")] which handles both K8s and flat formats
         let config: AgentConfig = serde_yaml::from_str(&config_content).map_err(|e| {
             AofError::config(format!("Failed to parse YAML config: {}", e))
         })?;
 
+        info!("Parsed agent config: name={}, model={}, system_prompt={:?}, tools={:?}",
+            config.name, config.model,
+            config.system_prompt.as_ref().map(|s| format!("{}...", s.chars().take(50).collect::<String>())),
+            config.tool_names());
+
         self.load_agent_from_config(config).await
     }
 
@@ -78,8 +88,12 @@ impl Runtime {
 
         // Create tool executor
         // Priority: mcp_servers > tools (legacy)
+        info!("Creating tool executor for agent '{}': mcp_servers={}, tools={:?}",
+            agent_name, config.mcp_servers.len(), config.tool_names());
+
         let tool_executor: Option<Arc<dyn ToolExecutor>> = if !config.mcp_servers.is_empty() {
             // Use the new flexible MCP configuration
+            info!("Using MCP servers for tools");
             Some(self.create_mcp_executor_from_config(&config.mcp_servers).await?)
         } else if !config.tools.is_empty() {
             // Separate built-in tools from MCP tools
@@ -91,6 +105,7 @@ impl Runtime {
                 .filter(|t| t.is_mcp())
                 .map(|t| t.name())
                 .collect();
+            info!("Tool separation: builtin={:?}, mcp={:?}", builtin_tools, mcp_tools);
 
             // Known system/builtin tools
             // Unified CLI tools (recommended - simple 'command' argument approach)
@@ -123,9 +138,10 @@ impl Runtime {
 
             let has_system_tools = builtin_tools.iter().any(|t| system_tools.contains(t));
             let has_mcp_tools = !mcp_tools.is_empty();
+            info!("Tool detection: has_system_tools={}, has_mcp_tools={}", has_system_tools, has_mcp_tools);
 
             if has_system_tools && !has_mcp_tools {
-                debug!("Agent has only built-in tools, creating system executor");
+                info!("Creating system tool executor for builtin tools: {:?}", builtin_tools);
                 let tool_names: Vec<String> = builtin_tools.iter().map(|s| s.to_string()).collect();
                 Some(self.create_system_executor(&tool_names)?)
             } else if has_mcp_tools {