Pipeline Punks is the development and education organization behind the operational intelligence platforms built by True North Data Strategies LLC. We design production-grade systems for regulated field operations, compliance-heavy businesses, and operators who need visibility into what is actually happening inside the business.
This organization publishes architecture patterns, reusable automation modules, AI-assisted operational tooling, and educational resources focused on real-world implementation instead of theory.
Pipeline Punks exists for the people actually running the operation:
- Fleet managers
- Dispatchers
- Safety coordinators
- Trades business owners
- Fuel and hazmat operators
- Back-office administrators
- Small business leadership teams
We do not build software for demo videos. We build systems that survive production environments.
| Principle | Meaning |
|---|---|
| Outcomes Over Features | Software exists to solve operational problems, not collect feature lists |
| Battle-Tested Over Bleeding Edge | Stable systems beat trendy tools |
| Document Everything | Repeatable operations scale better than tribal knowledge |
| Security First | Treat all client data as regulated unless proven otherwise |
| Operational Visibility | Every system should expose current state, bottlenecks, and risk |
| Fixed Scope, Fixed Price | Clear deliverables and predictable execution |
| World Models Over Guesswork | Every workflow should explicitly model state transitions and feedback loops |
Fleet-Compliance Sentinel is a production-grade multi-tenant SaaS platform for DOT/FMCSA compliance management, telematics risk monitoring, operational reporting, training delivery, and AI-assisted regulatory guidance.
| Area | Status |
|---|---|
| Production Status | Active |
| SOC 2 Observation Window | Active through 2026-06-22 |
| Branch Protection | Enforced on main |
| Telematics Pipeline | Operational |
| Training LMS | Operational |
| Penny Knowledge Base | 25,000+ indexed chunks |
| Monitoring Stack | Active |
| Multi-Tenant Architecture | Operational |
| Module | Purpose |
|---|---|
| Fleet Dashboard | Assets, permits, DQ files, FMCSA tracking, invoices, suspense |
| Training LMS | Hazmat and compliance training with assessments and certificates |
| Pipeline Penny | AI-powered compliance and operational assistant |
| Telematics Risk | Verizon Connect Reveal integration and driver risk scoring |
| Command Center | Tool discovery and operations control layer |
| Import Pipeline | Structured XLSX ingestion and validation |
| Alert Engine | Automated compliance alerts and reminders |
| Billing | Stripe lifecycle and subscription management |
| Layer | Technology |
|---|---|
| Frontend | Next.js 15 + TypeScript |
| Styling | Tailwind CSS |
| Backend APIs | FastAPI + Node.js |
| Database | Neon PostgreSQL |
| Authentication | Clerk |
| Hosting | Vercel + Railway |
| Edge Security | Cloudflare |
| Monitoring | Sentry + Datadog + UptimeRobot |
| AI Providers | Anthropic, OpenAI, Gemini, Ollama |
| Billing | Stripe |
| Productivity Stack | Google Workspace + Microsoft 365 |
Pipeline Penny is a document-grounded AI assistant built for operational support, compliance guidance, workflow navigation, and decision support.
Unlike generic chatbots, Penny operates against structured operational context and retrieval pipelines.
- CFR and FMCSA regulatory lookups
- Operational SOP retrieval
- Compliance workflow guidance
- Risk analysis support
- Structured document retrieval
- Context-aware operational conversations
- Multi-provider LLM orchestration
- Local deployment support with Ollama
| Component | Description |
|---|---|
| Vector Store | Indexed compliance and operational documents |
| Retrieval Layer | Context filtering and chunk retrieval |
| Multi-LLM Backend | Anthropic, OpenAI, Gemini, Ollama |
| Operational Grounding | SOPs, policies, training docs, CFR references |
| Audit Logging | Request and action tracking |
Pipeline Punks develops reusable operational automation modules primarily designed for Google Workspace environments.
Each module represents a defined business process with:
- Explicit state tracking
- Defined actions
- Transition logic
- Feedback loops
- Operational reporting
- Audit visibility
| Module | Operational Focus |
|---|---|
| data-command | Centralized operational data handling |
| financial-command | Financial operations and reporting |
| analytics-command | KPI and operational analytics |
| asset-command | Asset tracking and lifecycle management |
| office-command | Internal office operations |
| onboard-command | Employee onboarding workflows |
| proposal-command | Proposal generation and tracking |
| workspace-command | Google Workspace administration |
| sms-command | Messaging workflows |
| contract-command | Contract tracking and lifecycle management |
| realty-command | Property and lease operations |
| tax-command | Tax workflow support |
| seo-command | SEO reporting and optimization |
| govcon-command | Government contracting operations |
| compliance-gov-module | Compliance controls for government-adjacent work |
Every major system follows the same architectural approach:
Current State
↓
Observed Inputs
↓
Action Selection
↓
State Transition
↓
Feedback Loop
↓
Updated Operational State
The goal is operational clarity.
Every workflow should answer:
- What state is the operation currently in?
- What actions are allowed?
- What risks exist?
- What changes state?
- What evidence supports the decision?
- What happens next?
All client and operational data is treated as regulated by default.
- Encryption in transit and at rest
- Least privilege access control
- Secure logging practices
- No PII in logs or prompts
- Secret rotation procedures
- Audit logging
- Input validation and sanitization
- Rate limiting
- Monitoring and alerting
| Framework | Status |
|---|---|
| SOC 2 | Active observation and implementation |
| HIPAA | Operational consideration where applicable |
| GDPR / CCPA | Default privacy posture |
| GLBA | Financial data handling consideration |
| PCI DSS | Payment processing consideration |
| NIST 800-53 | Government-adjacent operational baseline |
| FedRAMP | Considered for future federal hosting pathways |
| FISMA | Government workflow consideration |
| CMMC | Government contractor readiness consideration |
- No identifiable client data sent to external LLMs without approval or anonymization
- Sensitive operational data defaults to restricted handling
- AI systems operate under least-privilege assumptions
- Prompt and retrieval pipelines avoid unnecessary exposure of regulated data
src/ Application routes and frontend systems
railway-backend/ FastAPI backend services
packages/ Shared monorepo packages
knowledge/ CFR docs, training data, operational references
scripts/ Validation and automation scripts
migrations/ PostgreSQL schema migrations
soc2-evidence/ Compliance evidence artifacts
docs/ Runbooks and operational documentation
tooling/ Command modules and utility tooling
public/ Static assets and branding
archive/ Historical snapshots and cleanup cycles
All production repositories enforce pull-request-only workflows.
Direct commits to main are blocked.
- Pull request review
- Passing validation checks
- Operational verification
- Compliance validation where applicable
Every major system ships with:
- Architecture documentation
- Setup instructions
- Environment variable references
- Operational runbooks
- Deployment procedures
- Recovery procedures
- Monitoring guidance
- Compliance notes
| Test Category | Purpose |
|---|---|
| Compliance Checks | Validate legal and policy controls |
| Environment Validation | Ensure deployment readiness |
| OWASP ZAP Scans | Security baseline testing |
| Health Checks | Runtime operational monitoring |
| Audit Logging Verification | Validate traceability |
| Rate Limiting Validation | Protect external APIs |
/docs/llm-resources/
├── command-modules/
├── platform-architecture/
├── compliance-frameworks/
├── integration-guides/
└── decision-frameworks/
Pipeline Punks maintains structured AI skill definitions for:
| Skill | Purpose |
|---|---|
| grant-proposal-writer | Federal and nonprofit proposal generation |
| grant-proposal-evaluator | Grant compliance and gap analysis |
| penny-chunking | Knowledge ingestion for vector databases |
| bearing-check | Multi-checkpoint decision validation |
| world-model-mapper | Process mapping and operational analysis |
| documentation | Structured technical documentation generation |
All skills follow strict formatting and operational guidance standards.
| Service | Purpose |
|---|---|
| Sentry | Error monitoring and session replay |
| Datadog | Log aggregation and operational visibility |
| UptimeRobot | Availability monitoring |
| Stripe Webhooks | Billing lifecycle automation |
| Cloudflare | Edge protection and traffic filtering |
- Session replay enabled for debugging
- Ad-block bypass monitoring tunnel
- Audit-safe logging configuration
- IP masking and privacy controls
- Automated operational alerts
Pipeline Punks teaches system design and operational automation in plain language.
When educational material is produced:
- Explanations assume beginner-level understanding
- Military framing and technical framing are both provided
- Full code examples are included
- Tradeoffs are explained up front
- Risks and gotchas are identified early
- Debug output is included
- Step-by-step implementation logic is documented
The goal is not to impress developers.
The goal is to help operators build systems they actually understand.
When generating systems, code, documentation, or operational guidance:
- Treat all data as regulated.
- Build for production first.
- Prioritize operational clarity.
- Prefer repeatable systems over custom heroics.
- Surface tradeoffs explicitly.
- Design for maintainability.
- Document assumptions.
- Optimize for real-world operators, not demos.
| Item | Value |
|---|---|
| Organization | Pipeline Punks |
| Parent Company | True North Data Strategies LLC |
| Location | Colorado Springs, Colorado |
| Certification | SBA-certified VOSB / SDVOSB |
| Contact | jacob@truenorthstrategyops.com |
| GitHub | github.com/Pipeline-Punks |
| Website | pipelinepunks.com |
| Area | License Status |
|---|---|
| Internal Platforms | Proprietary |
| Client Deployments | Licensed per engagement |
| Public Repositories | Repository-specific licensing |
| Educational Content | Mixed proprietary and public |
For licensing inquiries:
jacob@truenorthstrategyops.com
Pipeline Punks exists to demystify operational systems, compliance automation, and AI-assisted workflows for the people actually running the business.
Direction Protocol gets you clarity.
Command Protocol gets you control.
Pipeline Punks
Operational Intelligence for the Real World.