Prometheus Loop is a comprehensive reference for building, teaching, and reasoning about agentic AI systems — AI agents that can plan, act, observe, learn, and iterate autonomously.
It provides:
- Three maturity levels — Concept, Production, Autonomous
- 13 self- capabilities* — Each with 700+ lines of implementation
- Plugin system — Install to 18+ CLI/IDE tools
- Complete diagrams — mermaid flowcharts that render on GitHub
- Deep dive guides — memory systems, planning, safety, multi-agent, evaluation, production
- Code examples — Python implementations of every major component
- Case studies — 8 real-world use cases
- Documentation — Guides, API reference, troubleshooting, FAQ
| Audience | What you'll get |
|---|---|
| AI engineers | Implementation patterns, code snippets, architecture decisions |
| ML researchers | Theoretical foundations, evaluation frameworks, state-of-the-art techniques |
| Engineering managers | Deployment patterns, cost optimization, team coordination |
| Students & learners | Clear explanations, progressive complexity, real-world examples |
| Security engineers | Threat modeling, guardrails, adversarial testing, compliance |
| Product managers | When to use which level, tradeoffs, ROI considerations |
- New to agentic AI? Start with core/README.md — the 7-step loop explained simply
- Building for production? Go to production/README.md — safety, testing, deployment
- Want autonomous operation? See autonomous/README.md — self-healing, cost optimization, compliance
- Need deep dives? Check shared/README.md — memory, reasoning, safety, multi-agent patterns
- Need documentation? See DOCS/ — getting started, architecture, API reference, troubleshooting
Prometheus-Loop/
├── core/ # Concept level (v1) - 13 files
│ ├── README.md
│ ├── agentic-ai-loop-guide.md
│ ├── agentic-ai-loop.mermaid
│ ├── agentic-ai-loop-core.mermaid
│ ├── tutorial.md
│ ├── playground.md
│ ├── quiz.md
│ ├── cheat-sheet.md
│ ├── patterns.md
│ ├── anti-patterns.md
│ ├── comparison.md
│ ├── learning-path.md
│ ├── community-examples.md
│ └── code-snippets.md
├── production/ # Production level (v2) - 13 files
│ ├── README.md
│ ├── agentic-ai-loop-v2-guide.md
│ ├── agentic-ai-loop-v2.mermaid
│ ├── agentic-ai-loop-v2-core.mermaid
│ ├── deployment-checklist.md
│ ├── monitoring-setup.md
│ ├── cost-optimization-playbook.md
│ ├── incident-response.md
│ ├── operations-manual.md
│ ├── scaling-guide.md
│ ├── integration-patterns.md
│ ├── performance-tuning.md
│ ├── security-hardening.md
│ └── compliance-checklist.md
├── autonomous/ # Autonomous level (v3) - 13 files
│ ├── README.md
│ ├── agentic-ai-loop-v3-guide.md
│ ├── agentic-ai-loop-v3.mermaid
│ ├── agentic-ai-loop-v3-core.mermaid
│ ├── self-healing-playbook.md
│ ├── adaptive-planning-guide.md
│ ├── multi-agent-patterns.md
│ ├── memory-management.md
│ ├── cost-optimization.md
│ ├── evaluation-framework.md
│ ├── red-team-testing.md
│ ├── migration-strategies.md
│ ├── advanced-troubleshooting.md
│ └── future-roadmap.md
├── core-only/ # Simplified diagrams
│ ├── README.md
│ ├── agentic-ai-loop-core.mermaid
│ ├── agentic-ai-loop-v2-core.mermaid
│ ├── agentic-ai-loop-v3-core.mermaid
│ ├── self-capabilities-summary.md
│ ├── shared-resources-summary.md
│ ├── v1-loop-example.md
│ ├── v2-loop-example.md
│ └── v3-loop-example.md
├── shared/ # Deep dives & common resources
│ ├── README.md
│ ├── memory-systems.md + .mermaid
│ ├── planning-reasoning.md + .mermaid
│ ├── safety-guardrails.md + .mermaid
│ ├── evaluation-metrics.md + .mermaid
│ ├── evaluation-framework.md + .mermaid
│ ├── observability.md + .mermaid
│ ├── cost-optimization.md + .mermaid
│ ├── ethics-compliance.md + .mermaid
│ ├── multi-agent-patterns.md + .mermaid
│ ├── multi-agent-orchestration.md + .mermaid
│ ├── production-concerns.md + .mermaid
│ ├── self-capabilities.md + .mermaid
│ └── self/ # 13 self-* capability deep dives
│ ├── README.md
│ ├── self-healing.md + .mermaid
│ ├── self-retry.md + .mermaid
│ ├── self-improving.md + .mermaid
│ ├── self-monitoring.md + .mermaid
│ ├── self-debugging.md + .mermaid
│ ├── self-refactoring.md + .mermaid
│ ├── self-evolution.md + .mermaid
│ ├── self-observing.md + .mermaid
│ ├── self-planning.md + .mermaid
│ ├── self-adapting.md + .mermaid
│ ├── self-governing.md + .mermaid
│ ├── self-remembering.md + .mermaid
│ └── multi-agent-orchestration.md + .mermaid
├── examples/ # Code snippets & case studies - 12 files
│ ├── README.md
│ ├── code-snippets.md
│ ├── coding-agent-case-study.md
│ ├── research-agent-case-study.md
│ ├── support-agent-case-study.md
│ ├── data-pipeline-case-study.md
│ ├── infrastructure-agent-case-study.md
│ ├── customer-onboarding-case-study.md
│ ├── security-monitoring-case-study.md
│ ├── content-generation-case-study.md
│ ├── langchain-integration.md
│ ├── llamaindex-integration.md
│ └── crewai-integration.md
├── prometheus-loop-plugin/ # Plugin for 18+ CLI/IDE tools
│ ├── README.md
│ ├── plugin.json
│ ├── marketplace.json
│ ├── scripts/
│ │ ├── install.sh
│ │ ├── install.ps1
│ │ └── install.py
│ ├── commands/
│ │ └── loop.md
│ └── skills/ # 14 skill files (700+ lines each)
├── DOCS/ # Documentation
│ ├── README.md
│ ├── index.md
│ ├── getting-started.md
│ ├── architecture.md
│ ├── api-reference.md
│ ├── deployment-guide.md
│ ├── security-guide.md
│ ├── troubleshooting.md
│ ├── faq.md
│ ├── glossary.md
│ ├── migration-guide.md
│ └── performance-benchmarks.md
├── .github/ # GitHub configuration
│ ├── ISSUE_TEMPLATE/
│ ├── PULL_REQUEST_TEMPLATE.md
│ └── workflows/ci.yml
├── CHANGELOG.md
├── CONTRIBUTING.md
├── SECURITY.md
├── LICENSE
├── pyproject.toml
├── requirements.txt
├── .pre-commit-config.yaml
├── .gitignore
└── README.md # This file
File counts:
- Core/Production/Autonomous: 9 guide files + 30 enhancement files + 9 diagrams
- Shared: 12 deep dive files + 12 diagrams
- Self- Capabilities:* 13 capability files (700+ lines each) + 13 diagrams
- Examples: 12 files (code snippets, case studies, integrations)
- Plugin: 14 skill files (700+ lines each) + installers
- Documentation: 12 documentation files
- Total: 100+ files, 50,000+ lines
| Level | Best for | Start here |
|---|---|---|
| Concept (v1) | Teaching, prototyping | core/README.md |
| Production (v2) | Real deployments, human oversight | production/README.md |
| Autonomous (v3) | Minimal oversight, cost-sensitive | autonomous/README.md |
The diagrams are embedded below and render automatically on GitHub, Notion, Obsidian, and any Mermaid-compatible renderer.
Diagram locations:
- v1/v2/v3 guides — embedded at top of each guide file
- Shared resources — embedded at top of each
shared/*.mdfile - Self- capabilities* — embedded at top of each
shared/self/*.mdfile - Core-only diagrams — simplified versions in
core-only/folder
The .mermaid source files are also included for standalone use or editing at mermaid.live.
The 7-step agentic loop: Prompt, Context, Plan, Reason, Act, Observe, Store/Memory, with foundational security awareness, evaluation metrics, and ethical considerations.
flowchart LR
A["1. Prompt"] --> B["2. Context"]
B --> C["3. Plan"]
C --> D["4. Reason"]
D --> E["5. Act"]
E --> F["6. Observe"]
F --> G["7. Storage"]
G --> H["Memory"]
H -.next cycle.-> B
F -.replan.-> C
Guide: v1 guide | Core diagram: simplified
Adds Permission Gate, HITL, Retry vs. Replan, Goal Check, Coordinator, plus operational layers: security, testing, explainability, resources, lifecycle, UX, streaming, composition, and ethics.
flowchart TD
A["1. Prompt"] --> B["2. Context"]
B --> C["3. Plan"]
C --> D["4. Reason"]
D --> E{"5. Permission Gate"}
E -->|allowed| F["6. Act"]
E -->|high-stakes| HITL["Human approval"]
HITL -->|approved| F
HITL -->|rejected| C
F --> G["7. Observe"]
G -->|error| RETRY["Retry"]
RETRY --> F
G -->|plan wrong| C
G -->|success| H{"8. Done?"}
H -->|not done| I["9. Storage"]
H -->|done| I
I --> J["Memory"]
J -.next cycle.-> B
Guide: v2 guide | Core diagram: simplified
Designed to minimize human touchpoints. Full autonomous system with Self-Healing, Adaptive Planning, Cost Optimization, Cross-Session Memory, Verification, Feedback Loops, Graceful Degradation, plus 11 cross-cutting concerns.
flowchart TD
A["1. Prompt"] --> B["2. Context"]
B --> C["3. Plan"]
C --> D["4. Reason"]
D --> E{"5. Permission Gate"}
E -->|allowed| V{"6. Verify"}
E -->|high-stakes| HITL["Human approval"]
HITL -->|approved| V
HITL -->|rejected| C
V -->|passes| F["7. Act"]
V -->|fails| C
F --> G{"8. Observe"}
G -->|error| RETRY["Retry"]
RETRY --> F
G -->|plan wrong| C
G -->|self-healable| SH["Self-Heal"]
SH --> F
G -->|success| H{"9. Done?"}
H -->|not done| I["10. Store"]
H -->|done| I
I --> J["Memory"]
J --> PM["Persistent Memory"]
PM -.next session.-> B
J -.next cycle.-> C
Guide: v3 guide | Core diagram: simplified
13 self-* capabilities that make agents truly autonomous:
flowchart TD
subgraph Detection["Detection Layer"]
A["Self-Monitoring"]
B["Self-Observing"]
end
subgraph Diagnosis["Diagnosis Layer"]
C["Self-Debugging"]
D["Self-Healing"]
end
subgraph Adaptation["Adaptation Layer"]
E["Self-Adapting"]
F["Self-Retry"]
G["Self-Planning"]
end
subgraph Evolution["Evolution Layer"]
H["Self-Improving"]
I["Self-Evolution"]
J["Self-Refactoring"]
end
subgraph Governance["Governance Layer"]
K["Self-Governing"]
L["Multi-Agent Orchestration"]
M["Self-Remembering"]
end
Detection --> Diagnosis
Diagnosis --> Adaptation
Adaptation --> Evolution
Evolution --> Governance
Governance --> Detection
Deep dives: shared/self/README.md — 700+ lines per capability with complete Python implementations.
core/agentic-ai-loop-guide.md— get the shape of the loop. Each step explains what it does, why it matters, what goes wrong, and real examples of it in action.production/agentic-ai-loop-v2-guide.md— see what's needed to run it safely. Covers guardrails, error handling, multi-agent coordination, security at the gate level, testing, explainability, resource management, lifecycle, and UX.autonomous/agentic-ai-loop-v3-guide.md— see how to make it autonomous and robust. Covers self-healing, adaptive planning, cost optimization, cross-session memory, full adversarial defense, evaluation framework, testing framework, streaming, composition, ethics, and agent-as-a-service.- README (you are here) — overview and quick reference.
v1: Prompt → Context → Plan → Reason → Act → Observe → Store/Remember → loop v2: same loop, plus permission gate, HITL, retry vs. replan, goal check, coordinator, security at the gate level, testing, explainability, resource management, lifecycle, UX. v3: same loop, designed to minimize human touchpoints — self-healing, adaptive planning, cost optimization, cross-session memory, verification, multi-tenant isolation, feedback loops, graceful degradation, full adversarial robustness, evaluation framework, testing framework, streaming, agent composition, ethics & compliance, agent-as-a-service.
| Step | What it does | v1 | v2 | v3 |
|---|---|---|---|---|
| 1. Prompt | Task definition + system rules + tool schemas | Core | Core | Core |
| 2. Context | RAG + history + tool outputs + memory | Core | Core | Core + cross-session memory |
| 3. Plan | Decompose goal → ordered sub-tasks | Core | Core | Adaptive (learns from history) |
| 4. Reason | Chain-of-thought, tool selection, decision | Core | Core | + cost-optimized model selection |
| 5. Permission Gate | Scope/policy/blast-radius check before action | — | New | New + adversarial defense |
| 6. HITL | Approval for high-stakes actions | — | New | New |
| Verify | Pre-execution correctness check | — | — | New |
| 7. Act | Execute: API call, code run, file write | Core | Core | Core + sandboxed |
| 8. Observe | Capture result, detect success/failure | Core | Core | Core + self-healing |
| Self-Heal | Diagnose and fix known failure patterns | — | — | New |
| 9. Retry vs. Replan | Differentiate execution error from plan error | — | New | New |
| 10. Goal Check | Termination condition: done? budget? stuck? | — | New | New + budget awareness |
| 11. Storage | Raw persistence: logs, artifacts, DB | Core | Core | Core |
| 12. Memory | Curated state for future cycles | Core | Core | Core + relevance scoring + integrity checks |
| 13. Coordinator | Multi-agent dispatch, merge, conflict resolution | — | New | New |
| Feedback Loop | Learn from outcomes, improve policies | — | — | New |
| Graceful Degradation | Continue when components fail | — | — | New |
| Concern | v1 | v2 | v3 |
|---|---|---|---|
| Security | Basic awareness (3 vectors, minimum posture) | Gate-level (injection detection, tool validation, memory integrity, exfil prevention) | Full adversarial robustness (4-layer defense, sandboxing, red team) |
| Evaluation | Basic metrics (5 signals, evaluation loop, health check) | Observability + dashboard metrics | Full framework (task suites, 8 metrics, A/B comparison, regression gates) |
| Testing | Smoke tests (3 patterns, basic health signals) | Unit, integration, chaos, regression tests | Full pyramid + chaos engineering (8 scenarios) + load testing + property-based |
| Explainability | "Why did it do this?" (manual log reading) | Decision traces, audit logs, compliance requirements | Full traces + memory attribution + counterfactuals |
| Resources | Not needed (single task) | Concurrency, priority scheduling, backpressure, dead letter queues | Same, production-hardened |
| Lifecycle | Not addressed | Deployment strategies (4 types), monitoring, incident response | Same, with rollback |
| UX | Not addressed | Progress, transparency, correction mechanisms, trust calibration | Same, with streaming |
| Streaming | Not needed | Progress reporting basics | Event-driven architecture, streaming, interrupts, long-running tasks |
| Composition | Not needed | Tool integration, Coordinator basics | 5 communication patterns, DAG orchestration, shared state |
| Ethics | 3 questions, minimum ethical posture | Ethical controls (gate, HITL, observability), compliance basics | 5 principles, bias testing, 7 regulations, impact assessment |
| Agent-as-a-Service | Not addressed | Not addressed | API design, auth, rate limiting, SLA tiers |
| Scenario | Use |
|---|---|
| Teaching the concept of agentic AI | v1 — simple, clear, memorable |
| Building a prototype or PoC | v1 — get the loop working first |
| Deploying against real systems | v2 — you need the guardrails |
| Multi-agent orchestration | v2 — Coordinator is essential |
| High-stakes or irreversible actions | v2 — Permission Gate + HITL are non-negotiable |
| Long-running autonomous agents | v2 — Goal Check prevents infinite loops |
| Production with minimal oversight | v3 — designed to minimize human touchpoints |
| Cost-sensitive deployments | v3 — dynamic model selection saves money |
| Recurring / cross-session tasks | v3 — cross-session memory accumulates knowledge |
| Multi-user platforms | v3 — multi-tenant isolation is required |
| Regulated industries (finance, health) | v3 — explainability + compliance framework required |
| Security-critical deployments | v3 — full adversarial robustness required |
| Agent exposed as API | v3 — agent-as-a-service patterns required |
| Real-time / interactive agents | v3 — streaming + interrupt handling required |
| Term | Definition |
|---|---|
| Adaptive Planning | Learning from history which planning strategies work best for which task types |
| Adversarial robustness | Defending against attacks that try to make the agent do something harmful |
| Agentic AI | An AI system that can plan, act, observe, and iterate — not just respond to prompts |
| Blast radius | How many systems, users, or data records an action could affect |
| Chaos engineering | Injecting failures to test agent resilience |
| Circuit breaker | A retry strategy that stops attempting after N failures, preventing resource waste |
| Coordinator | The orchestration layer that dispatches sub-tasks to multiple agents and merges results |
| Cross-session memory | Persistent memory that survives across separate agent sessions |
| Dead letter queue | Storage for tasks that can't be completed after max retries |
| Decision trace | A record of why the agent made a specific decision |
| Fan-out / fan-in | Splitting a task into parallel sub-tasks (fan-out) and merging results (fan-in) |
| Graceful degradation | Continuing to operate (at reduced capability) when components fail |
| HITL | Human-in-the-Loop — a checkpoint where a human approves or rejects an action before execution |
| Memory poisoning | Adversarial content injected into the agent's memory to corrupt future decisions |
| Permission Gate | A pre-execution check that evaluates whether an action is authorized, in-scope, and within policy |
| Prompt injection | Adversarial input that hijacks the agent's behavior by overriding instructions |
| RAG | Retrieval-Augmented Generation — pulling external documents into context to ground the model's reasoning |
| Red team testing | Regularly testing agent defenses against adversarial attacks |
| Replan | Restarting the Plan step because the strategy was wrong (vs. Retry, which re-executes the same action) |
| Retry | Re-executing the same action after a transient failure (timeout, rate limit, network error) |
| Self-healing | Automatic diagnosis and recovery from known failure patterns without human intervention |
| Sandboxing | Executing agent actions in isolated environments to limit blast radius |
| Verification | Pre-execution checks that prove an action will produce the expected result |
Common resources that apply across all maturity levels:
| Resource | Description |
|---|---|
| Evaluation & Metrics | Benchmarks, metric definitions, evaluation suites, A/B comparison templates |
| Observability & Monitoring | LangSmith, Phoenix, structured logs, dashboards, alert rules |
| Cost Optimization | Model routing, caching, context compression, budget enforcement |
| Ethics & Compliance | GDPR, SOC 2, HIPAA, PCI DSS, EU AI Act checklists, bias testing |
| Multi-Agent Patterns | Communication protocols, consensus, conflict resolution, workflow orchestration |
Concrete implementations and case studies:
| Example | Description |
|---|---|
| Code Snippets | Python pseudocode for Permission Gate, Goal Check, Self-Healing, Adaptive Planning, Cost Optimizer, Memory Manager |
| Coding Agent Case Study | How the loop applies to bug fixing, feature implementation, refactoring |
| Research Agent Case Study | How the loop applies to paper research, synthesis, report writing |
| Customer Support Case Study | How the loop applies to inquiry handling, troubleshooting, escalation |
MIT License — see LICENSE for details.