Quick Start

Get up and running in under 2 minutes — from the web or the terminal.

Option A: Web App

  1. Sign up at /portal
  2. Create a project in the OS shell (New Project app)
  3. Chat with your agents from the Agent Chat app

Option B: CLI

# Install
bun add -g pantheon-cli

# Create account (or login if you have one)
pantheon signup

# Initialize your project
cd your-project
pantheon init

# Start chatting
pantheon chat arjun

Option C: Web + CLI Together

Use the web for visual management and the CLI for terminal workflows. Both share the same backend.

  1. Sign up on the web at /portal
  2. Go to Settings > API Keys and generate a key
  3. In your terminal:
pantheon login --api-key
# Paste your bos_live_... key

API Keys

API keys let you authenticate without email/password. Use them for the CLI, CI pipelines, and programmatic access.

Generate from the Web

  1. Open the OS shell and launch Settings
  2. Go to API Keys in the sidebar
  3. Click "+ Create API Key", name it, and copy the key
  4. Keys start with bos_live_ and are shown only once

Generate from the CLI

# Must be logged in first (email/password or existing key)
pantheon api-keys --create

# List your keys
pantheon api-keys

# Revoke a key
pantheon api-keys --revoke <key-id>

Use an API Key

# CLI login with API key
pantheon login --api-key

# Direct API usage (any HTTP client)
curl -H "Authorization: Bearer bos_live_your_key_here" \
  https://api.pantheonos.dev/api/v1/me

API keys have the same permissions as your account. Treat them like passwords — never commit them to git.

CLI Reference

The Pantheon CLI gives you full access to your AI team from the terminal.

bun add -g pantheon-cli

Authentication

pantheon signupCreate a new account
pantheon loginAuthenticate (email/password or API key)
pantheon whoamiShow your profile, plan, provider

Project Setup

pantheon initInitialize project — auto-detects stack, repo, scaffolds .pantheon/
pantheon doctorCheck all systems — local config, server, connectors

Agent Interaction

pantheon chat [agent]Interactive chat (default: Krishna)
pantheon ask <question>Quick one-shot question
pantheon briefMorning briefing from Yudhishthir
pantheon oracleOracle Report from Sahadev
pantheon review [file]Code review from Arjun

Monitoring

pantheon statusSystem health, agent routing, approvals
pantheon approvalsList and approve/reject pending actions
pantheon auditRecent audit log entries
pantheon violationsVishvarupa threshold violations
pantheon memory [agent]View agent conversation history

Settings

pantheon api-keysList, create, or revoke API keys

See the interactive CLI playground for demos of each command.

Agents

Every project gets 6 specialized AI agents, each mapped to a Pandava from the Mahabharata.

🕉️
KrishnaStrategic Advisor

High-level strategy, decision-making, cross-agent coordination.

👑
YudhishthirCOO

Operations, daily briefings, Gmail/Calendar (when connected).

BheemDevOps

CI/CD, deployments, GitHub PRs, infrastructure.

🏹
ArjunCTO

Code review, architecture, technical decisions.

NakulCMO

Content, marketing strategy, campaigns.

🔮
SahadevCFO

Financials, metrics, Oracle Report, anomaly detection.

Plus Vishvarupa — the cosmic observer that monitors thresholds across all projects and speaks when the universe demands it.

Agents are fully sandboxed per project. Your agents in Project A have no access to Project B's data, memory, or tools.

Connectors

Pantheon connects to the tools your team already uses. Each connector provides read, write, and watch capabilities with governance baked in.

Available Connectors

ServiceCapabilitiesStatus
GitHubRead files/PRs, create PRs, push code, CI statusLive
Google WorkspaceGmail read/send, Calendar read/createLive
SlackPost messages, read history, list channelsLive
LinearList/create/update issuesLive
StripeMRR, revenue, churn, customer dataLive
NotionSearch, read pages, query databases, create pagesLive
TavilyWeb research with citationsLive

Connecting a Service

  1. Go to Settings → Connectors in the OS shell
  2. Click Authorize on the service you want
  3. Complete the OAuth flow in the popup
  4. The connector is now active for your project

Write operations (sending emails, creating PRs, posting to Slack) always require approval through the governance gate.

Policies

Policies define what agents can and cannot do. They control which tools require approval and who can approve them.

Default Policy

By default, all read-only tools are auto-allowed and all write tools require human approval. This is the safest starting point.

Custom Policies (Team Plan)

On the Team plan, you can define role-based approval rules:

# policies.yaml
approval_rules:
  # Production deploys need admin/owner approval
  - tool: github_push_file
    target: main
    requires_role: [admin, owner]

  # Staging deploys auto-approved for members
  - tool: github_push_file
    target: staging
    requires_role: [member, admin, owner]
    auto_approve: true

  # High-value Stripe actions need owner only
  - tool: stripe_*
    amount_above: 1000
    requires_role: [owner]

How Policies Are Evaluated

  1. Agent requests a tool action
  2. Policy engine checks the tool against all rules
  3. If a rule matches: action is allowed, queued for approval, or denied based on the user's role
  4. If no rule matches: default policy applies (write tools → approval required)

Policies are version-controlled. Store them in your repo and deploy with your code — your security team will recognize the pattern.

Telegram

Connect a Telegram group to your project so agents can post updates, briefings, and alerts directly to your team.

Setup

  1. Create a Telegram group (or use an existing one)
  2. Add @PantheonOSBot to the group
  3. Type /connect your-project-id in the group
  4. The bot will confirm and your agents are now active

Bot Commands

/connect <project-id>Link this group to a project
/disconnectUnlink the current project
/statusShow system status and uptime
/pingCheck if the bot is alive

Talking to Agents

Once connected, message any agent by name:

krishna what should we focus on this week?
arjun review the auth module
sahadev what's our runway?

What Agents Post

Morning briefingYudhishthir posts daily at 8 AM
Metric snapshotSahadev posts every 6 hours
Oracle ReportSahadev posts Friday at 9 AM
Approval requestsAny agent needing approval notifies here
Vishvarupa alertsThreshold violations posted to all groups

Each Telegram group links to ONE project. If you have multiple projects, create separate groups for each.

Webhooks

Receive real-time events when things happen in your projects. All payloads are signed with HMAC-SHA256.

Events

agent.responseAgent produced a response
approval.pendingAn action needs your approval
approval.resolvedYou approved or rejected an action
vishvarupa.invokedVishvarupa threshold triggered
scheduled.completedA scheduled task completed

Payload Format

{
  "event": "approval.pending",
  "timestamp": "2026-04-08T09:14:32Z",
  "data": {
    "approvalId": "abc-123",
    "projectId": "my-saas",
    "agent": "bheem",
    "actionType": "deploy",
    "summary": "Deploy v2.1.0 to production"
  }
}

Verify the signature using the X-Pantheon-Signature header with your webhook secret.

Workspace Config

Customize agent behavior per project using workspace config files or the web onboarding.

CLI: .pantheon/ Files

When you run pantheon init, a .pantheon/ directory is created with:

PRIORITIES.mdYour project priorities — agents reference these on every message
STACK.mdTech stack, architecture notes, conventions
AGENTS.mdCustom instructions for specific agents

Edit these files anytime — agents read them on every message.

Web: Workspace Notes

When creating a project through the web onboarding, you can add "Notes for your agents" in the Priorities step. These are stored in the database and serve the same purpose as .pantheon/ files.

Both sources work simultaneously. If you use both CLI and web, agents get context from .pantheon/ files AND database workspace notes.