Skip to content
Theodosia v0.4.1
GitHub
Docs / Start / Introduction

Introduction

VERSIONv0.4.1 · SOURCE docs/introduction.md

Theodosia mounts a Burr Application as an MCP server. Every Burr @action is reachable through one step(action, inputs) MCP tool. The server checks reachability against the live graph before each action body runs; out-of-order calls return a structured refusal carrying the reachable next actions. Every successful attempt and every refused attempt is written to a per-session log you can replay, fork, or chain-verify.

Primitives

Section titled “Primitives”
  • mount(application, ...) wraps a Burr Application (or factory) as a FastMCP server.
  • step(action, inputs) is the one MCP tool the agent calls. reset_session, fork_at, and fork_from_past round out the four-tool surface.
  • A structured refusal has shape {"error": "<reason>", "valid_next_actions": [...]}. Five reasons: invalid_transition, unknown_action, validation_failed, action_timeout, action_error.
  • theodosia:// resources expose graph topology, current state, valid next actions, history, sub-runs, trace, and session identity.
  • The session log is hash-chained. theodosia verify recomputes the chain and names any edit, reorder, or middle-deletion.

Try it without an API key

Section titled “Try it without an API key”

Install into a virtual environment (Python 3.11 to 3.14). The venv avoids the externally-managed-environment error a global pip install hits on Homebrew/Debian Python:

Terminal window
python -m venv .venv && source .venv/bin/activate
pip install theodosia

Then run the offline demo:

Terminal window
theodosia primer

theodosia primer walks a bundled coffee-order example in process. No LLM, no network, byte-for-byte the same output every run.

Build your own

Section titled “Build your own”

Build your own agent walks writing a workflow, serving it, and driving it with a real agent. Authoring a graph is the reference for the Burr building blocks (@action, Condition, with_transitions).

Going further

Section titled “Going further”
  • Refusals: the five refusal shapes and how the agent recovers.
  • Sessions: per-session isolation, fork_at, fork_from_past, partition keys.
  • Architecture: what mount() does and the four MCP tools it registers.
  • Security model: what the ledger does and does not prove.
  • Case study: Kimi K2.6 on Grafana o11y-bench, free-ranging vs gated.
VERSIONv0.4.1 · SOURCE docs/introduction.md