Skip to content
Kiwiapps

Proof · example work style

The kind of systems we build.

The hard, advanced parts — shown through the architecture, the approach, and the outcome.

Component SDKEmbeddable · multi-tenant

Fully-customizable components that embed into any host site.

A managed component SDK that B2B and multi-tenant products drop straight into their own websites — hosted in vanilla HTML, React, Vue, or Angular. Every component is themed per tenant so it speaks the host's design language (colors, fonts, fields, ordering, styles) and connects to localization, including RTL. Built on compound components and style-isolated custom elements; fields carry their own validation (Zod or JSON Schema) and bind to your backend data keys. Tree-shakable and configured inline or from a remote URL — easy for your developers to adjust and upgrade, and easy for customers to embed.

The hard partManaged, fully-customizable components that embed cleanly into any framework and any host site — matching each tenant's design and language — while staying first-class, controlled, and upgradeable from one SDK.

Vanilla · React · Vue · AngularCustom elements · Shadow DOMCompound componentsPer-tenant themingField validation · Zod / JSON SchemaBound to backend keysLocalization + RTLTree-shakableInline or remote configMaintainable upgrades
One SDK · themed per tenant
Acme
ReactEN
Welcome back
Email
Password
Sign in
Forgot password?
ConfigurationInline or remote · no rebuild

One tag to embed. Themed and configured without a rebuild.

Load the SDK from our CDN or vendor it into your source. Configure each tenant inline on the page or from a remote URL — swap a theme, reorder fields, change copy or locale and it updates at runtime, nothing to recompile or redeploy. Every field carries its own validation (Zod or JSON Schema) and binds to a specific backend data key, so the embedded form maps cleanly onto your API.

index.html
Vanilla HTML
<!-- Served from our CDN — one tag, any site -->
<script type="module"
  src="https://cdn.kiwiapps.org/sdk/v1/embed.js"></script>
<kiwi-auth
  tenant="acme"
  config-url="/kiwi.config.json"></kiwi-auth>
login.tsx
React · Vue · Angular
// …or vendor it straight into your source
import { KiwiAuth } from '@acme/kiwi-sdk';
export function Login() {
  return <KiwiAuth tenant="acme" config={config} />;
}
kiwi.config.ts
Inline or remote
// Inline on the page — or fetched from a URL.
// Change it and it updates at runtime. No rebuild.
export const config = {
  theme: { accent: '#A8D11D', radius: 12, font: 'Inter Tight' },
  locale: 'en',
  dir: 'ltr',
};
fields.config.ts
Zod · JSON Schema
// Fields carry validation + a backend data key
import { z } from 'zod';
fields: [
  { key: 'email',
    bind: 'user.email',          // → backend key
    schema: z.string().email() },
  { key: 'password',
    bind: 'auth.credentials',
    json: { type: 'string', minLength: 8 } },
];
CDN-hostedVendored in sourceInline configRemote config URLZod + JSON Schema validationBound to backend keysRuntime theming · no rebuild
NestJS DXHMR executor · dev gateway

A 25–35s rebuild loop, rebuilt into 20–100ms hot reload.

A very large NestJS Nx monorepo — 29 service apps and 60+ shared libs — where every small change forced a 25–35 second rebuild and server restart. We built a custom Nx executor for true NestJS hot module reload that swaps only the changed module graph in place while the process stays alive, taking the edit-to-running loop down to 20–100ms — faster than a typical API request. In the same project we built a dev gateway server — an enhanced dev server that spins up multiple instances of each app over unix sockets and routes to them by URL prefix, with both an external port for clients and an internal port for service-to-service calls — so local dev runs the same multi-node, queue, and event-driven topology as production.

The hard partReal hot module reload across a 29-app, 60+-lib NestJS workspace — re-wiring the DI container for just the changed module while keeping the process, state, and connections alive — and a dev gateway server with internal + external ports that fans one entrypoint out to many socket-bound instances per app, by prefixed route, reproducing the production topology locally.

Custom Nx executorNestJS HMR29 apps · 60+ libsIn-place module swapDev gateway serverInternal + external portsInstances per app · prefixed routesEvent-driven · local queue
25–35s → 20–100ms

nest dev · hot module reload

uptime 4:12:33 · 0 restarts

AppModule · 29 apps · 60+ libs

✎ editedorders.service.ts

47ms

hot-swapped OrdersModule

process kept alive · connections preserved

before · rebuild + restart

25–35s

after · HMR patch

47ms

faster than a typical API request — in the same monorepo

Dev gateway serverInternal + external ports · prefixed routes

Two ports, many instances per app, prefixed routes.

An enhanced dev server: instead of one process per app, the dev gateway server spins up multiple nested instances of each app — each on its own unix socket — and routes to them by URL prefix (/orders/*, /billing/*). Each dev gateway service exposes both an external port for clients and an internal port for service-to-service calls — so an app can call the gateway, or another server, from inside the dev environment exactly as it would in production. Local dev runs the same multi-node, queue, and event-driven topology as prod.

external · clients

internal · service-to-service

project.json
Nx executor
// project.json — custom Nx executor
"serve": {
  "executor": "@acme/nest-dx:dev",
  "options": {
    "hmr": true,       // 20–100ms swap
    "instances": 2,    // per app
    "gateway": true    // one port
  }
}
gateway.ts
prefixed routes
// dev gateway server — N instances per
// app, routed by URL prefix
for (const app of apps)
  for (let i = 0; i < app.instances; i++)
    fork('dist/main.js', {
      env: { NEST_SOCK: sock(app, i) },
    });
gateway.use('/orders/*', balance('orders'));
gateway.listen(EXTERNAL_PORT);   // clients
gateway.internal(INTERNAL_PORT); // services
orders.controller.ts
event-driven
// local queue mirrors production:
// events fan out across instances
@EventPattern('order.created')
async onOrderCreated(@Payload() e) {
  // handled by whichever instance
  // pulls it — exactly like multi-node
}
29 service apps60+ shared libs25–35s → 20–100msinternal + external portsprefixed routesN instances per appmirrors prod multi-nodeevent-driven · local queue
Intent DetectionBehavioral signals · real-time

Raw browser behavior, read as live intent in under a quarter-second.

A lightweight in-page sensor watches a visitor use the page — pointer paths, hovers, scroll, element exposure, clicks, and form focus — with no markup or tagging required from the host site. Each interaction is resolved to its meaning (what the element is, where on the page it sits, and what it's about); the raw events stack and aggregate, then a per-page codec encodes them into compact, opaque coded events, so the taxonomy and scoring never travel on the wire. A continuous funnel streams those coded events, in order, into a realtime AI agent that infers what the visitor wants — evaluating pricing, weighing the enterprise tier, ready to convert, or confused and stuck — and chooses an action: surface help, open a conversation, assist a form, or deliberately do nothing. The whole hot path runs in well under 250ms, with a safe local fallback when the backend is slow, and it never reads a single input value — only structure, timing, and intent.

The hard partTurning a raw, anonymous interaction stream into a real-time read of intent — capturing behavior with zero host markup, encoding it into compact coded events with a per-page codec so nothing sensitive leaves the client, and feeding a continuous funnel into a realtime agent that infers intent and acts on the same page load — with a local fallback that guarantees a decision even when the network doesn't.

No host markupPointer · scroll · hover · click · formsSemantic resolution · role/zone/topicStacked & aggregated eventsCodec · opaque coded eventsContinuous funnelRealtime AI agentIntent + action <250msLocal fallback policyPrivacy-aware · 0 input values
Raw events → intent · <250ms

intent engine · realtime

0 input values

live session

raw events · aggregating

pointermove · hero

buffered

1 evt

codec

1·2·0

4=click · 5=hover · 6=scroll · 11=plan · 17=cta — opaque on the wire

continuous funnel

realtime agent

produced intent

analyzing…

0.12

raw behaviour → coded events → agent → intent, in realtime

Intent pipelinecapture → aggregate → codec → agent → intent

From raw clicks to coded intent.

A lightweight in-page sensor captures ordinary interactions and resolves each to what it is, where it happened, and what it is about. Those signals stack and aggregate, then a per-page codec encodes them into compact, opaque coded events — so the taxonomy and scoring never travel on the wire. A continuous funnel streams the coded events into a realtime agent, which infers intent and chooses an action on a hot path under 250ms, with a local fallback so a decision always lands. Throughout, it reads structure and timing, never input values.

Capture

pointer · click · scroll

Aggregate

stack · windows

Codec

encode · opaque

Agent

realtime inference

Intent

act · <250ms

event.ts
capture
// raw browser event → semantic signal — no input values, ever
const e = capture(event);
// {
//   kind:  'click',          // pointer · scroll · hover · form
//   role:  'primary_cta',    // what the element means
//   zone:  'pricing',        // where on the page
//   dwellMs: 4200,
//   confidence: 0.92,        // identity x semantic
// }
codec.ts
encode
// encode events with a per-page codec → opaque coded events
// dictionary: { click: 4, hover: 5, scroll: 6, cta: 17 }
const coded = codec.encode(e);
// [4, 17, 9, 1]   ← compact, opaque on the wire
// the taxonomy and scoring never leave the backend.
agent.ts
funnel · infer
// a continuous funnel feeds the realtime agent, in order
for await (const coded of funnel) agent.push(coded);
const intent = agent.infer();          // produced from events
if (intent.confidence < 0.4) return hold();   // do not interrupt
if (gate.allow(intent.action, { cooldown }))
  emit(intent.action);   // <250ms — local fallback if slow
no host markupaggregated event streamcodec · opaque on the wirecontinuous funnelrealtime agent<250ms hot pathlocal fallbackprivacy-aware · realtime
More workSelected systems

More of what we build.

Complex frontend infrastructure

Runtime-safe, performance-conscious frontend systems with stable component architecture and reliable state and data flows.

Stable at scaleFrontendPerf

Secure AI integration layer

Agent workflows connected to APIs, tools, and business systems with guardrails, permissions, auditability, and human control.

Controlled & auditableAISecurity

High-throughput edge API platform

A contract-first API platform on edge runtime with strict validation, caching strategy, and observability built in from day one.

Low latency, contract-firstBackend

Multi-tenant auth & RBAC redesign

A permission model and identity flow redesigned for multi-tenant isolation, least privilege, and safe delegation.

Least-privilege by designSecurityBackend

Design system & frontend rebuild

A token-driven design system and frontend architecture that made a sprawling product consistent, fast, and maintainable.

Consistent & fastFrontend

Work

Want this kind of work on your system?

Bring us the part that has to be right — the fragile frontend, the secure backend, or the AI agent that needs real guardrails.

Book an Architecture CallSend Us the Problem