← All integrations
Factory Droid Integration

Autonomous droids act without you watching. AgentValet makes that safe.

Every droid gets its own identity, its own GitHub scopes, its own Jira reach, its own Slack channels. Every PR comment, every Jira update, every commit lands in an append-only audit log. If a droid goes off the rails, one click stops every credential it had.

Setup

One command. The CLI scaffolds the whole droid.

The AgentValet CLI signs you in via your browser, generates an RS256 keypair, registers your Droid as an agent, writes .factory/mcp.json, and drops a governance droid spec into .factory/droids/agentvalet.yaml with matching slash commands. No copy-paste, no IDs.

terminal 
# In your project directory
npx @agentvalet/register

# Browser opens. Sign in. Done.
# The CLI writes:
#   .factory/mcp.json                   - MCP entry
#   .factory/droids/agentvalet.yaml     - governance droid
#   .factory/commands/av-status.md      - /av-status slash command
#   .factory/commands/av-register.md    - /av-register slash command
1
Run npx @agentvalet/register in your project directory.
2
Your browser opens to AgentValet. Sign in (or sign up - it's free). The CLI auto-completes registration when you authorize.
3
In Droid, run /av-status to confirm AgentValet is connected, then approve platforms in the AgentValet dashboard. Droid agents can now call GitHub, Jira, Slack, and more - all scoped and logged.
Prefer to add it from Factory Droid's MCP settings? You can wire it up from the MCP section of Factory Droid's configuration - but you'll still want to run npx @agentvalet/register once so the CLI can store your agent's private key on this machine.
Prefer to wire it up by hand?

The CLI is the recommended path. If you'd rather edit the config yourself, here's the equivalent .factory/mcp.json:

.factory/mcp.json 
{
  "mcpServers": {
    "agentvalet": {
      "command": "npx",
      "args": ["-y", "@agentvalet/register", "mcp-server"]
    }
  }
}
What changes

Engineering agents with governed platform access

Factory Droid engineering agents can access GitHub, Jira, Slack, and other platforms without credentials stored in project config.

No credentials in config
Droid project configs contain no API keys or tokens. Credentials live in AgentValet's HSM-encrypted vault, decrypted only at call time.
Per-platform scoping
Droid gets GitHub repo access but not org admin. Jira read but not delete. Scopes are enforced at the proxy, not just declared.
Full call-level audit
Every GitHub PR comment, Jira ticket update, or Slack message logged with agent ID, timestamp, and outcome.
Instant revocation
Suspend a Droid agent or remove a platform in one click. No need to rotate keys across every project config.

Ship governed Droid in under 5 minutes.

One command. The browser does the rest. Free to start, no credit card.

Connect AgentValet to Droid →