New: give any agent a live, governed query engine over your data, no warehouse required.Get started
Nightshift

Nightshift for Industrial Ops

Eyes on the line, hands off the controls.

A reliability copilot is only as good as the historian, MES, ERP, maintenance systems and other data it can reach. Agents gain a complete view of plant performance while remaining isolated from control systems, ensuring they can provide actionable intelligence without introducing operational risk.

Get started freeTalk to sales
Plant catalog4 sources
PIpi.historiantag stream4.2kLive
MEmes.workorders48K open1.9kGoverned
SAsap.pm1.2M rows920Governed
SCscada.gatewayread only210Read only
Governed catalog · the agent only ever sees this

See it work

Find the $4.2M no dashboard could.

An agent connects Nightshift over MCP and attributes Q3 scrap and rework across SAP, Siemens, Rockwell, and Oracle, down to the line and supplier lot.

The boundary

Reads cross. Writes stop.

An agent reads the line through the catalog. The path that moves a machine is not exposed at all, so a wrong write is not a risk you have to catch, it is a thing that cannot happen.

reliability-agentreadsCatalogHistorian / MESallowed
reliability-agentwritesControl systemblocked

What agents do

Reliability agents that earn their access.

Predict the failure

Read historian tags and work-order history to flag the asset about to fail, without ever touching the controls.

Close the work order

Draft and update maintenance work orders against the MES, with the technician PII column never in scope.

Answer the floor

A plant copilot that answers from live line data, scoped to the sites a crew actually runs.

The control boundary

Agents live above the line.

The plant runs in layers. Nightshift exposes the upper ones as governed reads and leaves the layers that move equipment unreachable. The boundary is the catalog itself, not a firewall rule you hope holds.

L4ERP & asset managementSAP PM, maintenance historyGoverned read
L3MES & historianwork orders, tag streamsGoverned read
Nightshift catalogreads cross up, nothing reaches down
L2SCADA & gatewaysNot exposed
L1PLC & control logicNot exposed
L0Sensors & actuatorsNot exposed

Policy that knows the plant

Scope to a site, hide a column, gate a write.

Policy reads like an operating procedure. Limit an agent to two sites, drop the technician PII column, and route any write to a human on the floor. It compiles into every endpoint, so there is no way around it.

  • Allow and deny by site, asset, or work-order type
  • Mask PII and safety-sensitive fields
  • Writes wake an approver on their phone
policies/plant-maintenance.policypolicy
# reliability-agent reads work orders, never PII or controls
policy "reliability-agent" {
  identity = "reliability-agent"
  source   = mes.workorders
  allow where site in ("DET-1", "DET-2")
  deny column assigned_tech_ssn
  require approval when action = "write"
}

Questions the plant asks

The questions we get on the floor.

Can an agent ever write to a machine?
No. The control path is not in the catalog, so a write to a PLC or SCADA system is not something policy has to catch, it is a thing that cannot be requested.
Do you copy our historian?
No. Nightshift reads live through a connector. Tags and work orders stay in your systems; we route access, we do not warehouse it.
How do we prove who saw what?
Every request is on the record: the identity, the source, what policy did, and what came back, queryable and exportable to your system of record.

Put an agent on your plant data, safely.

Start free, connect a historian or MES, and watch governed reads flow to your agent in minutes. Add write approvals when you are ready.

Get started freeTalk to sales

Want to look first? Take the product tour