Skip to content
View eugnmueller-87's full-sized avatar
coffee
coffee

Block or report eugnmueller-87

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
eugnmueller-87/README.md

Hi, I'm Eugen 👋

AI Solutions Consultant for Procurement — I turn procurement pain into working AI, and I demo it live. | Berlin 🇩🇪

The one-liner: 15 years running procurement (portfolios to €60M, €10M+/yr savings) + an AI engineer who ships. I build the tools I wished existed when I ran the function — and every one below is live and clickable.

10+ years leading procurement and category management at TeamViewer, Scout24, Foodpanda and Delivery Hero — now engineering the AI systems that will transform the function I know inside out.

I don't just advise on AI transformation. I build the tools myself.

Every project here started from a real problem I encountered running procurement teams: manual triage, supplier compliance gaps, fragmented spend data, slow RFP cycles, and market intelligence that arrives too late. These are my answers — designed by someone who has lived them and built by someone who can now ship them.

AI Integration Bootcamp @ Ironhack · MBA-IT. I ship the tools, not just the slides, every project below is live and demoable.

From manual, paper-bound procurement to an AI-automated, autonomous function — the transformation I build


Procurement AI Transformation

Every build below started from a real pain I lived running procurement teams. Read the table for the problem → what I built → the result; expand any project for the engineering depth.

# Problem (the pain I lived) What I built Result Links
🧠 TrueSpend Category managers drown in manual PR triage, scattered approvals across IT/legal/controlling, and spend nobody can see end-to-end. An AI-native procurement OS running the full purchase-to-invoice lifecycle autonomously. 17 autonomous workflows, intake→invoice hands-off, role-gated ops board, money-moves locked at the database layer. GitHub · Demo
📦 SCM-Master Procurement, warehouse flow, and asset lifecycle live in disconnected systems — no single source of truth, no safe automation. An AI-native supply-chain OS unifying all three, with an autonomous weekly purchasing run that a human still gates. Auto-places demand-justified POs only at ≥0.90 confidence & <€200k, proven by a 29-scenario agent-safety harness; CI-gated, twin-deployed. GitHub · Demo
📈 SCM Power BI Cockpit A non-technical CEO asks "should we invest in AI demand forecasting?" and gets hype, not a decision. A consulting-case cockpit: live 7-tab web dashboard + Power BI report on the same data, backed by cited research. A defensible invest / wait / pilot recommendation with WMAPE/Bias accuracy, should-cost & TCO, and a phased plan. GitHub · Dashboard
🔴 SpendLens Raw vendor spend arrives as messy CSVs — no classification, no compliance view, no supplier intelligence a category manager can act on. A 5-stage AI pipeline: map → clean → classify vendors → flag compliance → surface supplier intel, across 7 decision screens. Upload a spend file, get a classified, compliance-scored, DD-linked view — hardened for public deployment. GitHub · Demo
☠️ Hades Supplier due-diligence (sanctions, registry, ESG, LkSG/CSDDD) takes analysts 1–2 days per supplier. An autonomous agent that screens a company across 6 risk sources in parallel and returns a scored verdict. Full risk report in under 2 minutes — sanctions/registry/ESG/news → risk score 1–10 + Approve/Block. GitHub
🔍 Hermes Supplier market intelligence arrives too late — you learn a key supplier is in trouble after it hurts you. A continuous market-intelligence agent watching a curated supplier list across 5 signal sources. Tracks 56 AI suppliers across 8 categories, classifies + delta-tracks signals, feeds DD and the CM on demand. GitHub
🏗 Triage Agent Purchase requests pile up waiting for a human to route, compliance-check, and chase suppliers. An autonomous agent that triages every PR: value-routes, checks NDA/DPA/MSA via RAG, runs RFQ/RFP outreach, recommends an award. 6 importable n8n workflows replacing the manual triage queue end-to-end. GitHub
📊 Marketing Spend Stats A $500K budget is split across 7 channels on gut feel, not evidence. A full statistical pipeline testing every channel-pair for real CPA difference. All 14 CPA pairs significant post-FDR → an executive memo with a data-backed reallocation. GitHub
🧪 LLM Eval Lab "Is this AI answer actually good enough to trust for procurement compliance Q&A?" — usually answered by vibes. A LangSmith evaluation lab that scores answers objectively and A/B-compares models. LLM-as-judge on correctness + completeness over a custom dataset; gpt-4o-mini vs gpt-4o compared on real numbers. GitHub
🔧 Engineering depth (click to expand — for technical reviewers)
  • TrueSpend — n8n + Claude Sonnet 4.6 + PostgreSQL + React. 17 autonomous workflows, 32-table schema (dbmate-migrated), full P2I lifecycle. Role-gated Operations Board (procurement, IT, controlling, legal, admin). 4-agent compliance onboarding, DocuSign JWT Grant, Grafana, Jira ≥€100k. DB-enforced security: NOSUPERUSER PostgREST role, every status transition through SECURITY DEFINER RPCs — PATCH tickets.status → 403 at the database layer. Agent security: inbound email/invoices run under "the LLM advises, deterministic code decides" — model output is schema-validated against an action allowlist, ticket/PO ids are derived deterministically (never from the model), and a prompt-injection repro proves the guard inert; money RPCs gated fail-closed off the browser token.
  • SpendLens — React 18 SPA + FastAPI. 5-stage AI pipeline persisted to per-client SQLite (immutable raw layer, hash-dedup, recomputable enrichment). 7 screens wired to Hades and Hermes. Security-hardened for public deployment: opt-in shared-secret API auth (constant-time compare, docs disabled in prod), scoped CORS + full security-header/CSP middleware, chunked upload guards (type allowlist + 25 MB cap), per-IP rate limiting on Anthropic-billed endpoints, Pydantic-validated Hades proxy (SSRF surface closed), generic client errors with server-side logging. Production-polished frontend: React production builds + SRI, pre-paint theme, keyboard-accessible shell (focus-visible, ARIA), reduced-motion, error boundary that keeps the shell alive on crashes.
  • Hades — POST a company name → 6 parallel LangGraph nodes: OFAC/UN sanctions, NorthData registry, LkSG/CSDDD signals, ESG, news sentiment, Hermes intel. Risk score 1–10 + Approve/Block recommendation, in under 2 minutes.
  • Hermes — 5 crawlers (RSS, EDGAR, Tavily, Jobs, Earnings) over a curated 56-supplier / 8-category watchlist — architecture scales to hundreds. Signals classified by Claude Haiku with delta tracking. Semantic RAG via Upstash Vector.
  • SCM-Master — FastAPI + SQLAlchemy 2.0 + Pydantic 2 (SQLite→Postgres), JWT role-gating, 52 test files · CI-gated ≥80% coverage, 5-job CI (lint · Postgres · SAST · CVE-audit · agent-safety). Multi-sourcing core: Product decoupled from ProductSupplier — re-sourcing a line is one FK repoint. Serial-tracked Asset traced RECEIVED→…→DISPOSED with an unbroken link to its PO line. Autonomous weekly purchasing run under "the LLM advises, deterministic code decides" — the confidence score is itself deterministic and audited, gating auto-place at ≥0.90 & <€200k, proven by a 29-scenario agent-safety harness (unapproved supplier, over-cap spend, prompt injection, poisoned calibration → refuses every time). Inventory science: Syntetos–Boylan demand classifier → Nixtla statsforecast (Croston/SBA) with conformal prediction-interval safety stock, chosen over a hand-rolled TSB on a walk-forward benchmark; service-level safety stock (z × σ) + ABC class service levels. Learning layer: rule-based calibration from human approve/reject, with a LightGBM + SHAP calibrator in shadow mode — advisory, logged, never deciding. Twin-deployed (self-wiring public demo + forge-locked production that refuses to seed/ship demo accounts/run on non-persistent storage — regression-tested). Cost-intelligence: clean-sheet should-cost engine (commodity-indexed → defensible cost floor + target price, DRAM/NAND sensitivity) + per-asset TCO rolling up to TSCMC % — deterministic engines, the LLM only proposes.
  • SCM Power BI Cockpit — synthetic-data generator → 7 internally-consistent CSVs feed a live auto-refreshing 7-tab web cockpit (Node + Chart.js) and a Power BI report on the same live API — DAX anchored to SCOR DS, forecast accuracy (WMAPE / Bias / RMSE), should-cost & TCO. Backed by cited research (Stanford AI Index, McKinsey, chip-geopolitics) driving a hype-vs-evidence invest/wait/pilot call with a phased plan + cost/timeline.
  • Triage Agent — 5-tier value routing, supplier NDA/DPA/MSA compliance check via RAG, RFQ/RFP generation, multi-supplier outreach, evaluation matrix, award recommendation. 6 importable n8n workflows.
  • Marketing Spend Stats — Welch t-tests, Bonferroni + BH-FDR correction, bootstrap CIs, Cohen's d across 7 channels / 14 CPA pairs.
  • LLM Eval Lab — LangSmith, custom 20-example dataset, LLM-as-judge correctness + completeness evaluators, A/B (gpt-4o-mini vs gpt-4o).
📋 Case study: Hades — supplier due-diligence, framed as a client engagement

How I'd scope, build, and hand off this solution for a procurement client — the way I'd run it as a consultant, not just a repo.

The problem. Under Germany's LkSG (and the incoming EU CSDDD), every material supplier must be screened for sanctions, ownership, ESG, and human-rights risk — and re-screened on change. In most teams this is a 1–2 day manual analyst task per supplier: pull the registry, check OFAC/UN lists, scan news, cross-reference ESG databases, write it up. It doesn't scale, it's inconsistent between analysts, and it's the exact task that stalls onboarding.

The approach. I treated it as a decision-support problem, not a chatbot. The rule throughout: the LLM advises, deterministic code decides. Sanctions matching runs in deterministic code before the model sees anything — a hit forces Block, no LLM discretion. The model only summarizes and scores what verified sources return, so the output is defensible to an auditor.

What I built. An agent that takes a company name and runs 6 research pipelines in parallel — sanctions (OFAC SDN + UN), registry (NorthData), LkSG/CSDDD signals, ESG/labour, 90-day news sentiment, and live market intelligence — then returns a 1–10 risk score with an Approve / Conditional / Block recommendation and a plain-language executive summary, with a persistent audit trail.

The result. A 1–2 day analyst task becomes a sub-2-minute, consistent, audit-trailed report — the same rubric every time, defensible to compliance, and wired into the wider spend platform so a flagged supplier is caught at onboarding, not after.

What I'd do for a client. Scope their actual supplier master and risk appetite → map the screening rubric to their LkSG/CSDDD obligations → pilot on one high-risk category → tune the risk weights with their compliance team → integrate to their P2P so screening is a gate, not an afterthought. The tech is done; the engagement is the fit.

See it: Hades repo


Autonomous Agents & AI Systems

Production multi-agent architectures and real-time AI applications running live.

Project/Description GitHub
Pantheon OS — Autonomous Trading Orchestrator — 8-agent system live on Hetzner, self-scheduling every 15 minutes. ZEUS orchestrates: Icarus (Hermes signal watcher) → Hades (OFAC/EU sanctions firewall) → Artemis (VIX + macro regime) → Pythia (Kelly-inspired position sizing) → Zeus (Claude Sonnet 4.6 reasoning + ChromaDB KB) → Ares (IBKR bracket orders: entry + 3% SL + 6% TP) → Argus (drawdown kill switch). Apollo runs daily: arXiv ingestion, earnings enrichment, self-improvement loop. Agent seniority system: TRAINEE → DIRECTOR, gated by verified win rate. Kafka event bus. Supabase + Grafana. GitHub
🤖 Icarus AI — Personal Operating System — JARVIS-style AI OS via Telegram + an installable PWA. Async Claude tool-use agent loop over a modular skill layer: Gmail/Calendar (IMAP/CalDAV), voice input (Whisper), multimodal document analysis, live web search, LinkedIn drafting, expense tracking — plus on-demand procurement skills wiring in Hades (supplier due-diligence) and Hermes (market intelligence). Now also reaches my personal knowledge brain over MCP via a read-only brain_search skill — env-gated to run only on the local host next to the vault, so the cloud deployment has no vault access (local-first by construction). Multi-model routing (Sonnet/Haiku), per-session identity, prompt-injection hardening, persistent memory via Upstash Redis. GitHub
🧠 Self-Improving Knowledge System — A Claude-native knowledge OS built on a quality-gated ingest→distill→maintain loop. Stateful sync skills pull data into an immutable raw layer; a "distill-gate" blocks anything from entering the connected note graph until it's synthesized and linked (≥2 edges) — quality enforced at both ends. Capability layers: a portable harness that swaps the model behind Claude Code (cloud or local LLM via LM Studio, proven air-gapped) for private/offline work; a gated overnight local-LLM batch worker that drafts into quarantine and earns autonomy only after a 7-run quality streak (cloud model scores each run 1–10); local hybrid retrieval (vector + BM25 + RRF fusion + reranker) exposed to the agent over MCP, with a custom graph-fusion re-ranker that folds the wiki-link graph into search scoring; a two-tier passive-memory pipeline; a self-maintenance pass that audits the graph for orphans, broken links, and drift; and agent-feed sync skills that let the brain ingest its own procurement agents on demand — pulling Hermes' supplier intelligence and Hades' due-diligence verdicts into a fact-gated wiki library, with structural prompt-injection defense (no web-fetch tool in the ingest session). 100% local embeddings, zero per-query cost. Python · PowerShell · MCP · LM Studio · sqlite-vec/FTS5 · git-versioned. Private repo

Infrastructure & Security

Self-hosted reliability and security tooling that keeps the production stack healthy — observe-only guardians, firewall hardening, and automated secret hygiene.

Project/Description Repo
🛡 Lookout — Docker Host Guardian — Observe-only watchdog for the production Docker hosts. Samples every container's CPU + memory each minute; on a sustained runaway it applies a reversible CPU cap (the only automatic action) and alerts via Telegram, leaving pause/restart/kill as owner-gated commands. Plus: firewall hardening (ufw + DOCKER-USER conntrack rules that actually block Docker-published ports), short-lived auto-rotated service tokens (no long-lived credentials on disk), a repo secret-scanner that watches all public repos for exposed keys, and a push-based health feed so the ops assistant can answer "are the servers running well?" in natural language. Private repo

Client & Deployed Systems

AI systems built and deployed for real organizations.

Project/Description GitHub
📊 Client Dashboard — Internal agency dashboard for monitoring all live client AI systems. Real-time status, deployment health, pipeline metrics across projects. GitHub
🧙 Agency Wizard — Internal onboarding wizard for deploying full AI automation stacks to clients in a single 3-hour session. Validates every credential live, then provisions into the client's own n8n Cloud instance. GitHub
🩺 AI Triage System (Metabelly) — Autonomous customer support triage for a Croatian gut health brand. Incoming emails classified by AI (category, priority, language), auto-replies drafted, Calendly links appended, results routed to Slack. n8n + Mistral AI + Gmail API. GDPR-compliant. GitHub
📧 Noosphr Email Router — AI email triage for Noosphr's inbox. Claude Haiku classifies and routes to #business, #support, or #spam Slack channels with one-click reply buttons. Runs as systemd service on Hetzner VPS. GitHub

Full-Stack AI Applications

Project/Description GitHub
🏥 Kita Connect — Full-stack daycare management platform for German Kitas. ~€0/month, GDPR-compliant, Frankfurt-hosted. Three portals: parents, educators (AI-assisted learning stories via Claude Haiku), management (multi-channel comms, automated registrations). GitHub
📌 Aushang — Digitization for old-school German orgs (Kitas, Vereine, Kirchengemeinden, Kleingärten) that changes none of their processes: they keep pinning paper to a physical board; one admin photographs it from inside the tool, and members get a private feed, a shared calendar, an ICS subscription, and an email digest. Privacy by construction — the raw photo is OCR'd and PII-redacted locally (Tesseract + Microsoft Presidio + spaCy, fail-closed) before only the redacted text reaches the LLM (Claude, US — never raw images or PII; swappable to an EU model); raw photos and the LLM key never leave the FastAPI worker. "The LLM advises, deterministic code decides" — nothing reaches members without explicit admin confirmation, and all model output is schema-validated. Hardened to a four-layer security model (deny-by-default middleware → server role checks → SECURITY DEFINER RPCs → Postgres RLS + column-level REVOKE on PII), put through multi-agent adversarial security reviews. Next.js 16 + React 19 + Supabase (EU, RLS on every table), a Dockerized Python ML worker, a native Android app (Capacitor), and a one-command self-host wizard. GitHub
Self-host
Light-weight Transcriber — Drop a YouTube URL or paste any text. Ask Claude anything about it. Answers without downloading the audio — paste a URL or text and ask. GitHub

RAG, LangChain & LangGraph

Project/Description GitHub
📚 RAG Pipeline — Chunking, embedding, retrieval with metadata filtering. Upstash Vector, OpenAI embeddings, query pipeline with source tracking. GitHub
⚖️ Relevance Scoring & Rerankers — Advanced RAG over EU AI Act legal text. Vector similarity, metadata filtering, Cohere cross-encoder reranking, before/after position-shift analysis. GitHub
🤖 LangChain Tool-Use Agent — ReAct-pattern agent with free tool selection across 4 custom tools. GitHub
🔄 LangGraph Complaint Processor — Deterministic 5-node state machine with human-in-the-loop checkpoints. GitHub

Workflow Automation (n8n)

Project/Description GitHub
🧠 TrueSpend Workflows (17) — intake_receiver, chat_assistant, board_action, supplier_reply_handler, docusign_sign, docusign_callback, contract_watcher, reorder_trigger, hyperscaler_monitor, supplier_onboarding, invoice_processor, delivery_confirmation, asset_depreciation, llm_consumption, rag_embedder, dispatch_drain, vps_monitor. Production-grade: 120s timeouts, 3× retry, per-signal trace logging. Status transitions call SECURITY DEFINER RPCs — no workflow writes tickets.status directly. GitHub
🏗 Procurement Triage Workflows — 6 importable n8n workflows: PR ingestion, tier routing, ERP budget/PO, RFQ/RFP outreach, quote collection, approval handling. GitHub
📰 arXiv Research Summarizer — n8n + Claude + Notion. POST an arXiv URL → fetch metadata → Claude summary → Notion record. GitHub

🛠 Skills

Procurement & Strategy

Procurement Strategy Category Management Contract Negotiation Supplier Management Source-to-Pay Spend Analytics GDPR Compliance AI Process Automation Autonomous Agent Design ERP Integration

Engineering

Python React Vite Node.js PostgreSQL PostgREST FastAPI SQLAlchemy Pydantic SQLite Next.js LangChain LangGraph RAG ChromaDB Upstash Redis Claude API Claude Sonnet & Haiku MCP OpenAI API Mistral AI Cohere Whisper Tavily LM Studio Ornith n8n DocuSign Telegram Bot API Kafka Docker PowerShell Capacitor Railway Hetzner Grafana GitHub Actions Interactive Brokers Supabase nginx

Data & BI

Power BI DAX pandas NumPy scikit-learn LightGBM SHAP statsforecast Chart.js Data Visualization BI Dashboards Demand Forecasting Should-Cost / TCO

Security & Privacy

Local PII Redaction Microsoft Presidio spaCy Tesseract OCR Prompt-Injection Defense Row-Level Security


🏢 Background

Company Role
TeamViewer Lead Procurement & Category Management
Scout24 Senior Procurement Manager
Delivery Hero / FoodPanda Category Manager

📫 Connect

LinkedIn


10+ years in procurement, now building the AI systems I wished existed when I ran the function.

Pinned Loading

  1. PROCUREMENT PROCUREMENT Public

    SpendLens — full-stack AI procurement intelligence platform. Upload messy spend, get classified + compliance-scored + supplier-DD-linked views across 7 screens. FastAPI + React, live demo.

    Python 1

  2. TrueSpend TrueSpend Public

    AI-native procurement OS. 17 n8n workflows, role-gated Operations Board, DocuSign e-signature, full P2I lifecycle. DB-enforced security (NOSUPERUSER + SECURITY DEFINER RPCs). n8n + Claude Sonnet 4.…

    JavaScript 1

  3. Pantheon Pantheon Public

    Pantheon OS — 8-agent autonomous trading system (IBKR, German markets). Kafka event bus · Agent seniority system · Shadow learning · 294-test quality gate · API key auth · Supabase + Grafana + Clou…

    Python 1

  4. SCM-Master SCM-Master Public

    Hardware-procurement & asset-lifecycle SCM with an AI decision layer: should-cost, TCO/TSCMC, and an LLM copilot that advises while deterministic code decides — proven by a 29-scenario agent-safety…

    Python 1

  5. SCM-POWER-BI SCM-POWER-BI Public

    An executive-facing cockpit for procurement & supply-chain analytics, built for a mid-to-large cloud/hosting company

    HTML

  6. DIGITNEWS DIGITNEWS Public

    Aushang — privacy-by-construction digitization for old-school German orgs (Kitas, Vereine, Kirchen). Photograph the notice board; local OCR + PII redaction → LLM extraction on redacted text only (C…

    TypeScript 1