Capability Statement

SBA-Certified Service-Disabled Veteran-Owned Small Business · Custom Software, AI, Cloud & Cybersecurity

Company Snapshot

Heinrichs Software Solutions Company

Service-disabled veteran-owned engineering firm and a Florida corporation delivering custom software, applied AI, cloud, and cybersecurity for federal missions, performing in house or by assembling and leading a vetted team. Delivery is accelerated by a multi-agent AI engineering harness we built and operate ourselves, which lets a certified small business produce the velocity and output of a much larger contractor. We back every claim with a public lab a reviewer can read and run, anchored by an autonomous defensive research fleet, a twelve-archetype security lab pairing each exploit with a verified patch, the hss-sniffer static analyzer, and BitBooth, a multi-chain payment gateway live in production on Base mainnet with source MIT licensed at github.com/Drock91/bitbooth-gateway. An autonomous verification surface is live at app.heinrichstech.com/agentic, so agencies can vet the engineering before award rather than after.

SDVOSB Certified Veteran-Owned Small Business SAM.gov Active CAGE 1ZSB5
Legal Name
Heinrichs Software Solutions Company
Owner
Derek Heinrichs, President & CEO
Entity
Florida corporation
UEI
SXG3SA9JMM47
SDVOSB
SBA certified, June 4 2026 through June 3 2029
CAGE Code
1ZSB5
SAM.gov
Active
Primary NAICS
541511 Custom Computer Programming Services
Website
heinrichstech.com
Contact
contact@heinrichstech.com
Core Competencies

What We Build

Production capabilities backed by shipped code in our public lab. We scope engagements only in areas where we have working reference implementations to point at.

Applied AI and Autonomous Agents

  • Multi-agent engineering harness coordinating coding agents in parallel
  • Autonomous defensive research fleet of nineteen specialized roles
  • Claude, OpenAI, Gemini, Groq, and Mistral orchestration with failover
  • Retrieval, memory, and reflection layers for long-running agent tasks
  • @bitbooth/mcp-fetch published on npm for agent tool integration

Cybersecurity and Defensive Research

  • Autonomous defensive research fleet producing documented findings at scale
  • Twelve-archetype security lab pairing each exploit with a verified patch
  • hss-sniffer custom static analyzer run across 776-plus production scans
  • Foundry and Echidna fuzzing harnesses integrated into delivery
  • CMMC Level 2 and NIST 800-171 aware practices built into the pipeline

Custom Software Development

  • Full-stack web applications using Node.js, TypeScript, React, Python
  • REST and GraphQL API design and multi-tenant backends
  • Serverless architectures on AWS Lambda with API Gateway
  • Relational and NoSQL data layers across PostgreSQL, DynamoDB, MongoDB
  • Legacy system integration and modernization

Cloud and AWS Serverless Architecture

  • Lambda, API Gateway, DynamoDB, Cognito, KMS, SES, and CloudFront
  • AWS CDK starter with a defense-industry variant at hss-aws-infra
  • Static site hosting on S3 with CloudFront and Route 53 DNS
  • Stripe, Cognito, and OAuth integrations as repeatable patterns
  • Cost-optimized scale-to-zero designs for variable federal workloads

Containerized Delivery and CI

  • Docker-based isolated development environments pinned per target
  • Reusable GitHub Actions at hss-ci-actions for build, test, and deploy
  • Automated security scanning and dependency review on every build
  • Reproducible pipelines that keep a small team auditable and consistent
  • Documented handoff including architecture diagrams and runbooks

Blockchain and Agent-Payment Engineering

  • BitBooth multi-chain gateway live on Base mainnet settling real USDC
  • x402 protocol integration for agent-payable APIs and metered services
  • HSS Solidity work spanning AMM, settlement, access control, and bridging
  • XRPL classic ledger and XRPL EVM sidechain via Foundry and viem
  • Cross-chain deploys via the Axelar Interchain Token Service
Differentiators

Why HSS

Specific reasons a contracting officer or prime would route software, AI, cloud, or cybersecurity work to a certified small business like us instead of a generalist IT shop.

Certified SDVOSB Partner

We are an SBA-certified Service-Disabled Veteran-Owned Small Business and a Florida corporation, so awarding work to us counts toward small business and SDVOSB goals and qualifying requirements can move through set-aside or sole-source paths with far less competition.

Production Engineering Depth

We ship production systems across applied AI, cybersecurity, cloud, and multiple chains, with our payment gateway source public and MIT licensed for any reviewer to read. The depth is real and externally verifiable rather than a line on a slide.

AI-Augmented Delivery

We build on reusable systems we already own and operate, including our multi-agent engineering harness, the autonomous defensive research fleet, and HSS Credit Rating, which lets a certified small business scope and deliver focused builds in weeks rather than months without trading away rigor.

Public Lab, Not Slideware

Every capability on this page maps to working code a contracting officer can read and run. BitBooth runs in production on Base mainnet with its source MIT licensed, and our autonomous verifier is live at app.heinrichstech.com/agentic, so agencies can vet the engineering before award instead of after.

Flat-Fee Scoping

Engagements are scoped to a written fee against a defined deliverable and timeline, which keeps the work predictable and removes the hourly creep, billable discovery meetings, and surprise invoices that erode trust on a small contract.

Navy Mission Standard

Founder Derek Heinrichs served eight years in the United States Navy as an Interior Communications Electrician and Diver and is a service-connected disabled veteran who carries that same standard of accountability and discipline into every engagement.

Past Performance

Lab Portfolio

Every project listed below has working code a reviewer can read. None of these are federal contracts yet. As a newly certified SDVOSB we lead with internal and commercial reference implementations that transfer directly to federal work, which is the honest proof you can vet before award, and we are actively pursuing SDVOSB set-asides and SBIR opportunities.

Autonomous Defensive Research Fleet

Multi-Agent AI Engineering

A containerized fleet of nineteen specialized agent roles that runs defensive research autonomously. In its first twenty-four hours it produced 710 research documents across thirty crash-free runs, demonstrating the orchestration, isolation, and reliability a mission program needs from agentic systems.

Role
Sole Engineering Team
Output
710 docs, 30 crash-free runs
Status
Live internal system

HSS Security Lab

Defensive Security Engineering

An internal lab of twelve smart-contract vulnerability archetypes, each carried from a working exploit to a verified patch, paired with hss-sniffer, our custom Solidity static analyzer run across more than 776 production scans. Together they harden delivery before anything ships and stand as proof you can vet before award.

Role
Sole Engineering Team
Scope
12 archetypes, 776-plus scans
Status
Live internal lab

HSS Credit Rating

On-Chain Analytics System

An on-chain credit rating system that evaluates protocol risk and currently rates five protocols. It demonstrates data ingestion, scoring methodology, and the kind of repeatable analytical pipeline that transfers cleanly to federal risk and assurance work.

Role
Sole Engineering Team
Coverage
Five protocols rated
Status
Live internal system

BitBooth Gateway

Multi-Chain Payment Infrastructure

A multi-chain payment gateway for AI agents paying per API call, live in production on Base mainnet settling real USDC through the Coinbase CDP Facilitator with additional chains supported as settlement rails. The source is MIT licensed and available for federal reference or reuse, and @bitbooth/mcp-fetch is published on npm.

Role
Sole Engineering Team
Status
Live on Base mainnet, MIT licensed
Repo
github.com/Drock91/bitbooth-gateway

Arcanie Interchain Token Factory

Cross-Chain ERC-20 Deployer

Cross-chain ERC-20 token deployment tool built on Axelar Interchain Token Service, with XRPL EVM sidechain as the canonical home chain. Issues a single token that exists across connected networks without wrapped-asset inventory management. Demonstrates cross-chain bridge integration and deterministic contract deployment.

Role
Sole Engineering Team
Status
Live internal tool
Chains
XRPL EVM, Ethereum, Base via Axelar ITS

XRPL EVM AMM Reference

On-Chain AMM Implementation

Public reference implementation of an automated market maker on the XRPL EVM sidechain. Demonstrates Solidity smart contract design, AMM math (constant product), liquidity pool mechanics, and deployment on the XRPL EVM environment. Used internally as a baseline for engagements and as a public vetting artifact for evaluators assessing technical depth.

Role
Sole Engineering Team
Status
Live reference
Repo
github.com/Drock91/XRPL_EVM_AMM
Service Packages

Flat-Fee Offerings

Starting prices for the most common engagements. All scoped flat. Full breakdown on the services page.

XRPL App Build

$25k+

Two to six weeks. dApps, tokens, on-chain games, protocol work.

x402 Integration

$10k+

One to three weeks. Agent-payable API on existing services.

Cross-Chain Token Launch

$5k+

About one week. ERC-20 across EVM chains via Axelar ITS.

Custom Build

Quote

Scoped per project. Blockchain games, RWA, dApps, AI tooling.

Engineering Retainer

$5-10k/mo

Dedicated monthly hours, priority fixes and advisory.

Codes & Size Standards

NAICS and PSC Codes

Registered codes for federal procurement searches. Small Business status applies across all listed NAICS.

NAICS Codes

Small Business
541511Custom Computer Programming Services (Primary)
541512Computer Systems Design Services
541519Other Computer Related Services
518210Computing Infrastructure Providers, Data Processing, Web Hosting
541330Engineering Services
541715R&D in Physical, Engineering & Life Sciences

Product Service Codes

IT & Engineering
DA01Business Application / Application Development Software
DA10IT Strategy Planning Services (Labor)
DE01Cloud Computing Services
DJ10Artificial Intelligence and Machine Learning Services
DG10Integrated Hardware / Software / Services Solutions
R425Engineering and Technical Services
Company Data

Contact and Registrations

Entity

Legal Name
Heinrichs Software Solutions Company
Entity Type
Florida corporation
Founded
2026
Owner
Derek Heinrichs (service-connected disabled Navy veteran)
Location
Florida, United States

Federal IDs

UEI
SXG3SA9JMM47
CAGE Code
1ZSB5
SAM.gov
Active
SBA VetCert
SDVOSB certified, June 4 2026 through June 3 2029
Primary NAICS
541511

Need the printable version? Contracting officers and prime contractors can request a current PDF of this capability statement by email, or review this page directly, which is the canonical version.

Request PDF Contracting Inquiry