§00 · projects

A collection of things I've built.

Real engineering - not a skills wall. Each card opens a full case study: the problem, the approach, what broke, what I learned.

Distributed Systems · Incident Response · 2026

Vellum

Distributed signal & incident-response system. 10k signals/sec at p99 < 2ms over HTTP + gRPC, atomic Redis Lua debounce gives 100× alert-noise reduction, state-machine lifecycle on Postgres SERIALIZABLE transactions.

Redis
Golang
gRPC
PostgreSQL
MongoDB
TimescaleDB
Next.js
Docker Compose

Supply Chain Security · 2026

Container Provenance

End-to-end GitOps container provenance pipeline using Sigstore + K8s admission webhooks. Stops npm/registry-style supply-chain attacks via keyless signing - stolen tokens can't publish trusted artifacts without CI OIDC identity.

Sigstore
Cosign
Kubernetes
ArgoCD
GitHub Actions
Helm
Golang

Cloud Migration · 2025

Swiftcart

Monolith to event-driven AWS migration. Zero-trust dual-VPC + CQRS over SNS → SQS fan-out, Lambda (arm64) replacing EC2 polling, hardened with IAM instance profiles + CloudTrail.

Lambda
SNS
SQS
Transit Gateway
Private Link
EFS
EBS
CloudWatch
CloudTrail
Docker Compose

Server Monitoring · 2026

Linux Monitoring System

Bash-only Linux server monitoring + maintenance suite. Real-time TUI dashboard, threshold alerts, auto-heal failed services, scheduled patching, and log rotation - zero external runtime deps.

Bash
Linux
systemd
cron

Source code