Engineering posts on exactly what we built, why we built it, and what we measured. Hardware: Arch Linux, 20-core workstation, RTX 3060, NixOS packages, single local node. No marketing. No benchmarks we did not run.
The honest accounting: 870 MB of control plane to run three services, base64 bearer tokens dressed up as auth, and 214 lines of YAML to route HTTP. We replaced it with three C23 binaries. Here is the component-by-component breakdown and what the numbers actually looked like.
Read post →How we replaced Kubernetes kubeconfig tokens with ML-DSA-65 post-quantum signatures. Every SUBMIT and EVICT command is signed on the operator machine, verified by the Conductor. The signing key never touches the wire. Built on liboqs 0.15, tested end-to-end on a single workstation running Arch Linux.
Read post →We built a rolling update system in a single pthread. Launch new-generation replica, wait 8 seconds, kill old-generation replica — one at a time, no probe configuration, no strategy objects. Here is the rollout_thread implementation and the verified end-to-end test we ran on our local cluster.
Read post →We built SovereignMarket — a full Angular marketplace backed by 9 Rust microservices (product, inventory, search, cart, order, user, review, recommendation, frontend) — and orchestrated it across 3 QEMU nodes with skr8tr. 500 products. 1.2s deploy time. No Docker. No Helm. No YAML. Here is the complete architecture, manifests, and numbers.
Read post →skr8tr_ingress: a reverse proxy that resolves backends dynamically via UDP Tower lookup on every request. Longest-prefix route matching, MAX_RETRY=3 failover, X-Forwarded-For injection, bidirectional select() proxy loop. Built, compiled clean, and verified end-to-end with curl on the same Arch Linux workstation we develop on.
Read post →