██████╗ ██╗ ██████╗ ██╗ ██╔══██╗ ██║ ██╔══██╗ ██║ ██║ ██║ ██║ ██║ ██║ ██║ ██║ ██║ ██║ ██║ ██║ ██║ ██████╔╝ ██║ ██████╔╝ ██║ ╚═════╝ ╚═╝ ╚═════╝ ╚═╝
DevOps / Platform Engineer · Kubestronaut · didibe.dev
I build and operate Kubernetes infrastructure, cloud-native platforms, and automation pipelines.
Currently exploring Internal Developer Platforms w/ Backstage, Crossplane & Supply Chain Security (trivy hack)
| Project | Description |
|---|---|
| practical-aks | Guided AKS build: blank Azure subscription → Workload Identity-secured, Trivy-scanned cluster running a live LLM proxy. CI/CD pipeline includes supply chain hardening: SHA-pinned Actions and harden-runner network egress control - the kind of attack the March 2026 Trivy compromise demonstrated. |
| gke-labs | 18-exercise GKE lab covering Cloud SQL, Memorystore, Terraform, Helm, CI/CD, observability, Temporal workflows, and incident response. |
| kratix-platform | Self-service IDP: Kratix + Backstage + Flux on k3s, deployed from scratch with one command. |
| Tokenguard Operator | Kubernetes operator scoring ServiceAccount least-privilege by comparing RBAC grants against audit log usage. Detects external IP token abuse. Go, Kubebuilder, controller-runtime. |
| NinjaDevOps | Interactive DevOps challenge platform - 80+ real-world challenges covering Linux, Docker, and Kubernetes (CKAD, CKA, CKS) in live GCP VMs. Broken servers, misconfigs, k8s emergencies - all from a browser terminal. |
| Sovereign-Mesh | Multi-tenant AI PaaS on Hetzner. Private RAG enclaves (vLLM, Qdrant, TEI) on a zero-trust K3s cluster with CKS-grade isolation and GitOps via ArgoCD. |
Ongoing embedded contractor for a German eCommerce agency - production RAG pipelines (AWS Bedrock Knowledge Bases) and n8n automation across their content, SEO, and operational workflows.
Kubernetes & Orchestration
GitOps & IDP
Cloud & Infra
AI, Workflows & Automation
Security
AWS-SAA · CKA · CKAD · CKS · KCNA · KCSA · Kubestronaut 🎖️
Show older experiments
- youtube-channel-intelligence - Serverless YouTube monitoring + AI analysis on GCP
- k0sdev-lab - 2-node k0s cluster on Hetzner via Terraform
- terraform-aws-chatops-site - Deploy static sites by texting a Telegram bot
- content-machine - Serverless AI video generator on AWS Lambda
- tf-telegram-serverless-transcription-aws - Voice-to-text via AWS Transcribe
- insta-lead-hunter-ai - AI-enhanced Instagram lead qualification
- youtube-medium-article-agent - Automated video-to-article pipeline
- youtube-comment-classifier-mlops - MLOps pipeline with FastAPI + K3s
- tcp-hijacker-classic - Educational TCP/IP security tool