I build cloud-native systems engineered for scale, reliability, and security β with a strong focus on AI infrastructure and DevSecOps.
Working across Kubernetes, Terraform, CI/CD, cloud platforms,Agentic Systems. I translate complex ideas into production-grade systems designed for real-world workloads.
Currently exploring the intersection of security, AI systems, and distributed cloud infrastructure, where resilience and intelligence converge with optimal resource utilisation.
- Cloud-native system architecture
- AI infrastructure engineering
- Secure software supply chains
- Observability, reliability, and runtime resilience
π€ KubeOps-AI β Agentic AI for Kubernetes Operations
Cloud-native autonomous system for Kubernetes troubleshooting using local AI, observability tools, and secure execution pipelines.
It analyzes cluster issues, reasons about root causes, and safely suggests remediations through a human-approved workflow.
π§ Core Workflow
- Detects issues using K8sGPT
- Reasons with local LLMs (Ollama + Gemma)
- Retrieves historical incidents via ChromaDB
- Generates safe kubectl remediation commands
- Executes only after human approval via dashboard
βοΈ Architecture
Frontend: React + Vite (Nginx-served dashboard)
Backend: FastAPI orchestration layer (agent-based system)
AI Layer: Ollama (local inference) , Gemma:2b
Memory: ChromaDB (incident recall + context)
Tools: K8sGPT + kubectl execution engine
π‘οΈ Safety Model
- Guardrails prevent destructive operations
- Human-in-the-loop approval before execution
- Fully local inference (no external AI APIs)
- RBAC-based cluster access control
- Auditability via stored incident history
π Focus Areas
- Agentic AI for infrastructure operations
- Local LLM deployment in Kubernetes
- Memory-augmented troubleshooting systems
- Cloud-native AI system design (GKE / K3s)
π Repository
https://github.com/barbaria888/KubeOps-AI
A cloud-native backend system for AI inference, designed for scalability, reliability, and real-time interaction.
- π WebSocket-based streaming API for real-time LLM responses
- π§ CPU-based LLM inference using Ollama (TinyLlama)
- π Kubernetes service discovery and internal networking
- βοΈ CI/CD-driven Docker build and deployment pipeline
- π οΈ Deep debugging across containers, networking, and runtime layers
A production-grade DevSecOps + GitOps pipeline with strong security and quality enforcement.
- π Code Security β CodeQL (SAST): Detects vulnerabilities (injection, secrets, auth flaws, etc.)
- π§Ή Linting β Code Quality Gate: Enforces clean, maintainable code
- π§ͺ Automated Tests: Prevents regressions across services
- π³ Docker Build: Secure, reproducible container builds
- π‘οΈ Container Security β Trivy Scan: Detects OS/package vulnerabilities & CVEs
- π¦ Artifact Distribution: Pushes verified images to Docker Hub
- Security embedded into CI/CD pipelines
- Shift-left vulnerability detection
- Secure software supply chain (SCA + SBOM)
- GitOps-based deployments with declarative control
- End-to-end pipeline gating for production readiness
- βοΈ Deploying AI workloads on cloud (GCP focus)
- β‘ Exploring GPU vs CPU inference tradeoffs
- π Strengthening runtime and API security layers
- π Moving toward fully automated, scalable AI platforms
π Repositories:
π https://github.com/barbaria888/Ollama-Chatbot-deployment
π https://github.com/barbaria888/Educonnect-D
Β
- ποΈ Google Cloud β Architecting with GKE, Terraform, AI Infrastructure (in progress)
- π IBM β Application Security for Devs & DevOps (in progress)
- 𧱠AWS β Cloud Essentials & Practitioner Prep
- π§Ώ Oracle Cloud β OCI Foundations Associate
- π¦ CNCF Stack β Kubernetes, Argo CD, OpenShift, Tekton
π Continuous learning through hands-on labs, real systems, and applied projectsβnot just coursework.
Β
βThe number 1 skill set is flexibility and just knowing how things work and map that to real-world context β¦ and that makes you clever.β β Kelsey Hightower
OBSERVE IN SILENCE Β· BUILD IN DEPTH Β· STRIKE WITH PRECISION
Engineered beneath the surface. Proven where it matters.