Hi there 👋

I'm an SRE & Platform Engineer with roots in Linux system administration. I build tools in Go, Python, and Bash to solve infrastructure problems — from cloud-native IPAM to disconnected environment tooling.

Currently working on

• 🛩️ airgap — CLI tool for syncing, exporting, and importing content for air-gapped OpenShift environments (Go)
• 🌐 CloudPAM — A lightweight, cloud-native IP Address Management solution for AWS/GCP (Go + TypeScript)
• 🕸️ grapheon — Network intelligence platform that aggregates scan data (nmap, netstat, arp) into graph visualizations (Python/FastAPI + React)
• 📋 WOTSapp — Military training communication platform for instructors and students (React + Firebase)
• 🖧 network-trainer — Interactive network topology training tool (JavaScript)

Popular & Featured Projects

• ⭐ salt-workspace — Salt configuration management workspace (16 stars)
• 📦 epel-offline-sync — Sync EPEL repos for disconnected environments (Python)
• 🔄 ocpsync — Sync artifacts for OpenShift in air-gapped environments (Go)
• 📥 dlserver — Download server written in Go
• 🎤 bsides-if-2022 — BSides Idaho Falls 2022 conference talk materials

Security Research

Discovered hardcoded secrets vulnerabilities in Red Hat's Mirror Registry, resulting in 4 CVEs:

• CVE-2024-3622 — Plaintext CSRF secret key
• CVE-2024-3623 — Default database secret key in plain-text
• CVE-2024-3624 — Database user and password stored in plain-text
• CVE-2024-3625 — Redis password stored in plain-text

Read more: CVE disclosure process writeup

Upstream Contributions

• quay/mirror-registry — 4 merged PRs fixing secrets handling and security issues
• keycloak/keycloak — Operator documentation and TLS configuration fixes
• openshift/oc-mirror — Code cleanup contributions

Recent Activity

• airgap — Multi-arch container images, CI release pipeline, binary publishing, changelog-driven releases
• CloudPAM — SSO/OIDC provider integration, auth hardening, soft-deletes, SQLite connection pooling, Chainguard containers
• grapheon — Live system status indicators, fcose layout tuning, demo mode access controls, semver release checker
• network-trainer — UI connection polish, Cloudflare Pages deployment, OpenTofu infrastructure
• WOTSapp — Active development on instructor/student training workflows

Ask me about

• Observability (metrics, logs, traces)
• Salt, Ansible, and configuration management at scale
• Disconnected/air-gapped environment challenges
• OpenShift & container orchestration

Connect

• 📝 blog.badgerops.net
• 🐘 mastodon.social/@badgerops
• 🐦 @badgerops

GitHub Stats

Stats are refreshed weekly via GitHub Actions using lowlighter/metrics. Languages are measured by lines of code.

Tech Stack