Seven Generations Thinking in Systems Design
Don't optimize for the present at the cost of what comes after. How an Indigenous design principle reshapes the questions we ask when building infrastructure meant to last.
Back
Writing
Blog
DevSecOps, Kubernetes security, edge infrastructure, and AI-driven automation.
The Stewardship Node: What a Community Looks Like When You Build It Like Infrastructure
The full picture: phased build plan, power architecture, food stewardship IoT, Kevin's role, and why treating a community like a production system changes what you build.
The Network Layer of a Community: Nomad Edge at Human Scale
Same principles as Nomad Edge, different physical layer. How WireGuard mesh, VLAN segmentation, and offline-first design apply when your edge nodes are residential units on a rural property.
DevSecOps for Physical Systems: What Changes When Your Workload Has Legs
Software vulnerabilities cause outages. In physical robotics, they cause collisions. The security posture, update pipeline, and threat model all change when your workload operates in the real world.
Speccing a Workstation for Robotics DevSecOps: Decisions, Not Defaults
Every component has a reason that traces back to the actual workload. CUDA requirements, power envelope constraints, and the Deploy-Prove-Destroy logic applied to hardware.
AI in the Cloud: What Business Owners Need to Understand About Finance-Driven Infrastructure
Cloud-based AI changes the financial architecture of a business — what you can observe, what you can act on, and how fast. The most important shift isn't in the product; it's in the operating layer.
The Machine Comes First: Why I'm Building a Workstation Before I Build a Community
Before laying out the full Stewardship Node architecture, the case for why a dedicated workstation is the architectural choice — not just the practical one.
Identity Systems Weren't Built for AI Agents — and That's a Security Problem
AI agents authenticate programmatically, act continuously, and hold permissions that can combine in ways no one anticipated. Here's what that means for your identity and access management architecture.
Why AI Belongs in Your Active Security Monitoring Stack
AI doesn't solve the alert volume problem by being smarter about which alerts matter. It solves it by changing the relationship between alert volume and analyst capacity.
How AI Streamlines Business Expense Management
AI fixes expense management by removing the parts that shouldn't require human attention — categorization, policy compliance, anomaly detection — so finance teams focus on judgment, not receipt chasing.
Forecasting ROI for Your Business with AI Agents
How to build a defensible ROI forecast for AI agent adoption before you've committed to anything, using the same discipline you'd apply to any infrastructure investment.
SNS vs Kinesis, Nomad vs EKS: The Cost Architecture of Rural Edge Computing
Why the "cheaper" choices aren't compromises — they're the right answers when you're building for environments hours from the nearest city.
Post-Mortem: Warden vs Simulated Shell Spawn — Detection to Auto-Patch in 3 Seconds
A structured SRE post-mortem of the Warden security pipeline proving end-to-end Kubernetes threat detection and automated remediation on a live AKS cluster.
Why Policy Lives in Code: Building OPA Rego Access Control for a Multi-Tenant AI System
Prompt-based access control isn't access control. Here's how Covenant puts OPA Rego as a hard gate between JWT identity and Claude — and why the distinction matters.
Offline-First by Default: Building IoT Telemetry for Environments Where the Network Fails
Standard IoT pipelines assume connectivity. Watershed doesn't. Here's how a SQLite buffer, async reconnect loop, and rolling anomaly detection handle rural edge reality.
The Ghost in the Machine: Why AI is the New Currency of Intent
AI is no longer just a chatbot feature set. From capability stacks to agentic action — how to understand the progression from Deep Learning to Gen AI to autonomous agents, and where to start.