Skip to content
View 9t29zhmwdh-coder's full-sized avatar

Highlights

  • Pro

Block or report 9t29zhmwdh-coder

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
9t29zhmwdh-coder/README.md
RayStudio

Rafael Yilmaz

πŸ‡©πŸ‡ͺ Deutsche Version

About

ICT Infrastructure Engineer at novosys.ch, building local-first developer tools in Rust, Swift, and Python. I run a hands-on AI practice: benchmarking local models against Claude and Copilot to find where a lightweight model is reliable enough for everyday tasks like explaining logs, bugs, and mail, and where cloud capability earns its place. Every repo in this portfolio follows the same published engineering standards.

Currently Building

  • NetSweep: network storage audit and cleanup for NAS, SharePoint, and DFS, ships a signed Windows installer.
  • MailPilot: local AI email organizer for macOS, on-device classification, nothing leaves the machine.
  • LifePlanner: fully offline AI life planner, events and tasks extracted from plain text.
  • BugRadar: live log and metric watcher, groups anomalies into incidents with AI root-cause analysis.

Pinned Projects

Project What it does
private-model-orchestrator Deploys and manages on-device Core ML models across Apple device fleets
NetScanX Cross-platform network discovery and diagnostics CLI, asset inventory, drift detection
entra-access-graph-engine Maps Entra ID privilege graphs, detects escalation paths and hidden admin chains
SwiftAgent Dependency-free Swift framework for running local LLM agents
CleanFlow AI-powered file organizer with rule-based cleanup automation
engineering-standards The security-first standards that govern every repo in this portfolio

See all repositories for the full list.

Tech Focus

  • Languages: Rust, Swift, C#, Python, TypeScript
  • Platforms: Apple Silicon (macOS), Windows (.NET 8 / WPF), Microsoft 365, Azure
  • AI: Local inference (Ollama, llama.cpp), Claude Code, GitHub Copilot
  • Practices: Semantic Versioning, enforced branch protection, security-first CI/CD

Security Posture

Every active repository runs GitHub CodeQL static analysis, Dependabot vulnerability alerts, and accepts vulnerability reports exclusively via GitHub Security Advisories, never public issues (details in engineering-standards, "Automated Security Signals"). Example, live on two pinned repos:

entra-access-graph-engine: CodeQL CleanFlow: CodeQL

How This Portfolio Works

repo/
β”œβ”€β”€ src/                  the tool itself
β”œβ”€β”€ CLAUDE.md              AI-pair-programmer instructions (from engineering-standards)
β”œβ”€β”€ ROADMAP.md             what's shipped, what's next
β”œβ”€β”€ SECURITY.md            vulnerability reporting, security design
└── .github/workflows/     CI: lint, test, security audit, release

Every repo follows the same engineering standards: PR-only merges with enforced branch protection, Semantic Versioning with one house rule stricter than the spec (v1.0.0 is reserved for a genuinely installable or runnable product, not just "feature-complete in the source"), and a risk-based merge policy, low-risk changes are self-merged and reported, anything touching business logic or security waits for a deliberate review.

Contact


All software repos are open source (MIT license); engineering-standards is documentation, licensed under CC BY 4.0. Issues and PRs welcome.

Pinned Loading

  1. agent-governance-console agent-governance-console Public

    Enterprise governance and audit toolkit for AI agent workflows. Integrates with Azure Monitor, Microsoft Sentinel and Entra ID. Built with Rust and Axum.

    Rust

  2. entra-least-privilege-analyzer entra-least-privilege-analyzer Public

    Read-only Rust CLI for analyzing Entra ID privilege configurations, detecting over-privileged accounts, role overlap and PIM gaps

    Rust

  3. azure-policy-drift-detector azure-policy-drift-detector Public

    Read-only Rust CLI to detect Azure Policy drift across subscriptions, prioritize non-compliant resources and generate remediation reports

    Rust

  4. github-actions-security-sandbox github-actions-security-sandbox Public

    Read-only Rust CLI for static analysis and attack simulation of GitHub Actions workflows

    Rust

  5. azure-cost-forecasting-engine azure-cost-forecasting-engine Public

    Analyze and forecast Azure costs using historical consumption data. Detects RI candidates, anomalies and growing services.

    Python

  6. BugRadar BugRadar Public

    AI-powered real-time diagnostics and monitoring tool built with Rust and Tauri.

    Rust