Infrastructure engineer & offensive security practitioner. Building and defending a 55-service self-hosted homelab (55 CTs + 1 VM, 4 Proxmox nodes) — with Claude as AI partner.
pixelium.win | blog | contributions | lab
Currently running the AIops v2 trio: OpenFang sentinel (8 Guardian crons) → MQTT → Hermes Telegram triage (3 crons) → SSH spawn Claude CT 196 for ephemeral remediation. Plus PentAGI (autonomous pentest, pve3 on-demand) and RAPTOR (source-code audit, distrobox). Grafana SOC dashboard with 14 panels, LiteLLM hub with 4-provider failback (MiniMax → Gemini → Groq → OpenRouter), VictoriaMetrics scraping 5 targets, Loki 30-day retention.
Infrastructure : Proxmox · Ansible · Traefik · CrowdSec · Wazuh · Headscale · step-ca AI Agents : OpenFang · Hermes · Claude CT 196 (spawnable) · PentAGI · RAPTOR · MiniMax M2.7 · Ollama (RTX 3090) Cloud : Cloudflare Workers · R2 · KV · D1 · Workers AI Code : Rust · Python · Bash · TypeScript Web : Astro · Pure CSS · Cloudflare Workers Monitoring : VictoriaMetrics · Grafana · Beszel · Patchmon · Loki · Healthchecks · ntfy Orchestration : LiteLLM (4-provider failback) · Dagu · n8n · MQTT (Mosquitto) · 11 automated crons (8 Guardian + 3 Hermes)
- grafana/alloy#6108 — docs: add systemd journal example to Promtail migration guide. The guide only covered file-based scrape configs; added the journal pattern that's used on most Linux hosts.
- wazuh/wazuh-documentation#9512 — warn that wazuh-agent conflicts with wazuh-manager on the same host. The agent package silently uninstalls the manager via dpkg
Conflicts/Replaces— hit the bug in production, fixed the install doc with a warning admonition. - requarks/wiki#7986 — bug report:
render IS NULLcauses silent HTTP 500 with no recovery path. Minimal repro + root cause (server/models/pages.js#L952-L969) + suggested fix. - ublue-os/homebrew-experimental-tap#309 — first cask for
claude-code-linux, with a livecheck that tracks the npm registry instead of the slower Google Cloud Storage endpoint.
- pixelium.win — Bilingual portfolio (Astro + Cloudflare Workers), 13 pages EN+FR, live KV stats, tri-state service status, SessionImprint (each page signed with its own commit SHA), interactive topology map (62 nodes), Workers AI chat
- blog.pixelium.win — 24 articles on homelab ops, AIOps, self-hosting, incidents, and OSS contributions (three formats: dossier / pr-notes / incident)
- homelab-scripts — monitoring & backup scripts (cert-check, http-check, pve-status, loki-query, pbs-backup)
- claude-code-cybersec-skills — 31 cybersecurity slash commands for Claude Code (17 offensive + 14 defensive)
- kv-push — Push 15+ homelab metrics (services tri-state, Proxmox 4 nodes, Claude usage stats) to Cloudflare KV for live dashboards
- pbs-autobackup — Proxmox Backup Server orchestration with Wake-on-LAN
- cert-check — TLS certificate expiration monitor for self-hosted services