Categories

Jacar categories — explore the topics A rocket whose eyes follow your cursor.
Methodologies

AI-integrated DevOps tools in my daily flow

After fourteen months testing AI-integrated DevOps tools across several teams, the stack that stays is small: Claude Code, Cursor, and Aider for code; PagerDuty AIOps, Datadog Bits AI, and Grafana Assistant for alert triage; and OpenTofu with OPA for infrastructure generation bounded by policy rules.

Tools

Dokku: the small PaaS that never dies

Dokku lleva más de una década como el PaaS mínimo de código abierto preferido por quien quiere la experiencia Heroku sin la factura. En 2025, con Heroku renaciendo bajo Salesforce y con Kubernetes dominando, sigue ocupando un nicho sorprendentemente saludable.

Technology

Fly.io: deploying globally without complicating your life

Fly.io has spent years selling the idea that deploying an application across several regions should be almost as simple as pushing an image and writing one config line. After several real projects on the platform, here is an honest read on what it delivers, what is missing, and who it is worth choosing over more classic options.

Architecture

Coolify: a self-hosted Vercel on your own infrastructure

Coolify delivers a Vercel- or Heroku-like experience on your own servers: automatic HTTPS, managed databases, and branch previews without per-build or bandwidth fees. After several months using it on production VPS, here is where it shines, where it still has rough edges, and which teams will genuinely benefit from it.

Tools

Home lab: self-hosted lab as a testing ground

A home lab is a self-hosted services lab, at home or on a VPS, where you practice real system administration: reverse proxy, centralized authentication, monitoring with Prometheus and Grafana, and backups verified with Restic. A second-hand mini PC with 16 GB of RAM is enough for thirty or forty containers, and what you learn transfers directly to professional work.

Artificial Intelligence

AI-assisted code review: an honest adoption story

Two years running AI-assisted code review in a real team leave a clear balance: AI catches mechanical oversights well and writes useful pull-request summaries, but it struggles with architectural judgment and produces many false positives on subtle bugs. The single decision that helped the most was not blocking merges on its automated comments.

Technology

Vector: A Log Agent Worth Trying

Vector is the Datadog observability agent, written in Rust with its own transformation language VRL. Typically 30-100 MB memory, handling logs, metrics, and traces from dozens of sources. The right choice when pipelines are too complex for Fluent Bit and a modern alternative to Logstash.

Technology

Docker Scout: Vulnerabilities from Build to Registry

Docker Scout continuously scans container images against CVE databases including NVD and ecosystem-specific advisories, and recommends base-image changes to remove vulnerabilities. Built into Docker Desktop and Hub, it competes with Trivy, Grype and Snyk. Best fit for teams already running end-to-end on the Docker ecosystem.

Technology

Grafana Beyla: Auto-Instrumentation Without Touching Code

Grafana Beyla is an eBPF agent that automatically instruments existing applications without touching their code: it observes kernel syscalls and generates OpenTelemetry traces and RED metrics for services written in Go, Java, Python, Node, and Rust. It gives broad, immediate coverage, but it does not replace the manual SDK for business metrics and internal logic.

Methodologies

Ansible and Pulumi: Two Automation Philosophies Coexisting

Ansible and Pulumi solve different problems and are not competitors: Ansible manages configuration inside a server (packages, users, services); Pulumi defines, with real code in TypeScript, Python, Go or .NET, which cloud infrastructure exists (VPCs, instances, databases). Combining them, with Pulumi's dynamic inventory feeding Ansible, is the most productive pattern for automating a stack that includes servers in the cloud.

Tools

Fluent Bit: Lightweight Log Collection in Production

Fluent Bit is the CNCF's lightweight log collector: a ~1.5 MB C binary that rarely tops 30 MB of memory in production. It beats Promtail, Vector, and Filebeat when several destinations or resource-constrained nodes are in play, thanks to a pipeline of inputs, parsers, filters, and outputs that stays easy to reason about and debug.

Tools

Semaphore: Ansible UI When the Team Grows

Semaphore is the open-source Ansible web UI that solves the four scaling problems: audit trails, role-based permissions, execution history, and centralised secrets. It consumes ~500 MB versus AWX at ~4 GB. The pragmatic choice for mid-size teams that have outgrown running playbooks from a shared terminal.

How to Install

How to Install Traefik on Docker Swarm with Certificates

Traefik is the default reverse proxy for Docker Swarm: automatic service discovery via labels, Let's Encrypt certificates with DNS challenge, and reusable middleware chains. This guide covers the overlay network, static and dynamic configuration, certificate storage for multi-manager setups, and the production decisions that actually matter.

Software Development

Zed: A Modern Editor Built for Collaboration

Zed is the editor built by Atom's creators, rebuilt in Rust with a native GPU-rendering UI framework and no Electron. It delivers ~8 ms latency, real-time collaboration with integrated voice and shared cursors, and an open license (GPL v3 + Apache 2.0). A serious VS Code alternative for pairs and small teams.

Software Development

Cursor: The Editor Built Around AI

Cursor is a VS Code fork that puts artificial intelligence at the core of the editor instead of bolting it on as a plugin. It offers inline completion, a chat that understands full project context, and Composer, multi-file editing from a short brief. The Pro plan costs $20 a month and it competes directly with GitHub Copilot.

Software Development

Corporate Low-Code: Retool and Appsmith for Internal Tools

Retool and Appsmith cut internal tool development time from weeks to days. Retool leads the commercial SaaS market with polished components and enterprise permissions; Appsmith brings open source self-hosting at low or zero cost. Low-code works for dashboards, forms, and simple workflows, and breaks on complex logic or highly custom interfaces.

Methodologies

Flux CD vs ArgoCD: Which to Choose for Your Platform

Flux CD and ArgoCD are the two CNCF-graduated GitOps tools for deploying to Kubernetes with Git as the source of truth. ArgoCD offers a centralised visual UI that manages several clusters from one instance, while Flux is a set of Kubernetes-native controllers with built-in image automation. Neither choice is wrong: it depends on your team and use case.

Tools

Podman: Containers Without a Daemon or Root

Podman is the Docker alternative with no central daemon and no root privileges required. Each container runs as a direct child process of the launching user, with rootless support since version 1.0 in 2019. If a container escapes, it does not gain host root. When Podman makes sense and what real differences to expect.

Technology

Trivy and Grype: Container Image Scanning in CI

Trivy and Grype are the two leading open-source tools for container image scanning in CI/CD pipelines. Both detect CVEs in OS packages and language dependencies with less than 5% coverage difference. Trivy stands out for IaC scanning; Grype natively integrates the SBOM workflow with Syft.

Technology

The Grafana Stack: Loki, Tempo, and Mimir for Open Observability

The Grafana stack combines three open source projects: Loki for logs, Tempo for traces, and Mimir for metrics. All three keep data in object storage (S3/GCS) with a minimal index instead of indexing everything like Elasticsearch, which cuts cost sharply at high volume and lets you correlate metric, log, and trace from a single Grafana panel.

Technology

nerdctl: A Lightweight Docker Alternative Over containerd

nerdctl is a Docker-compatible CLI that talks directly to containerd, the standard Kubernetes runtime since dockershim was removed in 2022. It adds rootless support by default, encrypted images with ocicrypt, lazy-pulling, and native CNI. It fits best where containerd already runs, though Docker Engine still wins on advanced Compose and Swarm.