Thoughts

行业共识是 Human-in-the-Loop。但当 Agent 连续自主运行数小时，逐步审批反而成了瓶颈。Human-in-the-End 不是移除人类，而是将人类的角色从操作者升级为拥有者。

The industry consensus is Human-in-the-Loop. But when agents run for hours autonomously, approving every step becomes the bottleneck. Human-in-the-End isn't about removing humans—it's about upgrading their role from operator to owner.

FastAPI won't exit with one Ctrl+C? Discover three hidden resource management traps—aiosqlite leaks, thread chaos, and asyncio.run() pitfalls.

Production down with 'no healthy upstream' but staging works? Your GKE Gateway API health check is misconfigured. Step-by-step fix inside.

After building CI/CD pipelines with GitLab CI, Jenkins, and GitHub Actions for years, I thought deployment was just another pipeline step. Then Flux CD showed me the fundamental difference between Push and Pull models—and solved problems I didn't even know I had.

Google's nano banana (gemini-2.5-flash-image-preview) promised breakthrough image generation, but family photos revealed critical limitations. Following Google's official prompting guide, I evolved through three technical approaches—from complex prompts to description-first to line art bridging—discovering how to work with AI model strengths rather than against them.

Paul Graham 关于创业早期必须亲力亲为的经典指南。从 Stripe 的「Collison 安装法」到 Airbnb 的挨家挨户推广，了解为什么成功的创业公司都是创始人手动「推动」起来的，而不是自然「起飞」的。

Encountering 'nginx.ingress.kubernetes.io/server-snippet annotation cannot be used' errors after upgrading ingress-nginx? Here's how to fix the breaking changes in version 1.9 with proper Helm configuration and security considerations.

从 "by user" 到 "by client" 架构的演进过程。深入分析 Sealbox 多客户端架构设计中的技术权衡，探讨零信任安全模型、Envelope Encryption 实践，以及如何在团队协作与安全性之间找到平衡点。

How we evolved from "by user" to "by client" architecture in Sealbox. A deep dive into the technical tradeoffs of zero-trust security models, Envelope Encryption implementation, and balancing team collaboration with security in secret management systems.

Deployed your Astro site on Cloudflare Pages only to discover mysterious 308 redirects killing your SEO? I spent hours chasing the wrong solution. Here's what actually fixes the trailing slash problem and why Astro's trailingSlash config won't help you.

Learn Rust builder pattern with derive_builder crate. Step-by-step tutorial from complex constructors to clean API design. Includes real code examples and best practices.

Traditional note-taking apps like Notion and Obsidian create too much cognitive overhead. I'm building Kira—an AI assistant that continuously captures context from your digital environment and amplifies your thinking through conversation. Learn how it evolved from a reading app idea into something completely different.

After struggling with HashiCorp Vault's complexity for a simple API key storage task, I built Sealbox—a lightweight, single-binary secret manager in Rust with end-to-end encryption, SQLite storage, and zero cloud dependencies. Here's the story and technical decisions behind it.