// shipped

Projects

Real things, deployed, running today. No roadmap items, no vaporware, no "coming soon". Each one started as a problem on this stack and ended as something that other operators can use or read about.

  1. sovereign-mcp

    mcp-server

    A Streamable-HTTP MCP server backing every article and tool on this site. Four tools (search_blog, get_article, list_tags, diagnose_sglang). Live at mcp.sovgrid.org/self-hosted-ai. Listed on the official MCP registry, Smithery 100/100, Glama, awesome-mcp.

    live endpoint article

  2. Sovereign AI Grid Insights

    analytics

    A public, JSON-LD-backed dashboard that aggregates 30-day MCP tool calls, blog views, and distinct external agents from raw Caddy access logs: no JS pixel, no cookies, no third-party tracker. Filters self-traffic by CIDR, dedupes cloud-IP rotations, and identifies distributed scraper clusters by UA-over-many-/24s signature (one UA from many networks = bot; many UAs from many networks = real viral).

    live methodology self-traffic story

  3. Content quality pipeline

    editorial

    A scoring system that gates every article against style-specific thresholds (best-practice / werthaltige-code-beispiele / conclusion / smart-infotainment), enforces an anti-AI stylometry pass (em-dash penalty, uniform-list penalty, sentence-length-stdev reward), and rejects fabricated facts via factcheck.py before deploy.

    quality gate story

  4. Hero & caricature image pipeline

    image-gen

    FLUX.1-schnell on ComfyUI, locally on the DGX Spark. Generates hero images and caricatures per article from auto-derived prompts, then converts to WebP and routes through an interactive rating step (1–5) before publish. Backfilled across all 88 articles.

    image-pipeline article

  5. Podcast Studio (Voxtral → MP3)

    tts

    End-to-end CLI: select articles → Mistral-written dialog (cipherfox + hexabella personas) → Voxtral-4B TTS per turn → ffmpeg mix with intro jingle, music-duck, loudnorm to −16 LUFS. The Voxtral V6 ceiling led to a documented pivot to spike VibeVoice / Higgs Audio v2 / IndexTTS-2.

    pivot rationale first VibeVoice spike

  6. sovgrid.org (this site)

    astro+caddy

    Astro 6 + Caddy on a no-KYC FlokiNET VPS. Build pipeline self-heals quality signals, runs an axe-core a11y gate on every deploy, and pushes the regenerated knowledge-base to the MCP server in the same script.

    Floki VPS setup Astro migration

  7. vps-healthcheck

    ops

    Twelve-check daily audit of a remote VPS over SSH: reboot flag, security updates, failed units, UFW, fail2ban, disk, memory, OOM history, LE-cert expiry, container set, optional freshness file. One bundled notification push per run, structured JSON sidecar. Single SSH session for the whole audit, exit 0/1/2 for cron. The README walks through why this is the right size for a one-VPS operator versus Prometheus / Netdata / Uptime Kuma.

    github

  8. Sovereign Qwen (OpenWebUI custom model)

    rag

    Qwen3.6-35B-A3B-PrismaQuant on vLLM, fronted by OpenWebUI with a sovereign-kb knowledge collection (ten cross-project markdown files), SearXNG web search, and the sovereign-ai MCP server exposed as OpenAPI tools via an mcpo bridge.

    overbuilding article

  9. Upstream contributions

    fixes

    Bugfixes and config patches sent back to the projects this blog runs on: vibe, openhands, opencode, Mistral chat-template handling, and others. Every merged PR is listed individually on the upstream page.

    upstream PRs page

Missing something? Tag cipherfox on Nostr or send a PR-style note via the MCP server.