19, cs undergrad | building stuff around postgres.
Joined November 2025
- Tweets 130
- Following 234
- Followers 36
- Likes 223
12 Photos and videos
Pinned Tweet
Jun 13
i'm building a database that stores data in minecraft. is this a good idea? probably not. is it working? somehow yes.
17
24
858
51,855
Jun 13
i'm building a database that stores data in minecraft. is this a good idea? probably not. is it working? somehow yes.
17
24
858
51,855
Jun 12
i studied the postgres wire protocol recently. it turns out you can do some pretty crazy things with it.
if you just respond with the right bytes and it will happily render your results and call it a day. it could be talking to a postgres instance or it could be talking to a raspberry pi in my bedroom sending postgres shaped packets and psql will never suspect a thing.
i've been abusing this fact for a very cursed side project lately.
3
11
901
Jun 3
was learning go and somehow ended up building a thing that shows postgres health as weather
db good = sunny
db bad = storm
1
2
99
Jun 3
1
59
May 31
so pewdiepie dropped odysseus his own self hosted ai workspace. runs locally privacy focused and looks pretty clean.
check it github.com/pewdiepie-archdae…
kinda cool ngl
2
119
May 18
I actually built something similar a while ago that works with any postgres db
It gives you audits, policy visibility, change tracking, simulation, and AI policy generation.
npx rlsmon <connection-string>
May 18
Supabase RLS tester is here!
You can run a query as another user and see which RLS policy took effect! It also supports testing queries via client libraries, with AI converting them to SQL.
Enable it today from the feature preview section on the dashboard!
3
83
May 6
i reported an edge case in grok’s trial flow around payment identifiers(UPI) and it got marked as “informative”
interesting how “one trial per user” breaks down when identity is hard to define
1
83
May 4
rls can expose your data if it’s poorly managed.
it gets hard to manage once you have a few policies
so I built rlsmon to make that visible.
it has audits, policy visibility, tracking changes over time ai policy generation.
npx rlsmon <connection-string>
Apr 30
Postgres RLS sounds great in theory: embedded access control right in the database.
In practice, there's complexity in policy configuration, managing your attack surface, and performance implications.
Our latest article takes a deep dive into RLS.
3
5
350
Apr 27
been working on migration checks rls policy snapshots in rlsmon.
i used to run migrations and just hope nothing important changed. once you have multiple policies it gets hard to track what actually changed and what impact it has, so I added diffs snapshots to see changes over time and catch risky updates before they go live.
2
78
Apr 24
a single missing rls policy can expose data
i didn’t realize how easy that is to miss
so I added CI audits to rlsmon to flag missing rls, bad role refs, policy conflicts
already catching things I would’ve missed
2
81
Apr 23
added a security audit feature to rlsmon
you can scan your rls policies for common vulnerabilities
and spot issues before they become problems
1
1
83
Apr 22
rls drama got me digging into it
and yeah… it’s really hard to see what your policies are actually doing
building a small tool for anyone dealing with the same
explore policies, test roles, audit configs
2
2
89