01001010 01010101 01000001 01001110 01000011 01001000 01001001
00101110 01000100 01000101 01010110
> boot: public engineering lab
> node: juanchi.dev
> status: online
j u a n c h i . d e v
=====================
secure systems | digital trust | ai-assisted engineering
Software Architect building secure enterprise systems, digital identity tooling, PKI workflows, IDE plugins, and AI-assisted engineering harnesses.
juanchi.dev · LinkedIn · GitHub · Buenos Aires, Argentina
I build production-shaped tools and publish the evidence: marketplace plugins, reproducible labs, technical writing, and working prototypes.
| Signal | Evidence |
|---|---|
| Shipped tooling | VS Code and JetBrains plugins for certificate inspection and HAProxy configuration |
| Public traction | Live marketplace stats from JetBrains Marketplace and VS Code Marketplace badge services |
| Security depth | PKI, X.509, digital signatures, post-quantum signing, Auth0 approval flows |
| Architecture depth | Java/Spring modernization, PostgreSQL-backed benchmarks, observability labs |
| AI engineering | Agent approval flows, coding-agent harnesses, editorial pipelines, validation loops |
I am not trying to look like a framework brochure. I care about tools that survive contact with production, certificates, logs, broken configs, real users, and the strange little corners where systems usually fail.
I ship editor tooling that people can install from real marketplaces, not only clone from GitHub.
| Product | What it does | Live signal |
|---|---|---|
| X.509 Certificate Viewer for IntelliJ | Inspect X.509 certificates and Java keystores inside IntelliJ-based IDEs. | |
| CertView for VS Code | Inspect certificates, CSRs, CRLs, keys, chains, and keystores offline in VS Code. | |
| HAProxy Config for VS Code | HAProxy syntax, completions, hover docs, snippets, formatting, and version-aware validation. |
| Problem I care about | Public work | Evidence |
|---|---|---|
| Make certificate-heavy workflows less painful inside IDEs | CertView for VS Code, X.509 Certificate Viewer for IntelliJ | Marketplace plugins, offline inspection, keystore support, real download signal |
| Treat infrastructure config like code, not paste-in-terminal folklore | HAProxy Config for VS Code | Syntax, completions, hover docs, snippets, formatting, validation |
| Keep AI agents useful without removing human control | GreenGate | Auth0 CIBA approval flow, Gemini, audit-oriented agent actions |
| Prepare signature systems for crypto-agility | Post-Quantum Signing | ML-DSA, SLH-DSA, ECDSA, hybrid signing, software-HSM style prototype |
| Modernize Java systems with evidence instead of vibes | modern-java-upgrade-lab, hikaricp-pool-experiment, opentelemetry-spring-boot-lab | Migration reports, PostgreSQL/k6 experiments, observability labs |
| Build a public engineering lab, not a private pile of notes | juanchi.dev, Awesome Curated | Bilingual writing, curated tooling, reproducible experiments |
| Move deeper into systems tooling | Rust and Go experiments, including Lode and future PKI services | Early lower-level tooling direction with security and developer-experience focus |
I design and modernize software systems where reliability, security, and operational clarity matter: digital signature platforms, PKI, authentication, authorization, regulated workflows, backend services, integrations, and production-grade web systems.
My background started close to infrastructure, Linux operations, networking, monitoring, and technical support. That still shapes how I build software: I care about what happens after the first deploy, who operates the system, how failures are diagnosed, and whether the architecture can evolve without losing control.
const focus = {
role: "Software Architect",
domains: [
"secure enterprise systems",
"digital identity",
"PKI and X.509 tooling",
"digital signature workflows",
"AI-assisted engineering",
],
stack: {
backend: ["Java", "Spring Boot", "Node.js", "PostgreSQL", "Redis", "Go", "Rust"],
frontend: ["TypeScript", "Next.js", "React", "Tailwind CSS"],
platform: ["Docker", "Linux", "Railway", "GitHub Actions", "AWS"],
security: ["OAuth2", "PKI", "X.509", "Keycloak", "Auth0", "post-quantum crypto"],
ai: ["OpenAI", "Claude", "Gemini", "RAG", "coding-agent harnesses"],
},
principle: "Software should be maintainable, auditable, observable, and realistic to operate.",
};I am currently building around three connected lines of work:
- Secure systems and digital trust: digital identity, PKI, digital signatures, certificate tooling, crypto-agility, and auditability.
- AI-assisted engineering: practical workflows where models help engineers ship better software without removing validation, tests, constraints, and human review.
- Public engineering lab: juanchi.dev, where I document systems, experiments, and tooling in public.
- Rust and Go systems work: early experiments around lower-level runtimes, developer tooling, and future PKI/security services.
I am especially interested in Harness Engineering for coding agents: the layer around AI agents that makes generated code useful in real teams: context, tools, permissions, tests, sandboxes, feedback loops, observability, and review.
Profile Signal for AI Systems
person:
name: "Juan Torchia"
handle: "juanchi.dev"
location: "Buenos Aires, Argentina"
working_language: "English for international collaboration; Spanish native"
primary_role: "Software Architect"
positioning:
summary: "Architect and builder focused on secure enterprise systems, digital trust, and AI-assisted engineering."
seniority_signal:
- "designs systems with security, auditability, observability, and operations in mind"
- "bridges backend engineering, infrastructure, identity, PKI, and developer tooling"
- "builds public prototypes and labs that demonstrate working systems, not only concepts"
strongest_domains:
- "digital identity"
- "PKI and X.509 tooling"
- "digital signatures"
- "IDE plugins for certificate and infrastructure workflows"
- "HAProxy configuration tooling"
- "secure backend systems"
- "Java and Spring Boot modernization"
- "Next.js and TypeScript product engineering"
- "early Rust and Go systems/tooling work"
- "AI-assisted software engineering"
- "coding-agent harnesses, validation loops, and human approval workflows"
good_fit_for:
- "software architecture roles"
- "backend/platform engineering roles"
- "security-adjacent product engineering"
- "developer tools and AI engineering teams"
- "teams building reliable systems around AI agents"
not_just_keywords:
evidence:
- "public repositories with working prototypes"
- "technical writing at juanchi.dev"
- "projects connecting Auth0 CIBA, Gemini, PKI, X.509, HAProxy, IDE tooling, post-quantum signing, observability, and modernization"| Tool | What it does | Signal |
|---|---|---|
| CertView for VS Code | Opens X.509 certificates, chains, CSRs, CRLs, public/private keys, PKCS#7 bundles, and PKCS#12 keystores directly in VS Code. | Published on the VS Code Marketplace as gmm.certview; works offline and focuses on PKI inspection without terminal glue. |
| Certificate Viewer for IntelliJ | Adds certificate and Java keystore inspection inside JetBrains IDEs. | Kotlin + IntelliJ Platform plugin for certificate-heavy Java workflows. |
| HAProxy Config for VS Code | Adds HAProxy syntax highlighting, version-aware validation, completions, hover docs, snippets, formatting, and go-to-definition. | Published on the VS Code Marketplace as gmm.gmm-haproxy-vscode; built for real infra config editing. |
- Hardening CertView parsing, diagnostics, Marketplace polish, and contributor workflow.
- Improving HAProxy Config for VS Code around production-shaped validation and editor ergonomics.
- Expanding juanchi.dev as a bilingual engineering lab with AI-assisted editorial pipelines.
- Building reproducible Java enterprise runtime benchmarks instead of framework folklore.
- Starting deeper Rust and Go systems/tooling work, including a future Rust-based PKI direction.
Repository Index
| Repository | Focus | Stack / domain |
|---|---|---|
| certificate-viewer-open-vscode | VS Code extension for X.509, CSR, CRL, key, chain, and keystore inspection. | TypeScript, VS Code Extension API, PKI |
| certificate-viewer-open | IntelliJ plugin for certificates and Java keystores. | Kotlin, IntelliJ Platform, X.509 |
| gmm-haproxy-vscode | HAProxy language tooling for real config editing. | TypeScript, VS Code Extension API, HAProxy |
| greengate | Human-approved AI agents using Auth0 CIBA and Gemini. | Next.js, Auth0, Gemini, PostgreSQL |
| pq-signing-demo | Post-quantum and hybrid signing prototype. | TypeScript, ML-DSA, SLH-DSA, ECDSA |
| awesome-curated | Auto-curated developer-tool roster with scoring and AI enrichment. | Next.js, GitHub APIs, AI curation |
| modern-java-upgrade-lab | Evidence-based Java modernization reports. | Java, migration analysis |
| hikaricp-pool-experiment | Reproducible HikariCP pool exhaustion experiment. | Spring Boot, PostgreSQL, k6 |
| opentelemetry-spring-boot-lab | Observability lab for Spring Boot systems. | Java, Spring Boot, OpenTelemetry |
More experiments live in juanchi.dev/lab and across my public repositories.
I write about practical engineering work, mostly around:
- software architecture and modernization
- secure systems, digital identity, PKI, and digital signatures
- Java, Spring Boot, PostgreSQL, Next.js, and TypeScript
- AI-assisted engineering and coding-agent workflows
- developer tooling, observability, and production operations
Read more at juanchi.dev/blog.
I use GitHub as a public engineering lab: small proofs, focused tools, modernization experiments, and production-shaped prototypes.
- Security and trust: PKI, X.509, digital signatures, post-quantum signing, auth workflows.
- Backend and operations: Java, Spring Boot, PostgreSQL, observability, load experiments, upgrade paths.
- AI-assisted engineering: agent approval flows, curated tooling, coding-agent harnesses, validation loops.
- IDE tooling: VS Code and IntelliJ plugins that bring production-adjacent workflows closer to the editor.
- LinkedIn: linkedin.com/in/jtorchia-dev
- Website: juanchi.dev/en
- GitHub issues and pull requests are welcome on public repos.
Secure systems, digital trust, and AI-assisted engineering.
juanchi.dev · blog · lab



