jesus/stratumiops
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
stratumiops/docs/en/stratiumiops_position.md
Jesús Pérez 1680d80a3d
Some checks failed
Rust CI / Security Audit (push) Has been cancelled
Details
Rust CI / Check + Test + Lint (nightly) (push) Has been cancelled
Details
Rust CI / Check + Test + Lint (stable) (push) Has been cancelled
Details
Nickel Type Check / Nickel Type Checking (push) Has been cancelled
Details
chore: Init repo, add docs
2026-01-22 22:15:19 +00:00

911 lines
45 KiB
Markdown
Raw Blame History

# Project Portfolio: Complete Strategic Positioning
## Executive Summary
Portfolio of five Rust projects forming a complete ecosystem for modern software development:
| Project | Primary Domain | Key Capabilities |
| ---------- | ------------------- | ------------------- |
| **Vapora** | Development Platform | Orchestration, Kanban, multi-tenant, LLM routing, knowledge graph |
| **Kogral** | Knowledge Management | Knowledge graph, ADRs, patterns, guidelines, semantic search |
| **TypeDialog** | Interaction and Automation | Multi-backend forms, agents, IaC generation, i18n, validation |
| **Provisioning** | Infrastructure | Declarative IaC, multi-cloud, enterprise security, orchestration |
| **SecretumVault** | Security | Secrets management, post-quantum cryptography, multi-backend |
---
## 1. Vapora: Intelligent Development Platform
### Overview
Vapora is a **development orchestration platform** that unifies project management, AI agent coordination, and complete development lifecycle visibility.
### Complete Capabilities
#### Project Management
| Functionality | Description |
| --------------- | ------------- |
| **Kanban Board** | Drag-and-drop with Todo → Doing → Review → Done columns |
| **Real-time Collaboration** | Optimistic updates, WebSocket sync |
| **Task Tracking** | Priorities, tags, assignments, sorting |
| **Project Hierarchy** | Workspaces → Projects → Tasks with isolated scopes |
| **Change Tracking** | Change history with impact analysis |
#### Multi-Tenancy and Security
| Functionality | Description |
| --------------- | ------------- |
| **SurrealDB Scopes** | Native tenant isolation |
| **Cedar RBAC** | Fine-grained declarative policies |
| **JWT Auth** | Tokens with refresh rotation |
| **Audit Trail** | Logging of significant changes |
#### Agent Orchestration
| Functionality | Description |
| --------------- | ------------- |
| **12 Roles** | Architect, Developer, Reviewer, Tester, Documenter, etc. |
| **Learning Profiles** | Expertise per task type with recency bias (3x last 7 days) |
| **Pipeline Execution** | Sequences with approval gates |
| **NATS JetStream** | Async coordination with guaranteed delivery |
#### LLM Router
| Functionality | Description |
| --------------- | ------------- |
| **4 Providers** | Claude, OpenAI, Gemini, Ollama |
| **Budget Control** | Limits per role (monthly/weekly) |
| **Auto-Fallback** | Switch to cheaper provider when exceeding budget |
| **Cost Tracking** | Tokens and costs per request/role/provider |
#### Temporal Knowledge Graph
| Functionality | Description |
| --------------- | ------------- |
| **Execution History** | Nodes with causal relationships |
| **Learning Curves** | Daily aggregations for improvement tracking |
| **Similarity Search** | Recommendations based on past tasks |
#### Frontend (Leptos WASM)
| Functionality | Description |
| --------------- | ------------- |
| **Glassmorphism UI** | Modern vaporwave aesthetic |
| **Responsive** | Mobile to ultra-wide |
| **Optimistic Updates** | Smooth UX without waiting for server |
| **UnoCSS** | Atomic CSS Tailwind-compatible |
#### Observability
| Functionality | Description |
| --------------- | ------------- |
| **Prometheus Metrics** | Request latency, agent duration, token usage |
| **OpenTelemetry** | Distributed tracing |
| **Structured Logging** | JSON output with tracing |
### Architecture
```text
┌─────────────────────────────────────────────────────────────────┐
│ Vapora (13 crates, 218+ tests) │
├─────────────────────────────────────────────────────────────────┤
│ │
│ ┌─────────────┐ ┌─────────────┐ ┌─────────────────────────┐ │
│ │ Frontend │ │ Backend │ │ Agent System │ │
│ │ (Leptos) │──│ (Axum) │──│ (Coordinator + NATS) │ │
│ │ Kanban UI │ │ 40+ APIs │ │ Learning + Pipelines │ │
│ └─────────────┘ └──────┬──────┘ └───────────┬─────────────┘ │
│ │ │ │
│ ┌───────────────────────┴──────────────────────┴─────────────┐ │
│ │ LLM Router │ │
│ │ Claude │ OpenAI │ Gemini │ Ollama │ Budget │ Fallback │ │
│ └────────────────────────────────────────────────────────────┘ │
│ │ │
│ ┌───────────────────────┴───────────────────────────────────┐ │
│ │ Persistence: SurrealDB (scopes) + NATS JetStream │ │
│ └───────────────────────────────────────────────────────────┘ │
└─────────────────────────────────────────────────────────────────┘
```
---
## 2. Kogral: Knowledge Management System
### Overview
Kogral is a **git-native knowledge graph** designed to capture, connect and query development team knowledge.
### Complete Capabilities
#### Knowledge Model
| Node Type | Purpose |
| -------------- | ----------- |
| **Note** | General notes, observations |
| **Decision (ADR)** | Architectural Decision Records with context/decision/consequences |
| **Guideline** | Team/organization standards |
| **Pattern** | Documented reusable solutions |
| **Journal** | Development diary (progress, blockers, learnings) |
| **Execution** | Agent execution records |
| Relation Type | Purpose |
| ------------------ | ----------- |
| **relates_to** | General connection |
| **depends_on** | Dependency |
| **implements** | Concept implementation |
| **extends** | Extension/specialization |
| **supersedes** | Replaces previous version |
| **explains** | Documentation/explanation |
#### Multi-Backend Storage
| Backend | Characteristics |
| --------- | ----------------- |
| **Filesystem** | Git-friendly, markdown + YAML frontmatter, `.kogral/` |
| **SurrealDB** | Scalable, graph queries, org-wide shared knowledge |
| **Memory** | Testing with DashMap |
#### Search
| Capability | Description |
| ----------- | ------------- |
| **Text Search** | Full-text search over content |
| **Semantic Search** | Embeddings with fastembed (local) or cloud providers |
| **Graph Traversal** | Navigation through relationships |
| **Filtering** | By type, tags, date, metadata |
#### Guideline Inheritance
```text
Org Guidelines (base)
▼ override
Project Guidelines (specific)
▼ merge with priority
Effective Guidelines (applied)
```
#### Logseq Compatibility
| Feature | Support |
| --------- | --------- |
| **Outliner Blocks** | Preserved hierarchical structure |
| **Task Statuses** | TODO, DOING, DONE, LATER, NOW, WAITING, CANCELLED |
| **Wikilinks** | Bidirectional `[[references]]` |
| **Properties** | Metadata in frontmatter |
| **Tags** | Preserved #tags |
#### MCP Server (Claude Code)
| Tool | Function |
| ------ | --------- |
| `search` | Text/semantic search |
| `add_note` | Create note |
| `add_decision` | Create guided ADR |
| `link` | Establish relationship |
| `get_guidelines` | Get applicable guidelines |
| `list_graphs` | List available graphs |
| `export` | Export to format |
#### Export and Templates
| Format | Support |
| --------- | --------- |
| **Markdown** | With YAML frontmatter |
| **JSON** | Complete structure |
| **YAML** | Human-readable |
| **Tera Templates** | Custom generation |
### Architecture
```text
┌─────────────────────────────────────────────────────────────────┐
│ Kogral (3 crates, 56 tests) │
├─────────────────────────────────────────────────────────────────┤
│ │
│ ┌─────────────┐ ┌─────────────┐ ┌─────────────────────────┐ │
│ │ CLI │ │ MCP Server │ │ Core Library │ │
│ │ 13 cmds │ │ Claude Code│ │ Models + Storage + │ │
│ │ clap │ │ 7 tools │ │ Query + Embeddings │ │
│ └──────┬──────┘ └──────┬──────┘ └────────────┬────────────┘ │
│ │ │ │ │
│ └────────────────┼──────────────────────┘ │
│ │ │
│ ┌───────────────────────┴───────────────────────────────────┐ │
│ │ Storage Backends │ │
│ │ Filesystem (.kogral/) │ SurrealDB │ Memory (test) │ │
│ └───────────────────────────────────────────────────────────┘ │
│ │ │
│ ┌───────────────────────┴───────────────────────────────────┐ │
│ │ Embeddings: fastembed (local) │ rig-core (cloud) │ │
│ └───────────────────────────────────────────────────────────┘ │
└─────────────────────────────────────────────────────────────────┘
```
---
## 3. TypeDialog: Unified Interaction Platform
### Overview
TypeDialog is a **forms and automation system** that unifies multiple interfaces (CLI, TUI, Web) with agent execution and infrastructure generation.
### Complete Capabilities
#### Execution Backends
| Backend | Technology | Typical Use |
| --------- | ------------ | ------------ |
| **CLI** | inquire | Scripts, CI/CD, automation |
| **TUI** | ratatui | Terminal dashboards, admin tools |
| **Web** | axum + HTMX | SaaS, public forms |
| **AI** | tantivy + petgraph | RAG, semantic search |
| **Agent** | Tera + Nickel | LLM execution from .agent.mdx |
| **Prov-gen** | Nickel + Templates | Multi-cloud IaC |
#### Field Types
| Type | Characteristics |
| ------ | ----------------- |
| **text** | Regex validation, length, patterns |
| **confirm** | Yes/No boolean |
| **select** | Single choice with filtering |
| **multi-select** | Multiple choice (list/grid/dropdown) |
| **password** | Masked input |
| **custom** | User-defined types |
| **editor** | Multi-line with external editor support |
| **date** | Date/time picker |
#### Validation and Contracts
| Capability | Description |
| ----------- | ------------- |
| **Regex Patterns** | Regular expression validation |
| **Length Constraints** | min/max length |
| **Cross-field Logic** | Inter-field validation |
| **Nickel Contracts** | Type-safe pre/post validation |
| **Custom Validators** | Custom validation functions |
#### Advanced Forms
| Feature | Description |
| --------- | ------------- |
| **Sections** | Logical field grouping |
| **Conditional Fields** | Dynamic visibility based on values |
| **Smart Defaults** | Computed default values |
| **Repeating Groups** | Dynamically repeatable fields |
| **Fragment Composition** | Reusable templates with inheritance |
| **Includes** | Fragment imports |
#### Internationalization (i18n)
| Capability | Description |
| ----------- | ------------- |
| **Fluent Bundles** | .ftl files for translations |
| **Auto-Locale** | Automatic detection via sys-locale |
| **Form Translation** | Translated labels, hints, errors |
| **Extraction** | Auto-extraction of strings from schemas |
#### Output Formats
| Format | Support |
| --------- | --------- |
| **JSON** | Standard, universal compatible |
| **YAML** | Human-readable |
| **TOML** | Rust-friendly configuration |
| **Nickel** | Type-safe with contracts |
#### Agent System
| Capability | Description |
| ----------- | ------------- |
| **MDX Format** | Extended markdown with YAML frontmatter |
| **4 LLM Providers** | Claude, OpenAI, Gemini, Ollama |
| **Tera Templates** | Variables, imports, shell commands |
| **Output Validation** | Format, content, length checks |
| **Streaming** | Real-time token streaming |
#### IaC Generation (Prov-gen)
| Capability | Description |
| ----------- | ------------- |
| **6 Cloud Providers** | AWS, GCP, Azure, Hetzner, UpCloud, LXD |
| **7-Layer Validation** | Complete validation pipeline |
| **AI-Assisted** | Optional configuration with Claude/Ollama |
| **Template Fragments** | Provider-specific fragments |
#### Security
| Capability | Description |
| ----------- | ------------- |
| **Field Encryption** | Field-level encryption |
| **Password Masking** | Across all backends |
| **Validation Contracts** | Invalid data prevention |
### Architecture
```text
┌─────────────────────────────────────────────────────────────────┐
│ TypeDialog (8 crates, 3,818 tests) │
├─────────────────────────────────────────────────────────────────┤
│ │
│ Form Definition (TOML) │
│ │ │
│ ▼ │
│ ┌─────────────────────────────────────────────────────────────┐│
│ │ BackendFactory ││
│ └─────────────────────────────────────────────────────────────┘│
│ │ │
│ ┌──────┼──────┬──────┬──────┬──────┬──────┐ │
│ │ │ │ │ │ │ │ │
│ ▼ ▼ ▼ ▼ ▼ ▼ │ │
│ CLI TUI Web AI Agent Prov-gen │ │
│(inquire)(ratatui)(axum)(tantivy)(Tera)(Nickel) │
│ │ │ │ │ │ │ │ │
│ └──────┴──────┴──────┴──────┴──────┴──────┘ │
│ │ │
│ ┌───────────────────────┴───────────────────────────────────┐ │
│ │ Output: JSON │ YAML │ TOML │ Nickel │ │
│ │ Validation: Nickel Contracts │ │
│ └───────────────────────────────────────────────────────────┘ │
└─────────────────────────────────────────────────────────────────┘
```
---
## 4. Provisioning: Infrastructure Platform
### Overview
Provisioning is an **enterprise IaC platform** that combines declarative configuration (Nickel), advanced orchestration, complete security, and AI assistance.
### Complete Capabilities
#### Modular CLI
| Aspect | Detail |
| --------- | --------- |
| **Size** | 211 lines (84% reduction from 1,329) |
| **Shortcuts** | 80+ shortcuts (`s` → server, `t` → taskserv) |
| **Modules** | 7 domains (infra, orchestration, dev, workspace, config, utils, gen) |
| **Guides** | Interactive with glow/bat/less |
#### Configuration System
| Capability | Description |
| ----------- | ------------- |
| **476+ Accessors** | Replacement for 200+ environment variables |
| **Hierarchical Loading** | defaults → user → project → infra → env → runtime |
| **Interpolation** | Dynamically expanded variables |
| **Multi-format** | TOML, YAML, Nickel |
#### Multi-Cloud Support
| Provider | Capabilities |
| ---------- | ------------- |
| **AWS** | EC2, EKS, RDS, S3, IAM, VPC |
| **UpCloud** | Servers, networking, storage |
| **Local** | LXD containers, local VMs |
#### Batch Workflows
| Capability | Description |
| ----------- | ------------- |
| **Mixed Providers** | AWS + UpCloud + local in same workflow |
| **Schema Integration** | KCL/Nickel type-safe |
| **Dependency Resolution** | Automatic topological sorting |
| **State Management** | Checkpoints with recovery |
| **Rollback** | Automatic on failures |
| **Token Efficiency** | 85-90% |
#### Hybrid Orchestrator
| Capability | Description |
| ----------- | ------------- |
| **Rust + Nushell** | Combines performance and flexibility |
| **File Persistence** | State persisted to filesystem |
| **Priority Processing** | Priority queues |
| **Retry Logic** | Exponential backoff |
| **REST API** | External integration |
| **Parallel Execution** | Load balancing |
#### Workspace Management
| Capability | Description |
| ----------- | ------------- |
| **Single-command Switch** | Instant environment switching |
| **Tracking** | Last-used timestamps |
| **Registry** | Centralized registry |
| **Preferences** | Per-user configuration |
#### Test Environment Service
| Type | Description |
| ------ | ------------- |
| **Single Taskserv** | Individual service test |
| **Server Simulation** | Complete server simulation |
| **Multi-node Clusters** | Clusters with topologies (K8s HA, etcd) |
#### Platform Installer
| Mode | Resources |
| ------ | ---------- |
| **Solo** | 2 CPU, 4GB RAM |
| **MultiUser** | 4 CPU, 8GB RAM |
| **CICD** | 8 CPU, 16GB RAM |
| **Enterprise** | 16 CPU, 32GB RAM |
| Interface | Description |
| ----------- | ------------- |
| **TUI** | Interactive Ratatui |
| **CLI** | Headless automation |
| **Unattended** | No interaction |
#### Version Management
| Capability | Description |
| ----------- | ------------- |
| **Centralized** | All versions in Nickel |
| **Bash-compatible** | Sourceable file generation |
| **Auto-discovery** | Provider version detection |
| **Shell Integration** | `source /provisioning/core/versions` |
#### Nushell Plugins
| Plugin | Function | Improvement |
| -------- | --------- | -------- |
| **auth** | Authentication | 10-50x vs HTTP |
| **KMS** | Key management | Native OS keyring |
| **orchestrator** | Workflow coordination | Performance |
#### Complete Security System
| Component | Capabilities |
| ------------ | ------------- |
| **Authentication** | JWT + Argon2id hashing |
| **MFA** | TOTP + WebAuthn/FIDO2 |
| **Authorization** | Cedar policy engine (fine-grained RBAC) |
| **Secrets** | Dynamic secrets with TTL |
| **KMS** | 5 backends (RustyVault, Age, AWS KMS, Vault, Cosmian) |
| **Encryption** | Envelope encryption |
| **Audit** | 7-year retention, 5 export formats |
| **Break-glass** | Multi-party approval |
**Security Metrics**: 39,699 lines, 12 components
#### AI Integration
| Capability | Description |
| ----------- | ------------- |
| **MCP Server** | Rust-native (1000x vs Python) |
| **RAG System** | 1,200+ domain docs |
| **NLP** | Intent recognition, entity extraction |
| **Multi-provider** | OpenAI, Claude, Ollama |
| **Nickel Generation** | With automatic validation |
### Architecture
```text
┌─────────────────────────────────────────────────────────────────┐
│ Provisioning (v5.0.0-nickel, 218+ tests) │
├─────────────────────────────────────────────────────────────────┤
│ │
│ ┌─────────────┐ ┌─────────────┐ ┌─────────────────────────┐ │
│ │ CLI │ │ Control │ │ Platform │ │
│ │ 211 lines │ │ Center │ │ Orchestrator │ │
│ │ 80+ shorts │ │ (Axum) │ │ (Rust/Nu hybrid) │ │
│ └──────┬──────┘ └──────┬──────┘ └────────────┬────────────┘ │
│ │ │ │ │
│ ┌──────┴────────────────┴──────────────────────┴─────────────┐ │
│ │ Extensions │ │
│ │ Providers: AWS │ UpCloud │ Local │ │
│ │ Taskservs: 50+ infrastructure services │ │
│ │ Clusters: K8s, etcd, etc. templates │ │
│ │ Workflows: Automation definitions │ │
│ └────────────────────────────────────────────────────────────┘ │
│ │ │
│ ┌───────────────────────┴───────────────────────────────────┐ │
│ │ Security Layer (39K lines, 12 components) │ │
│ │ JWT │ Cedar │ MFA │ KMS │ Audit │ Secrets │ │
│ └───────────────────────────────────────────────────────────┘ │
│ │ │
│ ┌───────────────────────┴───────────────────────────────────┐ │
│ │ AI Layer: MCP Server │ RAG (1200+ docs) │ LLM Providers │ │
│ └───────────────────────────────────────────────────────────┘ │
│ │ │
│ ┌───────────────────────┴───────────────────────────────────┐ │
│ │ State: SurrealDB │ Filesystem │ Nickel Schemas │ │
│ └───────────────────────────────────────────────────────────┘ │
└─────────────────────────────────────────────────────────────────┘
```
---
## 5. SecretumVault: Post-Quantum Secrets Management
### Overview
SecretumVault is a **secrets management system** written in Rust with **production-ready post-quantum cryptography** (ML-KEM-768, ML-DSA-65 per NIST FIPS 203/204).
### Complete Capabilities
#### Cryptographic Backends
| Backend | Algorithms | Status |
| --------- | ------------ | -------- |
| **OpenSSL** | RSA-2048/4096, ECDSA (P-256/384/521), AES-256-GCM | ✅ Production |
| **OQS** | ML-KEM-768, ML-DSA-65 | ✅ **Production (PQC)** |
| **AWS-LC** | RSA, ECDSA (experimental PQC) | ⚠️ Experimental |
| **RustCrypto** | AES-256-GCM, ChaCha20-Poly1305 | ⚠️ Testing |
#### Secrets Engines
| Engine | Functionality |
| ------- | --------------- |
| **KV Engine** | Versioned secret storage |
| **Transit Engine** | Encryption-as-a-service with key rotation |
| **PKI Engine** | X.509 certificate generation, CA management |
| **Database Engine** | Dynamic credentials with TTL |
#### Storage Backends
| Backend | Typical Use |
| --------- | ------------ |
| **Filesystem** | Development, single-node |
| **etcd** | Kubernetes, high availability |
| **SurrealDB** | Complex queries, time-series |
| **PostgreSQL** | Enterprise, guaranteed ACID |
#### Enterprise Security
| Component | Capabilities |
| ------------ | ------------- |
| **Seal/Unseal** | Shamir Secret Sharing (K of N threshold) |
| **Authentication** | Token-based with configurable TTL |
| **Authorization** | Cedar ABAC (AWS-compatible policies) |
| **TLS/mTLS** | In-transit encryption + client verification |
| **Audit** | Structured logging of all events |
### Architecture
```text
┌─────────────────────────────────────────────────────────────────┐
│ SecretumVault (~11K LOC, 50+ tests) │
├─────────────────────────────────────────────────────────────────┤
│ │
│ ┌─────────────┐ ┌─────────────┐ ┌─────────────────────────┐ │
│ │ CLI │ │ REST API │ │ Secrets Engines │ │
│ │ (clap) │ │ (Axum) │ │ KV/Transit/PKI/DB │ │
│ └──────┬──────┘ └──────┬──────┘ └────────────┬────────────┘ │
│ │ │ │ │
│ ┌──────┴────────────────┴──────────────────────┴─────────────┐ │
│ │ VaultCore │ │
│ │ Seal (Shamir) │ TokenManager │ Cedar ABAC │ Metrics │ │
│ └────────────────────────────────────────────────────────────┘ │
│ │ │
│ ┌───────────────────────┴───────────────────────────────────┐ │
│ │ Crypto Backends │ │
│ │ OpenSSL │ OQS (PQC) │ AWS-LC │ RustCrypto │ │
│ └───────────────────────────────────────────────────────────┘ │
│ │ │
│ ┌───────────────────────┴───────────────────────────────────┐ │
│ │ Storage Backends │ │
│ │ Filesystem │ etcd │ SurrealDB │ PostgreSQL │ │
│ └───────────────────────────────────────────────────────────┘ │
└─────────────────────────────────────────────────────────────────┘
```
---
## 6. Complete Functionality Matrix
### Capabilities by Category
#### Project Management
| Capability | Vapora | Kogral | TypeDialog | Provisioning | SecretumVault |
| ----------- | -------- | -------- | ------------ | -------------- | --------------- |
| Kanban Board | ✅ Leptos | - | - | - | - |
| Task Management | ✅ Full | - | - | - | - |
| Project Hierarchy | ✅ Scopes | ✅ Graphs | - | ✅ Workspaces | - |
| Real-time Collab | ✅ WebSocket | - | - | - | - |
| Change Tracking | ✅ History | ✅ Git | - | ✅ Audit | ✅ Audit |
#### Knowledge and Documentation
| Capability | Vapora | Kogral | TypeDialog | Provisioning | SecretumVault |
| ----------- | -------- | -------- | ------------ | -------------- | --------------- |
| Knowledge Graph | ✅ Temporal | ✅ 6 types | - | - | - |
| ADRs | - | ✅ Native | - | - | - |
| Patterns Library | - | ✅ Native | - | - | - |
| Guidelines | - | ✅ Inheritance | - | ✅ Schemas | - |
| Semantic Search | ✅ KG | ✅ fastembed | ✅ Tantivy | ✅ RAG | - |
#### User Interaction
| Capability | Vapora | Kogral | TypeDialog | Provisioning | SecretumVault |
| ----------- | -------- | -------- | ------------ | -------------- | --------------- |
| Web UI | ✅ Leptos | - | ✅ Axum | ✅ Leptos | - |
| CLI | - | ✅ 13 cmds | ✅ inquire | ✅ 80+ shorts | ✅ svault |
| TUI | - | - | ✅ ratatui | ✅ ratatui | - |
| Forms | - | - | ✅ 8 types | - | - |
| i18n | - | - | ✅ Fluent | - | - |
#### Automation
| Capability | Vapora | Kogral | TypeDialog | Provisioning | SecretumVault |
| ----------- | -------- | -------- | ------------ | -------------- | --------------- |
| Pipelines | ✅ Agent | - | ✅ Agent MDX | ✅ Workflows | - |
| LLM Agents | ✅ 12 roles | - | ✅ Multi-prov | ✅ MCP | - |
| IaC Generation | - | - | ✅ 6 clouds | ✅ Nickel | - |
| CI/CD | - | - | ✅ Backend | ✅ Full | - |
| Orchestration | ✅ NATS | - | - | ✅ Hybrid | - |
#### Infrastructure
| Capability | Vapora | Kogral | TypeDialog | Provisioning | SecretumVault |
| ----------- | -------- | -------- | ------------ | -------------- | --------------- |
| Multi-cloud | - | - | ✅ Prov-gen | ✅ AWS/UpCloud/Local | - |
| Kubernetes | ✅ Deploy | - | - | ✅ Full | ✅ etcd backend |
| Secrets Mgmt | - | - | ✅ Encrypt | ✅ 5 KMS | ✅ **4 engines** |
| Networking | - | - | - | ✅ VPC/Subnet | - |
| State Mgmt | - | - | - | ✅ Checkpoints | ✅ 4 backends |
#### Security
| Capability | Vapora | Kogral | TypeDialog | Provisioning | SecretumVault |
| ----------- | -------- | -------- | ------------ | -------------- | --------------- |
| Authentication | ✅ JWT | - | - | ✅ JWT+MFA | ✅ Token-based |
| Authorization | ✅ Cedar | - | - | ✅ Cedar | ✅ Cedar ABAC |
| Multi-tenant | ✅ Scopes | - | - | ✅ Full | - |
| Audit | ✅ Logging | - | - | ✅ 7 years | ✅ Full audit |
| Encryption | - | - | ✅ Field | ✅ Envelope | ✅ **PQC native** |
| Post-Quantum | - | - | - | - | ✅ ML-KEM/ML-DSA |
#### Observability
| Capability | Vapora | Kogral | TypeDialog | Provisioning | SecretumVault |
| ----------- | -------- | -------- | ------------ | -------------- | --------------- |
| Metrics | ✅ Prometheus | - | - | ✅ Full | ✅ Prometheus |
| Logging | ✅ tracing | ✅ tracing | - | ✅ tracing | ✅ tracing |
| Tracing | ✅ OTEL | - | - | ✅ OTEL | - |
| Dashboards | ✅ Grafana | - | - | ✅ Control Center | - |
---
## 7. Technology Stack
### Shared Dependencies
```text
┌─────────────────────────────────────────────────────────────────┐
│ COMMON TECHNOLOGY STACK │
├─────────────────────────────────────────────────────────────────┤
│ │
│ LANGUAGE │
│ └── Rust 2021/2024 edition (type-safe, zero-cost) │
│ │
│ CONFIGURATION │
│ └── Nickel 1.15+ (typed schemas, lazy eval, validation) │
│ │
│ DATABASE │
│ └── SurrealDB 2.3+ (multi-model, graph, scopes) │
│ │
│ WEB FRAMEWORK │
│ └── Axum 0.8+ (async, composable, tower middleware) │
│ │
│ FRONTEND │
│ └── Leptos 0.8+ (WASM, reactive, CSR) │
│ │
│ TUI │
│ └── Ratatui 0.30+ (terminal UI, crossterm) │
│ │
│ CLI │
│ └── clap 4+ (derive API, completions) │
│ │
│ LLM │
│ └── rig-core 0.15+ (multi-provider, tools, streaming) │
│ │
│ MESSAGING │
│ └── async-nats 0.45+ (JetStream, guaranteed delivery) │
│ │
│ SERIALIZATION │
│ └── serde 1.0 (JSON, YAML, TOML) │
│ │
│ ASYNC │
│ └── Tokio 1.48+ (runtime, spawn, timeouts) │
│ │
│ LOGGING │
│ └── tracing 0.1 (structured, JSON, env-filter) │
│ │
│ ERRORS │
│ └── anyhow + thiserror (ergonomic error handling) │
│ │
└─────────────────────────────────────────────────────────────────┘
```
---
## 8. Positioning vs Competition
### By Domain
#### Development Platforms (Vapora)
| Aspect | Vapora | Jira | Linear | Notion |
| --------- | -------- | ------ | -------- | -------- |
| **Self-hosted** | ✅ | ❌ | ❌ | ❌ |
| **Multi-tenant** | ✅ Native | ❌ | ❌ | Partial |
| **Agent Orchestration** | ✅ Learning | ❌ | ❌ | ❌ |
| **LLM Integration** | ✅ 4 providers | AI features | ❌ | AI features |
| **Real-time** | ✅ WebSocket | ✅ | ✅ | ✅ |
| **Customizable** | ✅ Full | Limited | Limited | ✅ |
#### Knowledge Management (Kogral)
| Aspect | Kogral | Obsidian | Notion | Confluence |
| --------- | -------- | ---------- | -------- | ------------ |
| **Git-native** | ✅ | Plugins | ❌ | ❌ |
| **Developer-focused** | ✅ ADRs/Patterns | General | General | General |
| **MCP Integration** | ✅ Native | ❌ | ❌ | ❌ |
| **Semantic Search** | ✅ Local+Cloud | Plugins | Internal | Internal |
| **Guideline Inheritance** | ✅ | ❌ | ❌ | ❌ |
| **Offline** | ✅ | ✅ | ❌ | ❌ |
#### Forms and Automation (TypeDialog)
| Aspect | TypeDialog | Typeform | SurveyJS | Inquirer |
| --------- | ------------ | ---------- | ---------- | ---------- |
| **Multi-backend** | ✅ 6 | Web only | Web only | CLI only |
| **Type-safe** | ✅ Nickel | ❌ | Partial | ❌ |
| **Agent Execution** | ✅ Native | ❌ | ❌ | ❌ |
| **IaC Generation** | ✅ 6 clouds | ❌ | ❌ | ❌ |
| **i18n** | ✅ Fluent | ✅ | ✅ | ❌ |
| **Self-hosted** | ✅ | ❌ | ✅ | ✅ |
#### IaC (Provisioning)
| Aspect | Provisioning | Terraform | Pulumi | Ansible |
| --------- | -------------- | ----------- | -------- | --------- |
| **Language** | Nickel (typed) | HCL | TS/Py | YAML |
| **AI-native** | ✅ MCP+RAG | ❌ | ❌ | ❌ |
| **Security** | ✅ 39K lines | Basic | Basic | Vault plugin |
| **Orchestration** | ✅ Hybrid | State file | State | Playbooks |
| **Multi-cloud** | ✅ | ✅ | ✅ | ✅ |
| **DX** | ✅ 80+ shortcuts | Verbose | Standard | Standard |
#### Secrets Management (SecretumVault)
| Aspect | SecretumVault | HashiCorp Vault | AWS Secrets Manager | Azure Key Vault |
| --------- | --------------- | ----------------- | --------------------- | ----------------- |
| **Language** | Rust (memory-safe) | Go | SaaS | SaaS |
| **Post-Quantum** | ✅ ML-KEM/ML-DSA | ❌ | ❌ | ❌ |
| **Self-hosted** | ✅ Complete | ✅ | ❌ | ❌ |
| **Crypto backends** | 4 pluggable | 1 fixed | 1 fixed | 1 fixed |
| **Storage backends** | 4 (FS/etcd/Surreal/PG) | Multiple | Proprietary | Proprietary |
| **Authorization** | Cedar ABAC | ACL | IAM | RBAC |
| **Shamir unsealing** | ✅ Native | ✅ | ❌ | ❌ |
| **License** | Apache-2.0 | BSL/Enterprise | Proprietary | Proprietary |
---
## 9. Integration Between Projects
### Data Flow
```text
┌──────────────────┐
│ Kogral │
│ (Knowledge) │
└────────┬─────────┘
Guidelines, Patterns, ADRs, Decisions
┌────────────────────────┼────────────────────────┐
│ │ │
▼ ▼ ▼
┌───────────┐ ┌───────────┐ ┌─────────────┐
│ Vapora │◄───────▶│TypeDialog │◄───────▶│Provisioning │
│(Development)│ │ (Forms) │ │ (IaC) │
└─────┬─────┘ └─────┬─────┘ └──────┬──────┘
│ │ │
│ ┌───────────────┴───────────────┐ │
│ │ │ │
│ ▼ ▼ │
│ ┌───────────────────────────────────┐ │
└──▶│ SecretumVault │◄───┘
│ (Secrets + PQC Crypto) │
└───────────────────────────────────┘
┌─────────────────────────────────────────────────────────────┐
│ FINAL PRODUCT │
│ Software developed, documented, configured, deployed │
│ with protected secrets (PQC) │
└─────────────────────────────────────────────────────────────┘
```
### Specific Synergies
| Integration | Benefit |
| ------------- | ----------- |
| Kogral → Vapora | Agents query guidelines before generating code |
| Kogral → TypeDialog | Forms for structured ADR capture |
| Kogral → Provisioning | Automatic infrastructure ADRs |
| Vapora → TypeDialog | Forms as input for pipelines |
| Vapora → Provisioning | Deployment orchestration |
| TypeDialog → Provisioning | prov-gen backend generates IaC from forms |
### Reusable Components
| Component | Origin | Used In |
| ------------ | -------- | ---------- |
| SurrealDB patterns | Vapora | Kogral, Provisioning |
| Nickel schemas | Provisioning | TypeDialog, Kogral |
| rig-core abstraction | Vapora | All |
| Axum patterns | Vapora | TypeDialog, Provisioning |
| tracing setup | Vapora | All |
| Cedar policies | Provisioning | Vapora |
| Leptos components | Vapora | Provisioning |
---
## 10. Portfolio Metrics
| Metric | Vapora | Kogral | TypeDialog | Provisioning | SecretumVault | **Total** |
| --------- | -------- | -------- | ------------ | -------------- | --------------- | ----------- |
| **Crates** | 13 | 3 | 8 | 15+ | 1 | **40+** |
| **Tests** | 218 | 56 | 3,818 | 218 | 50+ | **4,360+** |
| **LOC (approx)** | ~50K | ~15K | ~90K | ~40K | ~11K | **~206K** |
| **Backends** | 1 (Leptos) | 3 | 6 | 3 | 4 storage | **17** |
| **LLM Providers** | 4 | 4 | 4 | 3 | - | **4 unique** |
| **MCP Tools** | Gateway | 7 | - | 7 | - | **14+** |
| **Crypto backends** | - | - | - | 5 KMS | 4 | **4 unique** |
---
## 11. Recommended Adoption Order
### Optimal Sequence
```text
Phase 1: Kogral
│ Establishes knowledge base
│ Guidelines, patterns, ADRs
Phase 2: TypeDialog
│ Enables structured inputs
│ Validation with Nickel contracts
Phase 3: SecretumVault
│ Secure secrets management
│ PQC cryptographic preparation
Phase 4: Vapora
│ Orchestrates development with agents
│ Leverages knowledge graph
Phase 5: Provisioning
│ Infrastructure informed
│ by all previous context
```
### Independent Adoption
Each project works standalone:
- **Kogral**: Knowledge management without external dependencies
- **TypeDialog**: Forms and agents without other projects
- **SecretumVault**: Rust-native secrets management
- **Vapora**: Complete development and orchestration
- **Provisioning**: Independent enterprise IaC
Synergies emerge with combined adoption, but are not required.
---
*Document generated: 2026-01-22*
*Type: info (complete strategic positioning)*
Reference in New Issue View Git Blame Copy Permalink