Projects

Janus is a lightweight Go sidecar that runs alongside Traefik and bridges the gap between DevOps (who configures the proxy) and Developers (who need to understand what is exposed and how). It surfaces security gaps, detects active attacks, blocks hostile IPs, and delivers AI-powered threat intelligence — all from a single embedded dashboard. Features Security score gauge (0–100) with 30-day trend history Router vulnerability analysis with AI-powered insights via vLLM (Qwen2.5) Active IP defense (Shield) — auto-blocking on 403 thresholds with manual override Prison Guard — AI-driven post-ban monitoring and auto-unblock decisions Threat intelligence — Top-20 attacker analysis, GeoIP enrichment, hostile cluster detection Policy engine — middleware compliance checks, configuration drift detection Telegram alerts with configurable severity threshold SQLite persistence for audit history Dashboard Tab Description Dashboard Security score ring, router risk cards, Pulse Monitor, AI insights, config drift banner Policies Middleware policy definitions, compliance status, AI executive summary Shield Live blocked-IP list with 30-min sparklines and AI verdict badges Intelligence Top-20 threats with GeoIP, hostile cluster cards, downloadable Markdown threat report Architecture Janus sits inside the same Docker network as Traefik (proxy-network) and polls Traefik’s internal REST API. It never intercepts live traffic — it is a read-only observer paired with an active write path for the IP blocklist only. ...

Android app that extracts and interprets fiscal QR codes from multiple document sources — PDFs, gallery images, and camera photos — using the Appa8 QR Code API. Features Scan QR codes from PDF files, gallery images, or live camera Integrates with the Appa8 QR Code API for fiscal data processing Automatic photo orientation correction via EXIF metadata File size optimisation before upload Parses and displays structured fiscal information: Document type and dates Issuer and buyer details Tax breakdowns and totals Tech Stack Kotlin Jetpack Compose + Material 3 OkHttp 4.12 (networking) Gson 2.10 (JSON parsing) AndroidX ExifInterface 1.4 (image metadata) Requirements Android 7.0+ (API 24) with internet connectivity ...

HTTP service that reads and decodes QR codes from Portuguese fiscal documents (PDFs), returning structured JSON with issuer tax IDs, buyer information, document types, VAT lines, and totals. No PDF files are stored on the server — files are written to temporary OS storage, processed, and immediately deleted. Live Prodution Try it online — no account needed: qrcode.appa8.com Features PDF upload via HTTP multipart QR code detection across all pages ATCUD validation per AT specification Raw scan endpoint (/scan) and structured parse endpoint (/parse) Embedded Portuguese web interface Interactive OpenAPI 3.1 / Swagger documentation Docker and Portainer ready API Endpoints Endpoint Description POST /api/v1/document/scan Raw QR code content POST /api/v1/document/parse Structured fiscal data GET /api/v1/version Service metadata GET /health Health check GET /docs Swagger documentation Tech Stack Go Gin (HTTP framework) Huma v2 (OpenAPI/Swagger) gozxing (QR detection) poppler-utils / pdftoppm (PDF rendering) HTML + Tailwind CSS + Vanilla JS (frontend) Docker / Docker Compose Architecture Follows a simplified Domain-Driven Design with separate layers for configuration, domain entities, application services, infrastructure adapters, HTTP interfaces, and embedded UI. ...

AI-powered email automation and classification engine, part of the Appa8 AI Process Automation Hub. MailFlow ingests emails from IMAP or Microsoft 365, classifies them using a hybrid rule + LLM approach, automatically routes them to the correct folders, and provides full supervision via a web dashboard. Designed for on-premise deployments where data privacy is critical. Features IMAP and Microsoft Graph / Outlook ingestion RFC822 email parsing with attachment handling Hybrid classification: rule-based matching + local LLM validation (Qwen 2.5) Auto-move to classified folders PDF export with customisable path templates Invoice worker: PDF QR extraction and payment data parsing Learning Mode: human review and approval before filing Natural language search via Telegram (“send invoices from vendor X in January”) Encrypted credential storage (Fernet) Redis job queues with AOF persistence PostgreSQL persistence (async SQLAlchemy 2.0) Streamlit supervision dashboard Docker-based deployment with Traefik reverse proxy CI/CD via GitHub Actions + Portainer auto-deployment Architecture Email Inbox (IMAP / Microsoft 365) │ ▼ email-worker (poll, parse, route) │ ▼ Redis Queue │ ┌──────┴───────┐ ▼ ▼ ai-worker invoice-worker (LLM classify) (QR + finance) │ ┌────┴────────────────────┐ ▼ ▼ ▼ folder review-worker query-worker move (Learning Mode) (NL search) │ telegram-bot (approvals + search) Worker Description email-worker Polls IMAP / M365, routes by worker type ai-worker Main classification engine with Redis job processing invoice-worker Financial document extraction from PDF QR codes review-worker Learning Mode human review cards query-worker Natural language search processing telegram-bot User interface for commands and approvals Dashboard The Streamlit interface provides multi-tab supervision: ...

Docker Compose setup for MariaDB designed for Git-based deployment via Portainer. Enables fully automated container provisioning by pointing Portainer directly at a Git repository — no manual file uploads required. Features Git repository-based stack deployment via Portainer Custom MariaDB configuration (my.cnf, 50-server.cnf) Health check script for service readiness verification Environment variable management via .env template Proper network configuration for multi-stack setups Tech Stack MariaDB Docker / Docker Compose Portainer (container management) Shell scripting Author Ricardo Grangeia Senior Software Engineer Portugal ...

🏗️ Equipment Gest Assets A logistics, maintenance, and chain-of-custody tracking system for industrial and construction assets. 📋 Overview Equipment Gest Assets is designed to eliminate the “black hole” of equipment tracking in the construction and industrial sectors. It provides a centralized source of truth for every tool and machine in your fleet, ensuring managers know exactly where an asset is, who is responsible for it, and what its current operational health is. ...