Hacker News: ajayvk

GitHub's Fake Star Economy

ajayvk — Tue, 14 Apr 2026 19:22:35 +0000

Article URL: https://awesomeagents.ai/news/github-fake-stars-investigation/

Comments URL: https://news.ycombinator.com/item?id=47770182

Points: 4

# Comments: 3

New comment by ajayvk in "Ask HN: What Are You Working On? (March 2026)"

ajayvk — Mon, 09 Mar 2026 01:21:18 +0000

Have been building a project https://github.com/openrundev/openrun/ which aims to make it easy for teams to easily deploy internal tools/webapps. While creating new apps has gotten easier, securely deploying them across teams remains a challenge. OpenRun runs as a proxy which adds SAML/OAuth based auth with RBAC. OpenRun deploys containerized apps to a single machine with Docker or onto Kubernetes.

Currently adding support for exposing Postgres schemas for each app to use. The goal is that with a shared Postgres instance, each app should be able to either get a dedicated schema or get limited/full access to another app's schema, with row level security rules being supported.

New comment by ajayvk in "Migrating from Heroku to Magic Containers"

ajayvk — Sat, 07 Mar 2026 16:49:10 +0000

Cloud Run makes lots of sense when running lots of small apps, apps scale to zero automatically.

I have been building https://github.com/openrundev/openrun which provides similar scale down to zero functionality, on a single machine with Docker or on top of Kubernetes.

New comment by ajayvk in "State of Show HN: 2025"

ajayvk — Tue, 17 Feb 2026 17:10:21 +0000

Another recent article on this topic https://www.arthurcnops.blog/death-of-show-hn/

Show HN: OpenRun – Declarative Deployments to Docker or Kubernetes

ajayvk — Tue, 10 Feb 2026 19:41:37 +0000

I have been building https://github.com/openrundev/openrun for the last few years and recently added Kubernetes support https://openrun.dev/docs/container/kubernetes. OpenRun is a declarative web app deployment platform, built for teams to deploy internal tools.

There are many tools which try to simplify application deployments, but not many support declarative deployments. Even if app sources are fetched from git, creating new apps or updating app config requires imperative commands. Kubernetes is the dominant declarative approach, but it takes too much YAML to manage an app with Kubernetes. OpenRun supports a limited use case, deploying web apps for internal users across a team. For that use case, it supports declarative deployments on top of Docker/Podman or Kubernetes, with a very simple config.

Some of the unique features of OpenRun are:

- All apps have a staging env, code and config changes are staged before being promoted to prod

- Supports OIDC/SAML integration, allowing you to control access to apps using RBAC policies

- Full solution which handles builds, CD and request routing. Does not require additional tooling like Jenkins/ArgoCD etc

OpenRun can run on a single machine, in which case it directly deploys the container to Docker/Podman. When deployed to Kubernetes, OpenRun builds the images using Kaniko and deploys apps as a Kubernetes deployment, using server side apply to make updates.

The whole Starlark based config for creating apps is just:

    app(path="/streamlit/uber", source="github.com/streamlit/demo-uber-nyc-pickups",
        spec="python-streamlit") # python-streamlit knows how route requests for Streamlit
    app(path="/myapp", source="github.com/example/example",
        spec="container") # container spec works for any app which has a Dockerfile

While mainly built for teams, OpenRun is the easiest way to deploy web apps and share them with friends and family https://openrun.dev/docs/use-cases/personal/. You can limit who has access to the apps using OAuth authentication.

Comments URL: https://news.ycombinator.com/item?id=46965662

Points: 21

# Comments: 0

New comment by ajayvk in "RIP Low-Code 2014-2025"

ajayvk — Mon, 26 Jan 2026 23:07:03 +0000

Authentication and authorization are important requirements for internal tools. Low-code platforms support authn/authz for app access. Building internal tools with code is much easier now with GenAI, but ensuring proper RBAC access controls remains a challenge.

I have been building https://github.com/openrundev/openrun to try and solve internal tooling deployment challenges. OpenRun provides a declarative deployment platform which supports RBAC access controls and auditing. OpenRun integrates with OIDC and SAML, giving your code based apps authn/authz features like low-code platforms.

New comment by ajayvk in "Ask HN: What Are You Working On? (Nov 2025)"

ajayvk — Mon, 10 Nov 2025 02:28:42 +0000

Building https://github.com/openrundev/openrun, a platform for declarative deployment of web apps.

OpenRun runs as a web server, which does GitOps driven app deployments. You can currently deploy apps on a standalone machine, on top of Docker/Podman. Working on adding support for deploying on top of Kubernetes. On Kubernetes, OpenRun will replace your build jobs (Jenkins/Actions etc), CD (ArgoCD etc) and IDP (Backstage etc). The same declarative config which works on a standalone machine will work on Kubernetes, with no YAML to maintain.

New comment by ajayvk in "Replacing a $3000/mo Heroku bill with a $55/mo server"

ajayvk — Wed, 22 Oct 2025 02:49:05 +0000

https://devpu.sh/ is another alternative, it has a nice UI built with Hypermedia (HTMX).

I am building https://github.com/openrundev/openrun/. Main difference is that OpenRun has a declarative interface, no need for manual CLI commands or UI operations to manage apps. Another difference is that OpenRun is implemented as a proxy, it does not depend on Traefik/Nginx etc. This allows OpenRun to implement features like scaling down to zero, RBAC access control for app access, audit logs etc.

Downside with OpenRun is that is does not plan to support deploying pre-packaged apps, no Docker compose support. Streamlit/Gradio/FastHTML/Shiny/NiceGUI apps for teams are the target use case. Coolify has the best support and catalog of pre-packaged apps.

New comment by ajayvk in "Python as a Configuration Language Using Starlark"

ajayvk — Fri, 17 Oct 2025 19:40:49 +0000

This post looks at the experience with using Starlark as against YAML for deployment configuration.

Starlark can result in much more concise and flexible config. It does require extra work on the part of the developers who are writing the code (to read the config), but it can make things easier for end users writing the config.

Python as a Configuration Language Using Starlark

ajayvk — Fri, 17 Oct 2025 19:36:35 +0000

Article URL: https://openrun.dev/blog/starlark/

Comments URL: https://news.ycombinator.com/item?id=45621063

Points: 2

# Comments: 1

New comment by ajayvk in "Python as a Configuration Language Using Starlark"

ajayvk — Thu, 16 Oct 2025 19:08:25 +0000

There has been lots of discussions about the issues with YAML and other config languages. This post looks at the experience with using Starlark as the configuration language for infrastructure deployment using OpenRun.

Starlark can result in much more concise and flexible config for end-users. It does require extra work on the part of the developers who are writing the code which reads the Starlark based config.

Python as a Configuration Language Using Starlark

ajayvk — Thu, 16 Oct 2025 19:02:41 +0000

Article URL: https://openrun.dev/blog/starlark/

Comments URL: https://news.ycombinator.com/item?id=45609363

Points: 4

# Comments: 1

New comment by ajayvk in "Scaling request logging with ClickHouse, Kafka, and Vector"

ajayvk — Mon, 13 Oct 2025 23:24:09 +0000

Yes, had similar questions. Wouldn't tuning the settings for the buffer table have helped avoid the TOO_MANY_LINKS error?

New comment by ajayvk in "AWS Service Availability Updates"

ajayvk — Mon, 13 Oct 2025 23:06:14 +0000

If you are fine with running lots of apps on one beefy machine, the project I am building https://github.com/openrundev/openrun provides a similar abstraction as App Runner and Cloud Run (automatically deploy web apps from source). It supports scaling down to zero, but does not yet scale an app beyond one container.

New comment by ajayvk in "Ask HN: What are you working on? (October 2025)"

ajayvk — Mon, 13 Oct 2025 03:37:49 +0000

I have been building OpenRun, a declarative web app deployment platform https://github.com/openrundev/openrun. It is an open source alternative to Google Cloud Run and AWS App Runner, running on your own hardware.

OpenRun allows defining your web app configuration in a declarative config using Starlark (which is like a subset of Python). Setting up a full GitOps workflow is just one command:

  openrun sync schedule --approve --promote github.com/openrundev/openrun/examples/utils.star

This will set up a scheduled sync, which will look for new apps in the config and create them. It will also apply any config updates on existing apps and reload apps with the latest source code. After this, no further CLI operations are required, all updates are done declaratively. For containerized apps, OpenRun will directly talk to Docker/Podman to manage the container build and startup. There are lots of tools which simplify web app deployment. Most of them use a UI driven approach or an imperative CLI approach. That makes it difficult to recreate an environment. Managing these tools when multiple people need to coordinate changes is also difficult.

Any repo which has a Dockerfile can be deployed directly. For frameworks like Streamlit/Gradio/FastHTML/Shiny/Reflex/Flask/FastAPI, OpenRun supports zero-config deployments, there is no need to even have a Dockerfile. Domain based deployment is supported for all apps. Path based deployment is also supported for most frameworks, which makes DNS routing and certificate management easier.

OpenRun currently runs on a single machine with an embedded SQLite database or on multiple machines with an external Postgres database. I plan to support OpenRun as a service on top of Kubernetes, to support auto-scaling. OpenRun implements its own web server, instead of using Traefik/Nginx. That makes it possible to implement features like scaling down to zero and RBAC. The goal with OpenRun is to support declarative deployment for web apps while removing the complexity of maintaining multiple YAML config files. See https://github.com/openrundev/openrun/blob/main/examples/uti... for an example config, each app is just one or two lines of config.

OpenRun makes it easy to set up OAuth/OIDC/SAML based auth, with RBAC. See https://openrun.dev/docs/use-cases/ for a couple of use cases examples: sharing apps with family and sharing across a team. Outside of managed services, I have found it difficult to implement this type of RBAC with any other open source solution.

New comment by ajayvk in "Show HN: OpenRun - Deploy web apps declaratively"

ajayvk — Sat, 11 Oct 2025 16:31:08 +0000

Show HN: OpenRun - Deploy web apps declaratively

ajayvk — Sat, 11 Oct 2025 16:04:39 +0000

OpenRun allows defining your web app configuration in a declarative config using Starlark (which is like a subset of Python). Setting up a full GitOps workflow is just one command:

  openrun sync schedule --approve --promote github.com/openrundev/openrun/examples/utils.star

There are lots of tools which simplify web app deployment. Most of them use a UI driven approach or an imperative CLI approach. That makes it difficult to recreate an environment. Managing these tools when multiple people need to coordinate changes is also difficult.

Kubernetes is the standard for declarative deployment. OpenRun supports only web apps, there is no plan to add support for deploying databases or queues etc with OpenRun. That makes OpenRun much simpler, a single binary which implements the web server and application server with GitOps driven deployments. Deploying and managing stateful database type services is much more complex. Declarative web app deployment is much easier.

The goal with OpenRun is to support declarative deployment for the web apps while removing the complexity of maintaining multiple YAML config files. See https://github.com/openrundev/openrun/blob/main/examples/uti... for an example config, each app is just one or two lines of config.

OpenRun makes it easy to set up OAuth/OIDC/SAML based auth, with RBAC. This makes it possible to share your apps securely, see https://openrun.dev/docs/use-cases/ for a couple of such use cases. Outside of managed services, I have found it difficult to implement this type of RBAC with any other open source solution.

Comments URL: https://news.ycombinator.com/item?id=45550188

Points: 3

# Comments: 2

New comment by ajayvk in "Traefik's 10-year anniversary"

ajayvk — Sat, 27 Sep 2025 15:09:30 +0000

I have been building an app deployment service https://github.com/openrundev/openrun.

For the use case of network routing for services running in containers, OpenRun provides a simpler abstraction. It does the container management and the network proxying.

New comment by ajayvk in "Cloud Run GPUs, now GA, makes running AI workloads easier for everyone"

ajayvk — Sat, 07 Jun 2025 20:55:41 +0000

Clace is built to run on a single machine without needing Kubernetes. The plan is to add support for Kubernetes hosting later, but running on one or a few machines should not required Kubernetes.

Clace is built for the use case of deploying internal tools, so it comes out of the box with CI/CD, auditing, OAuth etc. With Kubernetes, you need to glue together ArgoCD, an IDP etc to get the same.

New comment by ajayvk in "A masochist's guide to web development"

ajayvk — Fri, 06 Jun 2025 19:59:58 +0000

A recent improvement in import map support in the browser https://shopify.engineering/resilient-import-maps