Cloud Architect & SRE based in QuΓ©bec, Canada π¨π¦ β originally from SΓ£o Paulo, Brazil π§π·, with a chapter in Toulouse, France π«π·.
I've been in IT since 2008 β started deep in Linux sysadmin, moved into containerization and automation, and ended up obsessed with platform engineering and GitOps. Over 15 years I've designed infrastructure across Brazil, France, and Canada, worked with payment security (PCI-DSS), migrated monoliths to microservices, and built CI/CD pipelines that actually work.
These days I spend most of my time on Kubernetes internals, Go microservices, DevSecOps pipelines, and running a personal K3s home lab as a playground for everything I want to learn properly.
I write about DevOps, SRE, and platform engineering in Portuguese at capivaracode.com.
[
// Cloud & Orchestration
"AWS", "Kubernetes", "K3s", "OpenShift", "EKS", "ECS Fargate", "ArgoCD", "Helm",
// IaC & Automation
"Terraform", "Ansible", "Puppet", "AWS CDK (TypeScript)", "GitOps",
// CI/CD & DevSecOps
"GitHub Actions", "GitLab CI", "Semantic Release", "Trivy", "Cosign", "SBOM",
// Languages
"Go", "Bash", "Python", "TypeScript",
// Databases & Messaging
"PostgreSQL", "Redis", "NATS", "etcd",
// Security & Compliance
"PCI-DSS", "ISO 27001", "SOPS", "Sealed Secrets", "Vault", "cert-manager",
// Observability
"Prometheus", "Grafana", "Loki", "kube-prometheus-stack",
// Linux
"RHEL", "Debian", "Ubuntu", "Nginx", "Traefik", "HAProxy", "MetalLB",
]
A personal microservices platform running on a K3s home lab. Pure GitOps: every change goes through GitHub β ArgoCD β cluster. Each service is a Go + Gin microservice with its own CI/CD pipeline, Helm chart, and semantic versioning.
| Repo | What it is |
|---|---|
| observatory | Platform docs & shared configs |
| observatory-auth-svc | JWT/OIDC auth service β Go + Gin + Redis |
| helm-charts | Helm chart registry (GitHub Pages) |
| k8s-home-lab | K3s cluster GitOps config |
- Blog β capivaracode.com
- LinkedIn β linkedin.com/in/lucio-carvalho-jr-58a34322