Declarative Infrastructure as Code for sovereign platforms
We deliver complete infrastructures as code — reusable modules for Proxmox, OpenStack, Kubernetes, Hetzner, IONOS, OVH and arbitrary on-premise APIs. Encrypted remote state under your control, workspaces, drift detection, plan reviews as pull requests and policy-as-code with OPA/Conftest or Sentinel.
Day-2 included: automated plan pipelines in GitLab CI, signed modules from internal registries, safe secret handling via OIDC logins (Keycloak/Authentik) instead of long-lived tokens, and disaster-recovery strategies for state backends.
Typical use cases: building sovereign multi-cluster platforms, hyperscaler exits with measurable migration phases, and reproducible setups for regulated workloads (BSI Grundschutz, ISO 27001, NIS2) — all fully auditable.