Skip to content
View Ruanyuxi1337's full-sized avatar

Block or report Ruanyuxi1337

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Ruanyuxi1337/README.md

Ruanyuxi 🌐

AI Platform & Infrastructure Engineer | Security Researcher

Building reliable, high-performance, and secure environments for Autonomous Agents.


πŸš€ About Me

I am an AI Platform & Infrastructure Engineer and Security Researcher specializing in autonomous agent runtimes, sandbox escape prevention, high-performance API gateways, and anti-detection automation.

Unlike traditional developers, I adopt a strictly AI-Native & Vibe Coding Workflow, leveraging agentic loops to accelerate engineering iteration while maintaining institutional-grade robustness in testing, sandboxing, and deployment.

  • πŸ—οΈ AI Infrastructure: Designing sandboxed runtimes (Node.js/Docker) and dual-SQLite messaging conduits.
  • ⚑ Backend Engine: Creating concurrent, rate-limited FastAPI gateway routers and Redis distributed locking states.
  • πŸ”’ Offensive Security & Evasion: Advanced binary program analysis, IDA Pro decompilation, and spoofing browser fingerprinters (TLS/Canvas/WebGL) to bypass cloud WAFs.

πŸ› οΈ Tech Stack & Tooling

  Languages         : Python, Go, Node.js/TypeScript, C++, Bash
  AI Engine         : ReAct Loop, MCP (Model Context Protocol), Graph of Agents, Prompt Engineering
  Platform & Cloud  : Docker, Docker Compose, AWS (EC2, VPC, SG), Cloudflare (Workers, WAF, DNS)
  Data & Cache      : Redis (Lua locking, sliding rate-limiters), PostgreSQL, SQLite, SQLAlchemy 2.0
  Security Auditing : IDA Pro, Ghidra, Inline Hooking (Trampoline), Web fingerprint spoofing

🎨 AI-Native Engineering Workflow

I design systems by orchestrating agents and enforcing strict human-in-the-loop verification policies:

β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”      β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”      β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”
β”‚ Requirement Analysis β”‚ ───> β”‚ Task Decomposition Plan β”‚ ───> β”‚ Claude Code & Cursor    β”‚
β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜      β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜      β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”¬β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜
                                                                            β”‚
                                                                            v
β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”      β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”      β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”
β”‚ Production Deploy    β”‚ <─── β”‚ Multi-Agent E2E Testing β”‚ <─── β”‚ Human Approval Gate     β”‚
β”‚ CF WAF + AWS EC2     β”‚      β”‚ Pytest / Ruff Checks    β”‚      β”‚ (Permission Hooks)      β”‚
β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜      β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜      β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜

πŸ“ Featured Projects

Production-grade asynchronous AI ReAct loop gateway service.

  • Concurrency Safeguard: Leverages Redis distributed locks via Lua scripts to stop race conditions on conversational states.
  • SSE Stream & Connection Reclamation: Catches asyncio.CancelledError on client disconnection to instantly propagate termination signals up to LLM queries and release computing quotas.
  • Observer RAG Evaluation: Computes real-time token intersection recall indexes dynamically in an asynchronous queue.

Hardened agent container hosting runtime based on Node.js and Docker SDK.

  • Directory Traversal Fix: Implemented the isSafePath verification method in TypeScript MCP handler to stop arbitrary files from escaping out of /workspace/agent.
  • Zero-Contention IPC: Dual-DB architecture (inbound.db / outbound.db) separating reader/writer processes to scale container tasks concurrently.

Anti-fingerprinting, high-entropy web scraping automation engine.

  • Low-Level Spoofing: Rebuilt core Selenium capabilities using Camoufox browser to fake JA3/JA4 TLS handshake states, Canvas renders, and audio entropy.
  • Bezier Trajectory Profiling: Custom interpolation simulating muscle deceleration to bypass Cloudflare behavioral anomaly WAF checks.

πŸ“ˆ GitHub Stats

Ruanyuxi's GitHub stats Top Langs

GitHub Streak


πŸ“¬ Connect With Me

Popular repositories Loading

  1. gamesense.pub gamesense.pub Public

    C++

  2. agent-service agent-service Public

    Python

  3. nanoclaw nanoclaw Public

    TypeScript

  4. claude-code claude-code Public

    Python

  5. Ruanyuxi1337 Ruanyuxi1337 Public

    Python

  6. SkillSpector SkillSpector Public

    Forked from NVIDIA/SkillSpector

    Security scanner for AI agent skills. Detect vulnerabilities, malicious patterns, and security risks.

    Python