📍 Saint Petersburg, Russia | 🐍 Senior Python Developer & Tech Lead | 🔐 Security & MCP tooling

Senior Python Developer & Tech Lead — over a decade in software development, system integration, and IT consulting. Currently building hardened MCP servers, security tooling, and AI-agent infrastructure.

• 🔐 unix-pass-mcp — Hardened MCP server for the Unix pass password manager. Read-only by default; gated writes / git / destructive ops; 346 unit + 45 GPG integration tests.
• 💻 mcp-qemu-vm — MCP for QEMU virtual machines. Give an AI safe, fully-isolated computer access via a sandboxed VM.
• 🔍 security-audit — Local CVE / permissions / secrets scanner for developer workstations. CVSS-graded, audits OS + Python + Rust + Node deps, never uploads to the cloud.
• 💬 telegram-search — Read-only MCP exposing Telegram chat history to Claude or any MCP host. Keyword + global search, context-window expansion, no send capability.
• 🌐 whitelist-probe — Black-box reconstruction of an upstream/ISP domain whitelist by probing from a filtered mobile uplink.
• 📋 clipboard-relay — End-to-end-encrypted clipboard sync across machines via Git + GPG. Multi-key, auto-expiring, works on any Git host.
• 📍 users_geoposition — QR-based GPS capture for print-media analytics. FastAPI backend, XLSX output, no third-party tracking.
• 🧰 mcp-server-trello — MCP server for interacting with Trello boards from inside an AI agent.

📝 neanderthal.github.io — long-form posts on MCP architecture, security tooling, network reverse-engineering, and the occasional essay (English).

📡 Спазм мозга / @mind_cramp — Telegram channel since 2019. Daily-driver tool finds, AI/agents news, and rough-draft companions to the blog (Russian).

• Building MCP servers for everyday workflows — password store access, Telegram context, VM control
• Hardening agentic stacks — capability gates, path allowlists, audit logs, and sanitized errors so an LLM can touch real systems without becoming a foot-gun
• Leading engineering teams shipping Python in production — FastAPI backends, AWS / Azure infra, system integrations
• Working toward a Private Pilot License (PPL) — slow but coming

• unix-pass-mcp: Letting AI Agents Touch Your Password Store — Carefully — _2026-04-27
• I Spent a Weekend Reverse-Engineering My Mobile Carrier’s Whitelist — _2026-04-14
• QR Geoposition Tracker: Measuring Offline Engagement with GPS Precision — _2026-04-07
• Telegram-Search: Bringing Your Chat History to AI Agents — _2026-04-07