Now
Updated March 2026 · what is this?Building
Working on Propeller at Abstract Machines — a WebAssembly orchestrator that deploys workloads across the cloud-edge continuum, from bare-metal servers down to Zephyr RTOS microcontrollers. The Go manager schedules tasks and the Rust proplet workers execute them via Wasmtime, pulling images from OCI registries over MQTT. The interesting current work is the TEE runtime: decrypting and running encrypted WASM inside a Trusted Execution Environment, so clients can verify their code ran untampered. We also have federated learning built in — training ML models across distributed edge nodes without the raw data ever leaving the device.
Learning
Going deep on the WASM component model and how it changes the trust boundary between a host runtime and guest modules — relevant directly to the TEE work. I'm also working through the Confidential Containers attestation stack: how a Key Broker Service and Attestation Agent cooperate to release secrets only to verified enclaves. On the Rust side, learning to write async MQTT clients that stay sub-1 MB resident on ARM Cortex-M4. The constraint forces clarity that you don't get writing services for cloud VMs.
Thinking about
Whether the computer vision pipelines that currently require an NVIDIA GPU in a lab can be made to run on a $10 ARM device in a field. My first-author work modified YOLOv5s with Transformer encoder blocks and BiFPN to detect small pest birds in agricultural imagery — a 4.8% mAP gain at only 4ms extra inference. The harder follow-on question is deployment: Propeller's WASI-NN integration means a WASM-packaged model can be dispatched to a constrained edge node the same way you'd schedule any other workload, with 95% device compatibility across ARM hardware. The use case I keep returning to is African smallholder agriculture — early pest and drought stress detection that doesn't require cloud connectivity or expensive hardware, just a cheap SBC and an open orchestration layer.