Systems Engineer · Tool Builder · Producer

GRIOGHAR

I build the low-level things other software stands on —
codecs, daemons, protocols, and the SaaS that ships them.

C++17 · Rust · Go · Swift · Kotlin · PHP · AWS · Security & Access

View the Work → The Story
GitHub LinkedIn SoundCloud Email
10+
Languages Shipped
25+
Years in the Field
AWS
SA Pro Certified
BPM in the Background

// whoami

Engineer who likes the hard layer.

I'm Grioghar Thomas-Baldwin — a solutions and support engineer by trade, a systems programmer by obsession. My day jobs have lived at the sharp end of access, security, and reliability: StrongDM, SentinelOne, and BlinkOps.

My side of the keyboard is lower level: a zero-dependency image codec, a from-scratch RDP server for macOS, a Docker auto-updater, a cross-platform iMessage archival suite, and two production PHP/MySQL SaaS platforms. When the compiler stops yelling, I make house music as DerGrioEnHousen.

Full Background →
Grioghar Thomas-Baldwin

Currently

  • Support Engineer @ BlinkOps
  • Shipping C++ & Go tools
  • Running CobbVision SaaS

// featured builds

Selected Work

A slice of the catalog. The full project index covers everything from infra and security tooling to MIDI visualizers.

Lang / Compilers

Sigil

A prototype AI-native programming language — capability-secure, effect-typed, contract-carrying. Designed to be written by AI and audited by humans; contracts proven away at compile time with Z3, then compiled to native code.

capabilitieseffect typesZ3-proven
Case study →Repo ↗
RustPrivate

Master Control Program

An agentic AI master-control hub with a Tron-styled persona, voice control, and multi-platform chat — built on a lean Rust core with a hybrid local-first / cloud compute router that reuses optimized C/C++ inference engines.

Rust workspacehybrid computeagentic
Overview →
Systems / Docker

Plex AMD VAAPI — the musl fix

A root-cause writeup + working Dockerfile for AMD hardware transcoding in Plex. Traced "no hardware acceleration" through the dynamic loader to an ABI mismatch — Plex's transcoder is musl, every mesa driver is glibc — and fixed it with an Alpine-built radeonsi driver.

musl vs glibcdlopen / patchelfVAAPI
Case study →Repo ↗
C++17

iMessage Exporter Redux

A cross-platform iMessage & SMS archival suite — desktop app, CLI, and an embeddable iOS library. Exports to HTML (five themes), PDF, JSON, and Android XML, with iCloud and Google Contacts, rich link previews, and statistics.

macOS / Win / Linuxread-only DBreleased
Case study →Repo ↗
C++17

lightpress

A zero-dependency image codec library. From-scratch JPEG/PNG encode+decode, EXIF stripping at the marker level, quality-preserving resize, and MP4/MOV container rewriting — SSIM-benchmarked against ffmpeg.

no dependenciesDCT / DEFLATESSIM tested
Case study →Repo ↗
Objective-C

macOS RDP Server

A lightweight RDP server daemon for macOS — H.264 hardware encode via VideoToolbox, per-session virtual displays, full HID injection, clipboard and audio redirection, and an optional DriverKit extension for login-window access.

VideoToolboxDriverKitlaunchd
Case study →Repo ↗
Go

Lighthouse

A maintained fork of Watchtower that carries the project forward after it went unmaintained upstream. Automates Docker base-image updates, drop-in compatible with existing config, with ongoing security hardening.

Dockerdrop-in compatiblemaintained fork
Case study →Repo ↗
C++

OBS MIDI Viz

Real-time MIDI visualizer plugin for OBS Studio: piano-roll waterfall, drum pads with 25 device presets, CC lanes, a live DJ-controller schematic, synth patch panels from SysEx dumps, and Ableton session view over OSC.

OBS pluginMIDI / SysEx / OSCGPU draw
Case study →Repo ↗
PHP 8Private

CobbVision

A production SaaS that ingests Cobb AccessPort ECU datalogs from Subaru vehicles, normalizes the dozens of column-name variants, and turns raw CSV into plots and diagnostics. Stripe billing, OAuth, REST API, and companion iOS/Android apps.

PHP / MySQLStripeREST API
Overview →
See All Projects →