--- tags: journal --- # sunday, may 11th, 2025 - scaffolded [cichlid](https://github.com/cichlid-io/cichlid) minion as a rust binary. cichlid is a modernised replacement for rubberneck orchestration with a focus on hardened/pq security and decentralised configuration and control. - added a tls api server to cichlid in order to inject and/or observe configuration directives and deployment status - added background workers to cichlid to action/implement or verify status of queued directives - added certificate generation to cichlid with support for - rsa & ecdsa certs using built-in, rust-native certgen - any pq signature algorithm supported by the installed version of oqs using *shell out* to the openssl cli and the *oqs provider* *[api]: application programming interface *[ecdsa]: elliptic curve digital signature algorithm *[oqs]: open quantum safe *[pq]: post quantum *[rsa]: rivest shamir adleman *[tls]: transport layer security