Blog
PinnedHow Shurli's engineering principles emerged from real development conversations. The OpenClaw origin story, privacy as infrastructure, and lessons from SuperMesh.
Parallel dial racing, zero-dependency STUN, reachability grades, and graceful network switching. Tested on satellite, terrestrial, 5G CGNAT, and wired Ethernet with real latency data.
Makefile automation, PAKE-secured invite/join handshake, and protocol-level DHT namespace isolation. Three foundational items shipped before Batch I.
Opt-in Prometheus metrics endpoint, custom shurli metrics, structured audit logging, and free libp2p built-in metrics. Zero overhead when disabled.
80.3% combined test coverage with Docker integration tests and a post-phase security audit that caught 10 issues.
Long-running daemon with REST API over Unix socket. Manage proxies, peers, and services programmatically.
Local status command, relay health check endpoint, and non-interactive pairing for Docker and CI/CD pipelines.
AutoNAT v2 for per-address reachability, QUIC-first transport ordering, and UserAgent identification between peers.
Automatic config rollback, commit-confirmed pattern, and systemd watchdog integration for unattended recovery.
Named sentinel errors, structured logging with log/slog, and build version identification across all binaries.
Shurli connections now retry automatically with exponential backoff. Network drops recover without intervention.