1-day current streak·17-day longest streak
Hi, I'm Tuncay Ölmez Developer Tools Builder · Security-Focused CLI Maintainer · Computer Programming Student I build practical developer tools, CLI packages, web applications, automation workflows, and structured AI-assisted engineering…
Hi, I'm Tuncay Ölmez
Developer Tools Builder · Security-Focused CLI Maintainer · Computer Programming Student
I build practical developer tools, CLI packages, web applications, automation workflows, and structured AI-assisted engineering systems.




---
About me
I am a Computer Programming student at Ondokuz Mayıs University in Samsun, Türkiye.
My work focuses on developer tooling, web security, CLI design, practical automation, and local-first AI-assisted engineering workflows. I like projects with clear scope, testable behavior, readable documentation, and releases that can be explained.
AI is part of my workflow, but not an autopilot. I still own the scope, technical decisions, validation, release process, and project direction.
Current signal
txt
Focus Developer tooling, web security, AI workflows
Shipping npm packages, CLIs, web apps, prototypes
Learning SQL, algorithms, testing, architecture
Location Samsun, Türkiye
Currently building
next-secure-checkCodex Engineering Workflow PackPagonicNihongo LearnBioVoid
---
Featured projects
next-secure-check
Deterministic security checks for Next.js projects before PR or deploy. Built for practical review signals around leaked secrets, risky API routes, weak config, XSS patterns, raw SQL patterns, and missing safeguards.
Stack: TypeScript · Node.js · Next.js · Vitest · SARIF · GitHub Actions
Status: v0.3.0 on npm · rule-based · no AI at runtime
Links: Repository · npm
Codex Engineering Workflow Pack
Local-first workflow toolkit for disciplined Codex / AI-assisted development.
It structures AI coding around planning, worktree isolation, worker/reviewer flows, policy guardrails, adapter config, and review gates.
Stack: Node.js · JavaScript · CLI · npm · Git Worktree · Markdown
Status: v0.3.1-beta.0 on npm · Coordinator Mode · adapter config hardening
Links: Repository · npm · Release notes
Pagonic
Security-aware Python ZIP inspection and safe extraction toolkit. The core idea is simple: inspect archives before extracting them, with deterministic risk signals and safer extraction gates.
Stack: Python · ZIP tooling · CLI · pytest · optional PyQt6 GUI
Status: v0.3.0 public alpha
Links: Repository
Nihongo Learn
Japanese learning MVP for Turkish speakers with kana practice, SM-2 review logic, quizzes, XP/streak tracking, mini stories, and N5-style practice.
Stack: Next.js · TypeScript · Tailwind CSS · Zustand · Supabase plan
Focus: learning flow · frontend architecture · state management
Links: Repository
BioVoid
Experimental computational biology prototype for protein motion, geometry-based cavity analysis, Atlas indexing, and FastAPI/React exploration.
Stack: Python · Biopython · ProDy · SciPy · FastAPI · SQLite
Note: research-style prototype, not a clinical or diagnostic system
Links: Repository
setrathex portfolio
Personal portfolio site for presenting projects, learning path, technical direction, and public work.
Stack: Next.js · TypeScript · Tailwind CSS · Framer Motion
Live: setrathex.com.tr
Links: Repository
---
Languages and tools
Actively using: Python, TypeScript, JavaScript, Node.js, Next.js/React, Git/GitHub, SQLite
Tools: npm publishing, GitHub Actions, SARIF, Git worktree, CLI development, PowerShell, Linux, Vitest, pytest
Currently strengthening: SQL, algorithms and data structures, debugging, testing, code reading, documentation, software architecture
---
GitHub activity
---
What I am building toward
- Better security-focused developer tools for real project workflows
- Local-first AI-assisted engineering systems with clearer review gates
- Reliable CLI packages with tests, release notes, and practical docs
- Web apps that are small enough to ship and useful enough to maintain
- A stronger public portfolio around open-source projects and practical tools
Connect with me
Portfolio · LinkedIn · npm · [Email](mailto:[email protected])
Building practical developer tools, security-focused CLIs, and local-first AI-assisted engineering workflows.
-
next-secure-check ★ PINNED
Rule-based static security scanner for Next.js. Published on npm. CLI, GitHub Actions, SARIF output, preset-based scans.
TypeScript ★ 5 1mo agoExplain → -
Codex-Engineering-Workflow-Pack ★ PINNED
Local-first engineering workflow toolkit for Codex: skills, Coordinator Mode, worktree isolation, guarded dispatch, and parallel agent workflows.
JavaScript ★ 1 27d agoExplain → -
BioVoid ★ PINNED
Experimental computational biology prototype for protein motion, geometry-based cavity analysis, Atlas indexing, and FastAPI/React exploration.
Python ★ 3 2mo agoExplain → -
nihongo-learn ★ PINNED
Japanese-learning MVP for Turkish-speaking beginners, featuring kana practice, SM-2 reviews, A1 lessons, mini stories, N5 exam practice, and optional Supabase sync.
TypeScript ★ 3 2mo agoExplain → -
setrathex-portfolio ★ PINNED
Modern dark portfolio source for setrathex.com.tr built with Next.js, TypeScript, Tailwind CSS, and Framer Motion.
TypeScript ★ 3 2mo agoExplain → -
pagonic ★ PINNED
Security-aware Python ZIP inspection and safe extraction toolkit. Inspect before you extract.
Python ★ 1 1mo agoExplain → -
SetraTheXX
No description.
★ 3 1mo agoExplain → -
VoxCPM ⑂
VoxCPM2: Tokenizer-Free TTS for Multilingual Speech Generation, Creative Voice Design, and True-to-Life Cloning
★ 3 2mo agoExplain → -
Fabulous-Ripper ⑂
SketchFab Model & Texture Ripping Tool
★ 3 1y agoExplain → -
turkce-wordlist ⑂
Türk kullanıcıların parola seçimlerinin analizi için yapılmış bir çalışmadır
★ 3 5y agoExplain → -
claude-for-legal-TR ⑂
Yapılmaya Başlanılacak
★ 1 2mo agoExplain → -
odysseus-TR ⑂
Planlınacak
★ 0 1mo agoExplain →
No repos match these filters.