Homelab AI Dev Platform: OpenCode + GitOps for Safer Container Updates

✍️ OpenClawRadar📅 Published: June 16, 2026🔗 Source
Homelab AI Dev Platform: OpenCode + GitOps for Safer Container Updates
Ad

One homelab operator built an AI development platform around OpenCode's webserver mode, gating AI-generated code behind PR reviews and deploying via GitOps. The goal: reduce the manual overhead of maintaining a dozen Docker Compose stacks while keeping unreviewed code off production.

Setup

The platform runs on a simple VM on TrueNAS with basic dev tooling. OpenCode is installed as a systemd unit, exposing a web UI with a built-in terminal, file browser, Git diffs, and Git worktree support for parallel coding sessions. The server gets its own user on the Git server with dedicated SSH keys — it can clone projects and push branches, but cannot push directly to the deploy branch.

The VM has internet access and Git server connectivity, but no network access to the actual services. This minimizes blast radius, allowing the author to grant root access to OpenCode when it needs to install build tools or test dependencies.

Workflow

  1. Plan the feature or improvement in OpenCode: spec, implementation plan, self-reviews.
  2. Test or verify changes when possible.
  3. Iterate with OpenCode on things that need adjustment.
  4. OpenCode pushes changes to a feature branch.
  5. Owner opens and merges a PR after review.
  6. GitOps takes over: Arcane for Docker service changes, GitOps plugin for Home Assistant config, Cloudflare Pages workers for blog updates.
Ad

Concrete Wins

The most impactful use case so far: container updates. Previously, the author spent hours per update cycle reading release notes for each service, checking for breaking changes, running updates, and manually verifying services. Now OpenCode produces a summary of release notes in minutes, making version upgrades faster and safer. The AI has also added healthchecks to most containers, speeding up issue detection.

Missing Piece: CI Feedback

The setup lacks CI integration. On GitHub, the author would point a coding agent at Actions logs to diagnose failing tests, linter errors, stack traces, and IaC plan changes. Forgejo (the self-hosted Git server) does not expose job logs through the public API, though undocumented APIs exist. The author considers this the main gap.

Bottom Line

This is a pragmatic, security-conscious homelab AI platform. It lets the owner make infrastructure changes from any device (including phone) without giving AI direct access to production services. The friction of PR review and the sandboxed VM make it safe enough for personal use while highlighting the gap in CI feedback for self-hosted Git servers.

📖 Read the full source: HN AI Agents

Ad

👀 See Also