Vadim Ferderer
– Code is perfect when nothing can be taken away.

Latest Articles

Containing the Blast Radius: Hardening WSL2 for AI Coding Agents

Vadim Ferderer · · ~1660 words

The LiteLLM supply chain attack exposed a risk most developers running AI agents haven't thought through: a compromised dependency doesn't need to escalate privileges — it already has your source code, SSH keys, and an unobstructed path to the internet. Four layers of hardening for local AI agent workloads on WSL2: interop lockdown, scoped filesystem access via bind mounts, VS Code remote isolation over SSH, and uid-based outbound traffic restriction via nftables and Squid.

ETF-Grundlagen: Der ehrliche Praxisguide

Vadim Ferderer · · ~4600 words

ETF-Praxisguide ohne Affiliate-Links: Konkrete ETF-Empfehlungen mit 5-Jahres-Trackingdifferenz, Vorabpauschale 2026, Broker-Vergleich und Steuer-Basics. Alles was Einsteiger wirklich wissen müssen.

Why the Boring Portfolio Wins: Markowitz vs. Black-Litterman vs. Rule-Based

Vadim Ferderer · · ~2500 words

In a 20-year ETF benchmark, a simple rule-based allocation outperformed Markowitz and Black-Litterman in CAGR while trading less and staying aligned with client mandates. Optimization improved Sharpe ratio — but failed the production test. The constraints of retail wealth management aren't obstacles to performance — they define what optimal actually means.

Featured Projects

Recursive Modulith

#project-structure · #spring-boot · #best-practices

A pragmatic, recursive package structure for Spring Boot. Same pattern at every level: config/ + common/ + domain. With ADRs, arc42 docs, and CI-verifiable rules via Spring Modulith + ArchUnit.

Naked Decision Process

#project-management · #methodology · #decision-tree

Process is perfect when nothing can be taken away. A subtractive methodology that strips software development process down to what your team actually needs.