frontpage.

We’ve been managing web infrastructure for a long time. For most of that time, certificate management meant buying a cert, copying it to wherever it needed to go, and setting a calendar reminder. That works when certificates last a year. It stops working when lifetimes drop to 47 days.

Certbot is the obvious answer but it doesn’t cover everything. It requires ACME on each server, which means each server needs to be internet-reachable or have DNS provider access. That rules out Windows servers, JKS keystores, and appliances that can’t run Certbot or speak ACME at all.

CertKit handles ACME centrally. A source-available Go agent runs on each server and handles deployment, including Windows, JKS, and appliances via custom file destinations and post-deploy commands. Validation uses a delegated CNAME so we never need your DNS provider credentials.

We just wrapped up our beta and launched today. Happy to answer any questions.

https://www.certkit.io/

Show HN: Lit-CLI – a Rust CLI tool to scaffold and manage Lit projects

Trump Always Chickens Out

We've raised $17M to build what comes after Git

Observers Are All You Need: How Observer-Synchronization Creates All of Physics

Show HN: Yeah Another Htop for Agents

What is RISC-V and why it matters to Canonical

Show HN: Say what matters to you, get a diversified portfolio that reflects it

Building a Rust Runtime for TypeScript

AI Dance Generator: Create Viral Dance Videos from Photos

Show HN: Wish, the highest level programming language

Open Source Security at Astral

Vinyl Cache and Varnish Cache

Investigating Split Locks on x86-64

Geneva Forecasting API: classical time-series forecasting via REST API

'Frontline like Terminator':Fighting robots give Ukraine hope in war with Russia

Compare harnesses not models: Blitzy vs. GPT-5.4 on SWE-Bench Pro

Reproducibility and robustness of economics and political science research

ICE acknowledges it is using powerful spyware

Watching sunlight turn into fuel and oxygen, in real time

F-35 Got Hit

Show HN: Agentic Context Framework – The missing context layer

Doritos at $7 a bag ended up costing PepsiCo billions

Show HN: PII-hound – A fast, dependency-free PII scanner in Go

Databricks co-founder wins prestigious ACM award, says 'AGI is here already'

Investing in GitButler

Brutalist Architecture in Korea

I tried to create my own security agent

Data Centers and the Abuse of Secrecy

90k People Got Fired. The Stock Went Up

Tailscale's Pricing v4

Show HN: CertKit for automating SSL certs to Windows, JKS, and appliances