Source for postoaklabs.com — institutional advisory and interactive intelligence tools for payments engineers, treasury teams, and compliance professionals.
🏛️ Institutional Advisory ⛓️ Blockchain & DLT 💳 A2A Payments 📡 Zero APIs 💻 Static HTML
- A2A payment infrastructure — strategy, workflow, rail comparison, ISO 20022 integration, and TMMF settlement modeling
- Enterprise blockchain advisory — architecture guidance and worked examples across Besu, Canton, Corda, and Hyperledger Fabric
- Stablecoin & CBDC strategy — MiCA / GENIUS Act issuer readiness, tokenized RWA compliance, cross-border settlement
- Regulatory intelligence — DORA, Basel IV, FAPI, CFPB 1033, EU AI Act, FATF sanctions, KYB/AML, VASP Travel Rule
- Agentic payment policy (AP2) — mandate builder, guardrail designer, BaaS infrastructure policy, AML rule builder
- Interactive demos — 35+ browser-based tools covering FX netting, fraud risk, nostro optimization, embedded lending, VRP sweep logic, and more
postoaklabs/
├── index.html ← Homepage
├── *.html ← Site pages (A2A, blockchain, advisory, glossary, …)
├── demos/ ← 35+ self-contained interactive tools
├── sitemap.xml ← XML sitemap
├── robots.txt ← Crawler directives
├── llms.txt ← LLM-readable site summary
├── manifest.json ← PWA manifest
├── .htaccess ← HTTPS, 301 redirects, security headers
├── .github/ ← CI workflow + link-checker script
├── .htmlvalidate.json ← HTML validation ruleset
└── .deployignore ← Paths excluded from DreamHost upload
Every push to main validates and deploys automatically.
| Trigger | Result |
|---|---|
Push to main |
Validate → deploy |
Pull request to main |
Validate only |
| Manual run (Actions → Run workflow) | Validate → deploy |
Steps: secrets check → SSH key install → connectivity test → rsync dry run → rsync live deploy → smoke test.
The deploy is additive only (rsync without --delete) — files on the server but absent from this repo are left untouched.
# Edit files, then:
git add -A
git commit -m "describe the change"
git push origin mainPreview locally: open .html files in a browser, or python3 -m http.server.
Both checks run before every deploy and must pass.
HTML — html-validate with the ruleset in .htmlvalidate.json. Errors on broken markup only; not a style or accessibility linter.
Internal links — .github/scripts/check-links.py verifies every internal href/src resolves to a real file. External links are listed but never fail the build.
Run locally:
npx --yes html-validate@9 "**/*.html"
python3 .github/scripts/check-links.pyExpand for SSH key + DreamHost secret configuration
In the DreamHost panel: Websites → Manage Users → edit the user → set account type to "Shell". rsync requires SSH/shell access — SFTP-only will not work.
ssh-keygen -t ed25519 -f dreamhost_deploy -C "github-actions-deploy" -N ""Append dreamhost_deploy.pub to ~/.ssh/authorized_keys on the server, or paste it into the SSH-key field in the panel.
Settings → Secrets and variables → Actions → New repository secret:
| Secret | Value |
|---|---|
DH_SSH_KEY |
Full contents of the private key file dreamhost_deploy |
DH_SSH_USER |
DreamHost shell username |
DH_SSH_HOST |
DreamHost server hostname (visible in panel under Manage Users) |
DH_WEB_ROOT |
Absolute path to the web root, e.g. /home/USERNAME/postoaklabs.com |
DH_SITE_URL |
Full site URL, e.g. https://postoaklabs.com |
Once secrets exist, the next push to main deploys automatically.
If GitHub Actions is unavailable, upload everything except paths in .deployignore to the DreamHost web root via any SFTP client.
- postoaklabs.com — live site
- Post Oak Labs — institutional advisory
- AINumbers.co — fintech intelligence suite (sister property)
© Post Oak Labs. All rights reserved.