Running untrusted code safely is a solved problem—if you're willing to use WebAssembly. In our next release of ServiceRadar, we will be launching a new extensible plugin system based on the Wazero WASI runtime to provide a plugin system that's secure, safe, powerful, and easy to use.

In observability, complexity is the enemy. Our previous architecture asked a React app to hit multiple APIs through Nginx/Kong for JWT verification, while a standalone auth service issued JWKS/OAuth tokens. We'd been wrestling with this stack for a while—slow initial renders, state management sprawl, and the constant churn of keeping dependencies current across a deep node_modules tree.

React2Shell forced the conversation we'd been putting off. The vulnerability itself was bad enough, but the follow-up CVEs and the broader pattern they revealed made us take a harder look at what we were signing up for. React is a mature framework carrying years of accumulated complexity and technical debt. That's not a criticism—it's the natural arc of any widely-adopted JS project. But for a team shipping observability tooling, betting on a stack where the next critical CVE feels like a matter of "when" rather than "if" wasn't a trade-off we wanted to keep making.

The platform takes a different shape:

• Phoenix + LiveView serves as the experience layer
• SRQL (Rust) powers query translation and execution
• CloudNativePG with TimescaleDB + Apache AGE provides a single unified data store
• core-elx orchestrates ingestion, identity reconciliation (DIRE), and control-plane workflows

Our network discovery workflow used to take longer than a transatlantic flight. A full sweep across 21,000 devices required 19 hours with the TCP connect() scanner we shipped in early 2025. That left ServiceRadar’s inventory stale by the time scans finished. Internally, we challenged ourselves to deliver near-real-time visibility—and the result is a Go-powered SYN scanner that now finishes the same job in under one second.

Note: This post references the legacy standalone snmp-checker package. ServiceRadar now ships SNMP collection embedded in serviceradar-agent instead.

Network monitoring doesn't have to be complicated—especially when you're managing devices like the Ubiquiti UniFi Dream Machine Pro (UDM-Pro). With ServiceRadar's SNMP Poller feature, you can easily keep tabs on your router's performance, like tracking bandwidth on your primary WAN interface, without breaking a sweat. In this post, we'll walk you through enabling SNMP on your UDM-Pro, finding the right OID for your WAN interface using a handy open-source tool, and setting it up in ServiceRadar. Whether you're a seasoned network admin or just getting started, this guide will show you how simple it can be to gain real-time visibility into your network.

Let's dive in and see how ServiceRadar makes monitoring your Ubiquiti gear a breeze!

We’re thrilled to launch the ServiceRadar blog—a space where we’ll share updates, insights, and technical deep dives about our distributed network monitoring application, ServiceRadar. Whether you’re a network administrator, a DevOps engineer, or just curious about cutting-edge monitoring solutions, this blog will keep you in the loop on how ServiceRadar is evolving to meet the challenges of modern infrastructure.

This is the beginning of a journey to explore how ServiceRadar empowers you to monitor services in hard-to-reach places or constrained environments with real-time insights and robust alerting. Let’s dive into what ServiceRadar is all about and what you can expect from this blog.