Available for projects  ·  Manzini, Eswatini

Software engineered
to ship.

Custom web applications, security audits, data science, and DevOps infrastructure for SADC organisations. Every project ships with a test suite, CI/CD pipeline, and deployment documentation.

Start a project View work Read case study
9 Security findings
54 Tests shipped
5 Live projects
0 Regressions
What we build

Full-stack from database
to deployment

End-to-end engineering — REST APIs, React UIs, ML models, Docker infrastructure, CI/CD pipelines, and security reviews. One engineer who owns the whole stack.

Web Applications

PHP 8 · React · FastAPI with MySQL or PostgreSQL. REST APIs, RBAC, JWT auth, WebSockets. From simple business tools to complex multi-role platforms.

Security Audits

Structural code audits for PHP, Python, and Node.js. OWASP Top 10, auth flows, secrets hygiene, injection surfaces, session management. Written report + reproducible fixes.

Data Science & AI

ARIMA · SARIMA · Prophet forecasting. CNN image classifiers (MobileNetV2). Monte Carlo simulations. Plotly Dash dashboards. FastAPI model serving. Calibrated on real datasets.

DevOps & Infrastructure

Docker Compose · Nginx reverse proxy · GitHub Actions CI/CD · Prometheus/Grafana monitoring. Blue-green deployments. Production-ready infrastructure from day one.

Business Software (SADC)

POS, booking systems, staff portals, inventory management. Built for businesses in Eswatini, South Africa, Botswana, and the wider SADC region.

Retainer & Maintenance

Monthly support for live systems. Bug fixes, small feature additions, dependency updates, priority response. Flat rate, no surprises.

How it works

No guesswork, no
scope creep

A repeatable process that produces predictable outcomes. You know the price, timeline, and deliverables before any work begins.

Scoping call

15 minutes, free. I understand the problem, technical constraints, and deadline. You get a realistic sense of what's buildable and at what cost.

Fixed proposal

Written proposal with exact scope, deliverables, and price in ZAR. No hourly ambiguity. No "we'll see how it goes." Valid 14 days.

Build with CI

Test-driven development, GitHub Actions from day one, daily commit visibility. You can see progress in the repository as it happens.

Delivery + handover

Full source code, docs, CI pipeline, deployment runbook. 30-day bug-fix warranty. You own everything — no lock-in.

Selected work

Projects built and
shipped in production

Five active repositories. Real deployments with live users, verified test suites, and documented security postures.

UEDF Sentinel v5.0

Audited

Command-and-control platform for drone fleet management. 27,900 lines, 16 MVC controllers, RBAC with 4 roles, TOTP 2FA, Merkle audit log, WebSocket telemetry. 9/9 findings resolved.

PHP 8MySQLWebSocketNATSAES-GCM
9findings resolved
22files patched
0regressions
Read security audit →

Agentic UAV Stack

Private

Autonomous drone platform. Three-tier DAL-A safety architecture: reactive (PX4), executive (Zig governor), advisory (AI router). AES-GCM-256 per-packet auth, 13-state EKF.

LANGZIG 0.14.0 / AARCH64
EKF13-STATE IMU/GPS/BARO
CRYPTOAES-GCM-256 PER-PACKET
TESTS58 / 58 PASS
Read case study →

Maize Classifier

AI/ML

Binary CNN for maize leaf disease detection. FastAPI inference server, React PWA. Blue-green zero-downtime deploy. MobileNetV2 backbone, calibrated confidence scores.

PythonMobileNetV2FastAPIPWA
Read case study →

Eswatini Macro Dashboard

Dissertation

National economic indicator forecasting. ARIMA/SARIMA/Prophet, Monte Carlo fiscal simulation (10k paths), 11 FastAPI endpoint groups, Docker Compose with 7 services.

PythonFastAPIProphetPlotly Dash
54pytest tests
100%pass rate
7services
Read case study →

Studio P Barbershop

Live

Production booking platform for Studio P, Manzini. OS-aware UI, parallel booking validation, Supabase RLS row-level security, 8 colour themes, React 19 + TypeScript.

React 19TypeScriptSupabaseVercel
Read case study →

BRT Platform

RAG

AI consulting MVP for SADC organisations. Hybrid dense+sparse retrieval (BGE-large + Splade, RRF fusion, MiniLM rerank), multi-tenant Qdrant, CircuitBreaker + SQLite WAL offline buffer.

PythonFastAPIQdrantBGE-large
3retrieval stages
RRFfusion ranking
Read case study →
By the numbers

Results that speak

Measured outcomes across every engagement — not estimates, not projections.

0 Security findings resolved
0 Automated tests shipped
0 Projects in production
0 Post-delivery regressions
Pricing

Transparent rates,
no surprises

All prices in South African Rand (ZAR). Fixed-scope quotes before work begins. Balance due on delivery. 30-day bug-fix warranty included.

Prices in ZAR · Rate: approx R18.50/USD · Quoted in ZAR at contract time
ServiceFrom (ZAR)Timeline
Web ApplicationR5,5002–4 weeks
Security Audit (report only)R3,7003–5 days
Security Audit (report + fixes)R6,5001–2 weeks
Data Science / ForecastingR1,480/hr · 10hr minVaries
AI / ML ModelR5,5002–4 weeks
DevOps / InfrastructureR4,6001–2 weeks
API Design & IntegrationR3,7001–2 weeks
Business Software (SADC)R3,7002–3 weeks
Hourly rateR850/hr
Retainer / maintenanceR950/moOngoing
R1,850

Starter deposit — small audits, bug fixes, single-feature builds

Contact to pay →
R5,500

Professional deposit — full-stack apps, audit + fixes, dashboards

Contact to pay →
Custom

Set your amount after a scoping call — Wise, PayPal, or EFT

Get quote →

Deposit constitutes acceptance of BRT Inc. Terms & Conditions. Balance due on delivery. 30-day bug-fix warranty on all fixed-scope projects. Payment via Wise (USD/ZAR), EFT, or PayPal. Governing law: Kingdom of Eswatini.

FAQ

Common questions

How long does a typical project take?
Web applications typically take 2–4 weeks. Security audits are 3–5 days for the report, 1–2 weeks for fixes. Data science and ML projects vary by dataset and model complexity. I give timeline estimates in the proposal and commit to them.
Do you work with clients outside Eswatini?
Yes. Most of my work is remote. I've worked with clients across the SADC region and accept international payments via Wise (USD/ZAR). Time zone is GMT+2 — well-aligned with South Africa, Europe, and the Middle East.
What's included in the 30-day warranty?
Any bug that prevents the delivered functionality from working as specified in the proposal. This covers defects in my code — not new feature requests or third-party library breakages outside my control.
Who owns the code when the project is done?
You do. Full intellectual property transfers to you on final payment. You receive the complete source code, all configuration files, and the CI/CD pipeline. No licensing fees, no lock-in.
Can you work with existing codebases?
Yes — security audits are done entirely on existing code, and I regularly add features or fix bugs in inherited PHP, Python, and React codebases. Send me a repo link and I'll scope it.
Do you offer the free initial assessment for security audits?
Yes. For PHP and Python codebases, I offer a free 15-minute assessment — I look at your code and tell you honestly whether I see risk areas and what a full audit would cost. No obligation. Email me to book one.
Get in touch

Let's build
something.

I respond within 24 hours. Available for fixed-scope projects and ongoing hourly engagements. No retainer required to start.

Email
charleskris9@gmail.com
LinkedIn
linkedin.com/in/charles-bartaria-377979385
WhatsApp
+268 7965 7744
GitHub
github.com/CBahtaria
Location
Manzini, Kingdom of Eswatini · GMT+2
Send enquiry → WhatsApp →