software-engineering

Our organization has internal GitHub repositories. We use .NET. We would like to keep production secrets out of source control. At the moment, the developers are aware of the production secrets, but ...

React Server Components are now the default in Next.js and they’re shipping in TanStack Start. Whether you opted in or not, you’re going to encounter them in 2026. The good news: the TanStack approach makes RSCs feel like a tool you can opt-in for instead of a paradigm shift like in Next.js. Let’s look at RSCs in depth - Your component runs on the server. The server sends back the already-rendere…

After nearly 20 years leading teams in hospitality and logistics, I made a career change into software development. When it came time to build my portfolio, I made a deliberate choice: it would not be just a collection of screenshots and technology lists. It would be a working demonstration of how I think about software architecture. This is the story of how I built it, the architectural decision…

Modern Angular applications rarely need just a dropdown. In real projects, a multiselect dropdown usually sits inside something more important: filters, dashboards, reporting tools, permission editors, workflow screens, admin panels, and data-heavy forms where users need to search, group, select, clear, validate, and keep state consistent. That is the context behind Stackline Angular Multiselect …

The Problem We Were Actually Solving At Veltrix, we're known for our real-time treasure hunts – a complex feature that involves querying a massive graph database, processing high-frequency event streams, and returning results in under 100ms. However, when we started to onboard more clients and scale our infrastructure, our operators consistently hit the same problem: configuring the system to han…

Most n8n AI workflow tutorials end at "it worked in testing." The gap between a demo and a production system handling 10,000 items/day with real money on the line is where the interesting problems live. At Chronexa , we've built 50+ multi-agent workflows for fintech compliance teams, legal document processing, AI SDR engines, and RAG-powered research assistants. Here's what we've learned about ma…

Messaging infrastructure has been boring for a decade. Queues, topics, exchanges — the primitives settled. Then AI agents arrived, and suddenly the assumptions that made messaging boring stopped holding. Messages are no longer just data. They are context. An agent will read your message, reason over it, call tools because of it, and generate responses whose token count you cannot predict at enque…

ShellReq - Native API Client for VS Code & Terminal A lightweight, native API testing ecosystem designed directly around developer workflow and productivity. No context switching, no bloated UI, just fast API testing exactly where you code. Quick Links VS Code Marketplace: maheshshinde9100.shellreq-api-client GitHub Repository: maheshshinde9100/ShellReq NPM Package: shellreq Preview Why I Built S…

Drag-drop upload, unguessable URLs (72 bits entropy), auto-deletes after 1h/24h, strict MIME allowlist + CSP sandbox. One docker compose up. MIT. 🔗 https://github.com/rogerhokp/tmpdrop 🌐 https://tmpdrop.solardev.online Why another one: public file hosts retain your data on infra you don't control + predictable URLs get scraped. tmpdrop is "0x0.st but on your own box" with a security posture I'm a…

After understanding composition, inheritance, and polymorphism, the next important step is learning how to define clear behavioral contracts between components. This is where interfaces and abstract classes become essential. They help answer one of the most important questions in system design: “What should this component be capable of doing?” without tightly coupling the system to a specific imp…

Skip to: Results Table | eslint-plugin-security | SonarJS | Microsoft SDL | Interlace | Methodology This is the false-positive deep dive companion to I Benchmarked 17 ESLint Security Plugins . That overview ranks plugins by recall; this one drills into the FP code samples that drive alert fatigue. TL;DR I built a comprehensive benchmark with 40 vulnerable code patterns across 14 security categori…

It's been a few months since I last wrote about Data Preprocessor, the IntelliJ plugin I built to stop re-writing the same pandas preprocessing scripts every project. The 1.5.x series has landed a real R codegen path, a more honest outlier-resistant normalizer, and one genuinely embarrassing deadlock that I want to talk about openly because the lesson is useful. tl;dr on what the plugin does You …

I recently built fourpointo, a Flask web app for polytechnic students to manage assignments. Once it was working locally, I needed to get it live without paying for cloud hosting every month. Then I realised I had an old, unused laptop which I was trying to find a purpose for. I figured it would be great to use it as a home server to host my website and it saves costs. I wiped the laptop and went…

Git and GitHub are essential tools for software development, yet many beginners avoid using them properly due to concerns about making mistakes. They worry about accidentally deleting production code, pushing secrets, or exposing poorly written code. However, the real problems that emerge are less dramatic but far more damaging: messy commit histories, abandoned branches, and a lack of context. T…

Chulalongkorn University congratulates Mr. Phataradon Akarach, Mr. Ratanon Khamrong, and Mr. Settapun Laoaree, first-year students in the Computer Engineering and Digital Technology (CEDT) program at the Faculty of Engineering's Department of Computer Engineering. The team was selected to develop the national platform "PMUC Zero Burn to Earn," which has since been successfully launched and implem…

The GitHub Pinning Conundrum: Making Org Work Visible on Your Profile Migrating code from traditional network shares to GitHub organizations presents a unique set of challenges, not least of which is ensuring individual contributions remain visible. A common question that arises for many developers, product managers, and even CTOs, is whether it's possible to pin repositories from an organization…

I have a strong opinion on this: your GitHub activity is a better signal of your skills than any resume bullet point. Contribution graphs, language breakdowns, the repos you actually maintain versus the ones you abandoned two years ago. It's all there, in public, timestamped. But almost nobody treats it that way. The signal is there. The presentation isn't. Recruiter lands on your GitHub. They se…

If you've just learned the basics of Kubernetes Pods, Deployments, ReplicaSets, and Services the best next step is to actually use them. Reading about self-healing and rolling updates is one thing; watching Kubernetes recreate a deleted Pod in real time is another. In this guide, you'll deploy a simple Node.js app on a local Kubernetes cluster. We'll cover both Minikube and Kind (Kubernetes in Do…

When building a B2B SaaS application, one feature that often gets overlooked is the customer portal. It's tough when a lot of the complexity is hidden — Stripe handles the billing, but your users still need a place to manage their subscriptions, update payment methods, view invoices, and cancel or upgrade their plans. That's where the Stripe Customer Portal comes in. In this guide, we'll walk thr…

Internal Developer Portals became inevitable the moment engineering organisations crossed a certain complexity threshold. At 20 engineers, tribal knowledge still works. At 80 engineers, documentation begins fracturing. At 200 engineers, platform entropy becomes existential. Teams stop knowing: Which services exist Who owns them How deployments work Where documentation lives Which Kubernetes clust…