Mateo Rodriguez

Posted Frontend: normalize and display server validation errors

Posted Vite env handling: explicit prefixes only

Posted Prettier config for consistent formatting

Posted ESLint config that avoids bikeshedding

Posted Next.js bundle analyzer for targeted performance work

Posted Response compression (only when it helps)

Posted Security headers with helmet (baseline hardening)

Posted Multipart upload streaming (busboy)

Posted SQL upsert for counters (ON CONFLICT DO UPDATE)

Posted Frontend: copy-to-clipboard with fallback

Posted Backend: normalize errors with a single Express handler

Posted Frontend: toast notifications via a small event bus

Posted Frontend: skeleton loading instead of spinners

Posted Batched writes with COPY (conceptual)

Posted Prisma: avoid N+1 with include/select

Posted SQL migration safety: add column nullable, backfill, then constrain

Posted GraphQL persisted queries (hash allowlist)

Posted tRPC router pattern for type-safe APIs

Posted Service worker: cache static assets safely

Posted Web Vitals reporting to an API endpoint

Posted Next.js middleware for auth gating

Posted React Hook Form + Zod resolver

Posted MSW for frontend API mocking in tests

Posted Email sending with nodemailer + templates

Posted Cron scheduling with node-cron (with guard)

Posted BullMQ job idempotency via dedupe id

Posted Partial index for “active” rows in Postgres

Posted Postgres advisory lock for one-at-a-time work

Posted Password reset tokens: hash + expiry

Posted JWT access + refresh token rotation (conceptual)

Posted CORS configuration that’s explicit (no *)

Posted ETag + conditional GET for read-heavy endpoints

Posted HTTP keep-alive agent for outbound calls

Posted HTTP client timeout with AbortController (fetch)

Posted Simple concurrency limiter for batch operations

Posted TypeScript path aliases (tsconfig + bundler)

Posted OpenAPI generation for REST endpoints

Posted N+1 avoidance with DataLoader (GraphQL)

Posted OAuth PKCE flow (high level helper)

Posted Password hashing with Argon2

Posted Sentry initialization with release + environment

Posted Typed env parsing with zod

Posted Accessible modal with focus trap

Posted IntersectionObserver infinite scroll hook

Posted Debounced search input (React)

Posted Exponential backoff with jitter for retries

Posted Circuit breaker wrapper for flaky third-party APIs

Posted Repository pattern for DB access (small, pragmatic)

Posted API input coercion for query params (Zod preprocess)

Posted Prisma transaction with retries for serialization errors

Posted Playwright smoke test for auth flow

Posted Testing Express routes with Supertest + Jest

Posted Health checks with readiness + liveness

Posted Docker multi-stage build for Next.js

Posted GitHub Actions: cache + tests + build

Posted API pagination response contract (page info)

Posted Feature flags with a typed registry

Posted Streaming CSV import (Node streams)

Posted Safe markdown rendering (remark + rehype)

Posted Sanitize user HTML safely (DOMPurify + JSDOM)

Posted Prometheus metrics for request latency

Posted API error shape that frontend can rely on

Posted Pre-signed S3 upload from the browser

Posted CSRF protection with double-submit cookie

Posted Content Security Policy headers (defense-in-depth)

Posted React Error Boundary + error reporting hook

Posted React Query optimistic update for likes

Posted Next.js Route Handler with auth guard

Posted WebSocket server with topic subscriptions (ws)

Posted SSE endpoint for server-to-browser events

Posted OpenTelemetry tracing for Node HTTP

Posted BullMQ worker with retries + dead-letter

Posted Transactional outbox in Node (DB write + event)

Posted Cursor-based pagination with stable ordering

Posted Rate limiting by IP + user (Express)

Posted Redis cache-aside for expensive reads

Posted Webhook signature verification (timing-safe compare)

Posted Idempotency keys for “create” endpoints

Posted Postgres connection pooling with pg + max lifetime

Posted Graceful shutdown for Node HTTP servers

Posted Runtime validation for request bodies (Zod)

Posted Request ID + structured logging (Express + pino)