Loading…
Building scalable products, clean systems, and thoughtful experiences.
I design reliable software across web, mobile, and cloud. Explore the latest insights, engineering notes, and a focused portfolio of production work.
What I work on
7+
Years
50+
Projects
3
Stacks
Blog
Latest writing
01
31 WordPress Plugins, One Flippa Sale, and an 8-Month Time Bomb
In April 2026, WordPress.org closed 31 plugins after an attacker bought a trusted plugin portfolio on Flippa, shipped a dormant PHP deserialization backdoor, and activated it eight months later — with command-and-control resolved through an Ethereum smart contract. This post breaks down how the attack actually worked, why 96% of WordPress vulnerabilities live in plugins, and how Cloudflare's new EmDash CMS attempts to fix the architecture with capability-scoped sandboxes.
Read more
02
CORS Isn't Blocking You — Your Browser Is. Here's What's Actually Happening
Most developers treat CORS errors as a server configuration mystery. They're not. Your server responded fine — your browser intercepted the response. This post covers the CSRF attack CORS was built to prevent, how origin is actually defined, why Postman never sees CORS errors, how preflight requests work, and what every response header actually means.
Read more
03
MCP Over gRPC: Why Google Is Rewiring the Agent Transport Layer
MCP shipped with JSON-RPC over HTTP. That works beautifully for demos and small integrations — but it crashes into enterprises that run gRPC everywhere. Google is contributing a gRPC transport to MCP, with pluggable transports landing in the SDK. Here's what actually changes, what doesn't, and when the switch is worth making.
Read more
Social
LinkedIn highlights
LinkedIn
01
Nvidia Just Made AI Agents Enterprise-Ready. Here's What Actually Happened.
Jensen Huang called OpenClaw 'the most important software release, probably ever' — comparing it to Linux, HTML, and Kubernetes in the same breath. Bold claim. But after digging into what Nvidia actually built around it, I think he might be right.
LinkedIn
02
5 Brutal Truths Nobody Taught Me About Programming (But Should Have)
I've been writing code for years. Read the books. Studied the patterns. Nailed the algorithms. And yet — the lessons that actually made me a better developer? None of them came from a textbook. Every single one came from something breaking, a user doing something unexpected, or me staring at a screen at midnight wondering where it all went wrong.
LinkedIn
03
The Software Factory Will Eat Your Job — Unless You Learn to Run It
A structural look at what the Nifty IT crash, StrongDM's AI experiment, and Big Tech's own numbers reveal about where engineering is actually headed.
Video
YouTube videos
May 2, 2024
Build a Blog Website with Laravel & Filament in 13 Minutes! (SEO Ready)
Quickly build an SEO-ready blog using Laravel and Filament with a clean, practical walkthrough.
April 26, 2024
Level Up Your Forms: Interactive Status Toggles with FilamentPHP forms
Add interactive status toggles to your FilamentPHP forms to improve UX and data handling.
March 21, 2024
Create a Kanban Board in Laravel with Filament PHP
Build a functional Kanban board inside a Laravel app using Filament PHP components.
Tools
Developer utilities
URL Encoder/Decoder
Encode and decode URLs with ease.
JSON Validator
Validate and pretty-print JSON data instantly.
Text Diff
Compare two text blocks and highlight differences.
JWT Tool
Encode and decode JSON Web Tokens.
UUID Generator
Generate random UUIDs (v4) in bulk.
Password Generator
Generate secure passwords with customizable options.
Get in touch
Let's build something reliable
I collaborate on product strategy, architecture, and full-stack delivery for teams that value clarity and scalability.