Documenting code, one commit at a time.
We've recently introduced a significant enhancement to our application's security auditing capabilities. This update allows users to perform targeted security audits on specific posts, providing a more efficient and focused approach to identifying potential vulnerabilities.
Previously, security audits were conducted on all tenant posts, which, while
We've recently enhanced the user experience within our application by integrating LinkedIn login and registration, specifically aimed at simplifying the recommendation flow. This post details the changes and the reasoning behind them.
Previously, recommenders needed a GitHub account, which added friction to the process.
In software development, a robust workflow is crucial for maintaining code quality and minimizing potential issues. Recently, we've focused on refining our development process to incorporate more rigorous code review practices, specifically before finalizing changes.
Integrating a 'dev:code-review' step earlier in the workflow offers several key advantages:
When developing multi-tenant applications, ensuring proper routing and URL generation within tenant contexts can be tricky. A recent update addressed issues related to generating correct URLs in a multi-tenant environment, preventing errors and ensuring consistent behavior across different tenants.
In a multi-tenant setup, each tenant typically has its own subdomain or route.
This post details improvements to route binding security and sitemap management within our application. We've addressed potential vulnerabilities in nested route binding and optimized the sitemap to avoid duplicate content issues across tenant subdomains.
To enhance the security of our application, we've implemented a safeguard for child route
When running test suites, reliability is paramount. Unexpected timeouts can lead to failed builds and wasted developer time. A recent update addresses this issue by switching from composer phpunit to php artisan test for executing tests in our project.
The default process-timeout in Composer, often around 300 seconds, proved insufficient for our test suite,
We've recently enhanced our platform to allow users to solicit professional recommendations for their portfolios, featuring a seamless integration with LinkedIn. This system allows users to request recommendations, and for recommenders to easily provide them while promoting the user's portfolio on their LinkedIn feed.
This post details how we streamlined our content generation process to improve security, consistency, and maintainability.
Previously, our application used separate code paths for generating content based on user prompts versus automatic generation. This divergence led to inconsistencies in security auditing, resource management, and error handling.
Sometimes, during development, placeholder values can inadvertently slip into the final application. This post discusses how we addressed such an issue in our vlog index page, specifically focusing on unresolved :app_name placeholders.
Unresolved placeholders are problematic because they present a poor user experience and can sometimes expose internal
We've all been there: a quick fix for an apparent issue, like an unresolved placeholder in a user-facing section. But what happens when the fix itself introduces more complexity than it resolves?
Recently, we addressed an issue where the :app_name placeholder wasn't being correctly rendered on the /earn hero section of our application.
