Latest Posts

Three concrete strategies for defending against npm supply chain attacks. Covers GitHub Actions SHA pinning, Dependabot cooldown, and Yarn 4's npmMinimalAgeGate — step by step, with code.

An analysis of the axios supply chain attack that hit the npm ecosystem in March 2026. Covers the full attack chain — maintainer account hijack, malicious dependency injection, and RAT deployment via a postinstall script — along with the structural weaknesses in npm's trust model.

Learn how to set up an integration_test-based E2E test environment in a Flutter project and apply it to a real app using Firebase/GetX/SQLite.

Analyzing the AI engineering techniques applied to the SDD (Spec-Driven Development) Plugin for Claude Code through 4 paradigms: Prompt, Context, Agentic, and Harness. See how each paradigm is implemented in the plugin with actual code examples.

The 4 phases of building the SDD (Spec-Driven Development) Plugin for Claude Code — foundation, multilingual support, Issue template improvements, and the resume command. Sharing the development process and lessons learned.

SDD (Spec-Driven Development) Plugin is a Claude Code plugin that helps you collaborate systematically with AI through a GitHub Issue-based 4-stage process (Analyze → Design → Implement → Test). This post covers its commands, GitHub integration, and usage.

Sharing the problems encountered and their solutions, along with useful tips, during the migration from Jekyll to Astro. Covers mobile scroll issues, Sass warnings, code highlighting, and more.

The problems encountered when using AI coding tools like Claude Code in practice (coding without analysis, implementation without design, lost conversations), and the background behind creating the SDD (Spec-Driven Development) Plugin to solve them.

Sharing how we implemented a script to automatically share blog posts to social media platforms including Facebook, LinkedIn, Threads, Bluesky, and Mastodon.

Sharing how to deploy an Astro blog to GitHub Pages. Covers gh-pages package setup, custom domain, .nojekyll file, build pipeline, and more.

Sharing the layout and component structure of an Astro blog. Covers the design of core components such as BaseLayout, PostLayout, Navbar, Footer, and dynamic routing.

Sharing how to implement static search functionality using Pagefind in an Astro blog. Covers build integration, multilingual search, category filtering, and more.