I'm a full-stack developer focused on building scalable backend systems, real-time applications, and production-ready web platforms using Node.js and modern cloud tools. I care deeply about security, clean architecture, and shipping things that actually work in production.
const sidharth = {
role : "Full-Stack Developer",
stack : ["Node.js", "Express.js", "React", "MongoDB", "Redis"],
cloud : ["GCP", "AWS", "Cloudflare R2", "Railway", "Cloudinary", "Vercel"],
ai : ["Groq API", "Whisper Large v3", "Llama 3.3 70B", "Llama 4 Scout"],
security : ["JWT rotation", "Argon2", "RBAC", "CSP/HSTS", "SSRF protection"],
currentFocus: "Production-ready full-stack & AI-powered applications",
funFact : "I debug faster with lo-fi music playing π΅"
};| ποΈ Project | π Description | π οΈ Stack | π Links |
|---|---|---|---|
| π€ Speak & Shine | AI-powered English speaking practice platform supporting real-time group chat, daily video uploads, and WebSocket communication. Implements JWT rotation with refresh token reuse detection, RBAC across 4 roles, full CSP/HSTS, SSRF protection, magic-byte video validation, and AI content moderation via Groq Vision. |        |
π¦ Repo Β· π Live |
| π Electro | Full-stack e-commerce platform with multi-variant catalog, Razorpay payments with 15-min stock reservation, wallet system with referral credits, smart coupon engine with proportional refunds, full return lifecycle, and admin dashboard with dynamic PDF/Excel report generation. Hosted on GCP. |     |
π¦ Repo Β· π Live |
| ποΈ Attendance Tracker | Full-stack web app for managing student attendance with role-based access control and real-time data. |
    |
π¦ Repo Β· π Live |
π οΈ Tech Stack β click to expand
π¬ Languages
𧩠Frameworks & Libraries
ποΈ Databases & Cloud
π€ AI
π Auth & Security
π³ Payments & Comms
π§ Dev Tools
| Layer | Details |
|---|---|
| Hosting | GCP (Electro), Railway (Speak & Shine), Vercel (static/frontend) |
| Object Storage | Cloudflare R2 β direct browser uploads, SSRF-protected fetch |
| CDN / Media | Cloudinary β image optimization & transformation |
| Caching | Redis β session store, rate limiting, security scan cache (7-day TTL) |
| Auth | JWT access (15 min) + refresh tokens (7 days) with rotation & reuse detection |
| Security Headers | Helmet.js β full CSP, HSTS (1-year), objectSrc: none, frameSrc: none |
| Process | Environment-based config β server refuses to start without required secrets |
| Reverse Proxy | Trust proxy enabled β correct client IP behind Railway's load balancer |
- Security first β auth, input validation, and rate limiting are never afterthoughts
- Build for production β environment config, error handling, and logging from day one
- Real-time by default β Socket.io for live features, Redis for fast state
- Optimize before scaling β cache aggressively, validate early, fail fast
- Ship real products β learn by building things that actually run in production
| β Coffee = My Fuel | π΅ Music + Code = Flow | π Debugging > Writing Code | π Proud Dark Mode Fan |
|---|---|---|---|
| Can't start without it | Lo-fi hits different | It's an art form | Always & forever |
Thanks for stopping by! Keep building, keep learning π§π»