Blog — neoxs.me

2026-05-05·18 min read

Securing a production app: what I learned by asking the right questions

I ran a security audit on this portfolio — running on a public GitHub repo and a VPS — and fixed 16 real issues. I am not a security expert. I just stopped ignoring the subject.

securitydevopskubernetesdockernginxgithub-actionslearning

→

2026-05-04·18 min read

From Docker Compose to Kubernetes: deploying a micro-frontend monorepo with k3s and Helm

A step-by-step walkthrough of migrating a four-app micro-frontend portfolio from Docker Compose to a local k3s cluster using k3d and Helm — including every real bug hit along the way.

kubernetesk3sk3dhelmdevopsmfenginxarchitecture

→

2026-05-03·20 min read

From localhost to a real server: deploying a Kubernetes portfolio on a €5 VPS

A production VPS deployment walkthrough — IONOS, k3s, ingress-nginx, cert-manager, Let's Encrypt TLS, and GitHub Actions CD — explained step by step, with every real bug that hit along the way.

kubernetesk3sdevopsvpscert-managergithub-actionshelmtls

→

2026-05-02·14 min read

Dockerizing a microfrontend monorepo with nginx routing

How we packaged four different frameworks into isolated Docker containers and stitched them together behind a single nginx reverse proxy — and every pitfall we hit along the way.

dockernginxmfedevopsarchitecture

→

2026-05-01·10 min read

CSS that works locally but vanishes through a proxy

Documenting a subtle Vite dev pipeline issue I hit while building a microfrontend architecture, how I diagnosed it, and the architectural decision I made.

vuevitemfedevopsdebugging

→

2025-03-23·15 min read

Critical Next.js Vulnerability: How a Simple Header Bypasses Authentication (CVE-2025-29927) 🕵️

Learn about the critical Next.js middleware vulnerability that affected millions of applications. This detailed guide explains how attackers could bypass authentication with a single header, includes proof-of-concept code, and provides essential security fixes for your Next.js apps.

next.jssecuritycvemiddlewarejavascript

→

2025-01-15·8 min read

Microfrontends in production

How independent deployments behind nginx Ingress beats Module Federation every time.

architecturedevopsmfe

→

2024-11-21·8 min read

Understanding React Higher-Order Components (HOCs)

Learn how React Higher-Order Components (HOCs) can enhance component behavior and logic reuse in your applications, with practical examples and best practices.

reactjavascriptpatterns

→

2024-11-12·8 min read

Thinking in React: A Step-by-Step Approach

"Thinking in React" is a methodical process of breaking down UIs into components, managing state, and adding interactivity through a structured flow. It emphasizes building a static version first, identifying minimal state, and ensuring clear data flow between parent and child components.

reactjavascriptfrontend

→

2024-04-01·3 min read

Hello, World!

Welcome to my blog — a space for thoughts on frontend engineering, distributed systems, and DevOps.

metaintro

→