// BLOG
Latest Articles
Insights, tutorials, and updates from the Boottify team. Discover best practices for web development, design patterns, and technology trends.
SearchShowing 13–24 of 68 posts
Product
DeepSeek TUI — AI-Powered Terminal Workspace
Rich Ratatui terminal UI with daemon mode, swarm orchestration, real-time streaming, session persistence, and mid-execution pushback. Built on DeepSeek V4.
about 22 hours ago5 min
00
Product
Glyph v1.0 — Lightning-Fast Codebase Indexer
Glyph builds a knowledge graph of your source code using tree-sitter AST parsing. Zero LLM cost. Answer structural questions in milliseconds.
about 22 hours ago5 min
00
Product
Introducing Skillforge — A Skill Manager for AI Coding Assistants
Skillforge lets you browse, install, publish, and manage SKILL.md skills across Claude Code, Hermes, Cursor, and Windsurf. Portable, shareable, versioned.
about 22 hours ago4 min
00
Platform Updates
How we think about trust: Boottify's data-handling posture in 2026
What information Boottify actually collects, how long we keep it, how we protect it at rest, and the short list of third parties that are ever part of the picture. A plain-English walk-through — not a legal document.
about 1 month ago5 min
00
UI/UX
Mobile-first polish: how we rewrote 6 modals and re-centred a design system
Fixing 4 admin overlays that overflowed on iPhone SE, making the pricing comparison table behave, turning the deploy debug button into an opt-in support tool, and unifying a drifting brand colour across 34 files.
about 1 month ago5 min
00
Security
Under the hood: how we hardened Boottify auth
Encrypting TOTP seeds and OAuth tokens at rest, fixing email enumeration on signup, tightening session timeouts, and closing a one-time-use race on password resets — a tour of the auth changes shipped in v3.6.0.
about 1 month ago6 min
00
Platform Engineering
Nginx Removed, Kubernetes Hardened: Infrastructure Overhaul Q1 2026
We completed the full removal of Nginx from the stack, fixed a cross-node CoreDNS scheduling failure, resolved a dual iptables conflict that was silently routing traffic to dead pods, built a platform fallback system, and patched an ACME wildcard race condition.
about 2 months ago10 min
00
Platform Engineering
Universal App Configuration Wizard: Deploy Any App, Your Way
The marketplace deployment wizard now includes a smart Configure step that knows the specific environment variables, ports, and volumes each application needs — so you get a working deployment on the first try.
2 months ago8 min
00
Platform Engineering
WAF Engine v2: Multi-Layer Threat Detection and IP Reputation Scoring
We rebuilt our Web Application Firewall from the ground up — 34 detection rules across 9 OWASP categories, multi-layer URL decoding, honeypot traps, and per-IP anomaly scoring that bans bad actors before they cause damage.
2 months ago7 min
00
Platform Engineering
From 40 Tests to 285: Building a Production-Grade E2E Test Suite
We expanded our Playwright end-to-end test suite from 40 tests across 5 files to 285 tests across 38 spec files — with database-injected sessions, a role-access matrix, and zero placebo assertions.
3 months ago9 min
00
Product Updates
Building a 34-Rule WAF: From 15 Signatures to Full OWASP Coverage
How we expanded our web application firewall from 15 basic signatures to 34 detection rules across 9 OWASP categories, with multi-layer URL decoding, anomaly scoring, IP reputation tracking, and honeypot traps that instantly ban scanners.
3 months ago8 min
00
Product Updates
Cross-Platform Biometric Auth: Migrating WebAuthn RP ID Across Subdomains
How we migrated our WebAuthn Relying Party ID from control.boottify.com to the apex domain boottify.com, enabling biometric credentials to work across all subdomains with a dual RP ID verification strategy.
3 months ago7 min
00