10 articles published

The
Developer
Blog.

Practical guides and deep dives on the tools developers use every day. No fluff. Just signal.

How to Catch Breaking API Changes Before Your Users Do. A JSON Diffing Strategy for Backend Teams

A practical workflow article for teams maintaining versioned APIs, showing how structured JSON diffing integrates into code review and CI pipelines to detect breaking changes automatically.

May 2026Read article

hash

LinkedIn Lost 117 Million Passwords in 2012 Because of This Mistake. What Cryptographic Hashing Gets Wrong

The LinkedIn breach as a case study in unsalted SHA-1 hashing, used to explain the difference between hashing for integrity versus hashing for password storage, and when each approach is appropriate.

May 2026Read →

URL-encoding

Why a Space in a URL Can Silently Break Your API. A Practical Guide to Percent Encoding for Backend Developers

A production-incident framing of URL encoding, covering why percent encoding exists, where developers get it wrong, and how query string encoding differs from path encoding.

May 2026Read →

regex

The Regex That Took Down Cloudflare. What ReDoS Is and How to Write Regular Expressions That Do Not Kill Your Server

A case study on catastrophic backtracking and the 2019 Cloudflare outage, used as a lens to teach developers how to write safe, performant regular expressions.

May 2026Read →

Unix-timestamp

The Y2K38 Problem Is Real and Most Systems Are Not Ready for It

An explainer on the Unix timestamp overflow event on January 19, 2038 and why every developer writing date-handling code needs to understand it.

May 2026Read →

UUID

UUID vs ULID vs NanoID. Which Unique ID Format Should You Use in 2026 and Why the Wrong Choice Hurts Your Database

A thorough comparison of UUID v4, UUID v7, ULID, and NanoID. Understand the database performance implications and pick the right format for your use case.

May 2026Read →

JWT

The alg:none Vulnerability. Why Trusting JWTs Without Verification Is a Critical Security Mistake

A security-first walkthrough of how the alg:none attack works, what it has cost companies, and how reading a JWT correctly protects your application.

May 2026Read →

JSON

The Twitter ID Bug That Broke Thousands of Apps. Understanding JSON Precision Loss Before It Hits Production

A deep dive into the JavaScript precision problem behind Twitter's Snowflake ID bug, and what it teaches developers about validating JSON before trusting it.

May 2026Read →

developer-tools

The Browser Tools Every Developer Actually Needs in 2026

A no-fluff guide to browser tools developers actually reach for. JSON formatters, JWT decoders, regex testers, and more. Privacy-first, no sign-up.

May 2026Read →

Base64

Why Your Emails Sometimes Look Like Garbled Nonsense. The History of Base64 and Why It Is Everywhere in Web Development

Traces Base64 from its 1982 email origins to its modern role in JWTs, HTTP Basic Auth, and data URIs. Essential reading for developers who use it daily.

May 2026Read →

TheDeveloperBlog.

How to Catch Breaking API Changes Before Your Users Do. A JSON Diffing Strategy for Backend Teams

LinkedIn Lost 117 Million Passwords in 2012 Because of This Mistake. What Cryptographic Hashing Gets Wrong

Why a Space in a URL Can Silently Break Your API. A Practical Guide to Percent Encoding for Backend Developers

The Regex That Took Down Cloudflare. What ReDoS Is and How to Write Regular Expressions That Do Not Kill Your Server

The Y2K38 Problem Is Real and Most Systems Are Not Ready for It

UUID vs ULID vs NanoID. Which Unique ID Format Should You Use in 2026 and Why the Wrong Choice Hurts Your Database

The alg:none Vulnerability. Why Trusting JWTs Without Verification Is a Critical Security Mistake

The Twitter ID Bug That Broke Thousands of Apps. Understanding JSON Precision Loss Before It Hits Production

The Browser Tools Every Developer Actually Needs in 2026

Why Your Emails Sometimes Look Like Garbled Nonsense. The History of Base64 and Why It Is Everywhere in Web Development

The
Developer
Blog.