@sumitsaha

How to Build a Secure AI PR Reviewer with Claude, GitHub Actions, and JavaScript

Apr 10 · 21 min read · When you work with GitHub Pull Requests, you're basically asking someone else to review your code and merge it into the main project. In small projects, this is manageable. In larger open-source proje

How to Set Up WebAuthn in Node.js for Passwordless Biometric Login

Mar 19 · 19 min read · JWT auth feels clean until a stolen token still looks valid to your server. That's the real problem: a bearer token proves possession of a token, but it doesn't prove possession of a trusted device. I

SSSumit Sahasumits-blog.hashnode.dev

Refactoring Legacy JavaScript with OpenAI Codex

Mar 8 · 12 min read · Refactor legacy JavaScript and Node.js code with OpenAI Codex using a safe workflow: map undocumented logic, lock behavior with tests, then modernize CommonJS, callbacks, and outdated patterns step by

The AI Coding Loop: How to Guide AI With Rules and Tests

Feb 25 · 14 min read · Building great software isn't about perfect prompts, it's about a disciplined process. In this guide, I'll share my workflow for shipping secure code: defining clear goals, mapping edge cases, and bui

How Execution Context Works in JavaScript – A Handbook for Devs

Jan 20 · 42 min read · Execution Context is one of the most fundamental yet most misunderstood concepts in JavaScript. It defines how JavaScript code is evaluated and executed, and it plays a central role in determining how variables, functions, and scope behave. Many core...