Welcome

This repository houses a comprehensive suite of security measures, including robust error tracking with Sentry, input validation with Zod, XSS prevention with Sanitize-html, and enhanced form security with Turnstile. It also implements Nonce for script and stylesheet authorization, CSRF protection, and follows OWASP best practices. Additionally, it leverages AI capabilities through OpenAI's API for embeddings generation and semantic context, pgVector to enable operations with embeddings directly in PostgreSQL databases (Supabase), which is used here to perform similarity searches. Built on the Remix framework and utilizing Supabase for database, it ensures high performance and security, complemented by Cloudflare's WAF and hosting solutions. Integrating Brevo-API enhances communication capabilities.

Security:

• Sentry: Ensures robust error tracking and monitoring, allowing for quick identification and resolution of issues.
• Zod: Implements input validation for data integrity and security.
• Sanitize-html: Enforces sanitization to prevent XSS (Cross-Site Scripting) attacks and code injections.
• Turnstile: Cloudflare's CAPTCHA alternative for enhanced form security.
• Nonce: To prevent unauthorized scripts or stylesheets from being injected and executed, only scripts or stylesheets with matching nonces are executed or applied.
• CSRF protection: Implemented token-based protection with a uniquely generated random code on each request to protect against third-party servers making requests.
• OWASP Best Practices: Adheres to OWASP recommendations for setting security headers and achieving an A+ grade on Mozilla Observatory
• Cloudflare Web Application Firewall (WAF): For additional layers of security.

Test https://joaodev.work on Mozilla Observatory -> check headers implementation

AI:

• openAi API: Embedding generation using OpenAI's "text-embedding-3-small" model. Enabling semantic context with "GPT-3.5-turbo" and pgVector makes it possible to perform similarity searches in a PostgreSQL databases (Supabase) using embeddings.
• pgVector: Open-source vector similarity search tool for PostgreSQL databases.

Framework:

• Remix: Full stack web framework that provides a solid foundation for building web applications with a focus on performance and developer experience.

Database:

• Supabase: PostgreSQL open-source alternative to Firebase. It is scalable, secure and also offers auth solutions.

Hosting:

• Cloudflare and Cloudflare Pages: Provides enhanced website performance, security, and scalability through robust content delivery and efficient deployment infrastructure.

Additional Implementations:

• Brevo-API Integration: Integrates with Brevo-API to handle sending and receiving emails, enhancing communication capabilities through the contact form.

Test the Application:

You can test the application live by visiting joaodev.work. Experience the secure and efficient developer portfolio firsthand!

Development

Run the Vite dev server:

npm run dev

To run Wrangler:

npm run build
npm run start

Deployment

Warning

Cloudflare does not use wrangler.toml to configure deployment bindings. You MUST configure deployment bindings manually in the Cloudflare dashboard.

First, build your app for production:

npm run build

Then, deploy your app to Cloudflare Pages:

npm run deploy