Skip to main content
My Site

Now

What I'm currently focused on. This is a /now page.

Last updated: January 17, 2026

Working remotely from California

Passion Project: GroundWorkJS

A TypeScript-first, full-stack monorepo platform

GroundWorkJS is my passion project - a comprehensive framework for building scalable, modular, and feature-rich applications designed to evolve into a fully extensible platform. It combines modern technologies with enterprise-ready patterns to provide a solid foundation for building anything from simple apps to complex SaaS platforms.

Tech Stack
frontend
Next.js 15
React 19
MUI
Apollo Client
Redux Toolkit
backend
Express
Apollo Server 4
GraphQL
Passport
database
PostgreSQL
Knex
devops
Docker
GitHub Actions
pnpm workspaces
Key Features
  • TypeScript-first architecture with strict typing throughout
  • Next.js 15 frontend with React 19, MUI, Apollo Client, and Redux Toolkit
  • Express + Apollo Server (GraphQL) backend with Passport authentication
  • PostgreSQL database via Knex with migrations and seeds
  • Local login with lockout + JWT; OAuth providers scaffolded
  • Full RBAC/ABAC with roles, permissions tables, and seeds
  • Plugin SDK for tenant customizations with security boundaries
  • pnpm workspaces monorepo with GraphQL Codegen, Jest, ESLint/Prettier
  • GitHub Actions CI pipeline with Docker containerization

Currently Building

  • Refining the GroundWorkJS plugin SDK security architecture
  • Building multi-tenant isolation patterns for SaaS deployments
  • Creating comprehensive developer documentation and guides
  • Implementing CJIS-aware patterns from my Guardian Alliance experience

Architecture Decisions

  • Monorepo with shared types package for type safety across services
  • GraphQL for flexible API queries with REST endpoints for auth
  • Separate tenant starter repo that references platform via file: dependency
  • Hermetically sealed dev environment for consistent onboarding

Security Focus

  • JWT authentication with refresh token rotation
  • RBAC/ABAC permission system with granular controls
  • Tenant isolation via plugin SDK security boundary
  • Applying OWASP, FedRAMP, and HIPAA awareness from past roles

Development Experience

  • GraphQL Codegen for type-safe queries and mutations
  • Swagger UI for REST API documentation
  • Jest testing with coverage reports
  • Husky + lint-staged for commit quality gates

Current Focus Areas

Platform Extensibility
Type Safety
Developer Experience
Security First
Documentation
Open Source