Web Development

Web development builds applications delivered through a browser or HTTP API — from a static landing page to a real-time multiplayer app or a global SaaS platform.

Overview

Every web app is a stack: browser → network → app server → data store. Modern teams add CDNs, edge runtimes, and asynchronous job queues. The architecture decisions usually matter more than the framework.

Frontend

HTML, CSS, JavaScript / TypeScript — the unavoidable trio.
Frameworks: React, Vue, Svelte, Solid, Angular.
Meta-frameworks: Next.js, Nuxt, SvelteKit, Remix, Astro.
Styling: Tailwind, CSS Modules, vanilla-extract, styled-components.
State: Redux/RTK, Zustand, Pinia, Jotai, TanStack Query.
Accessibility: semantic HTML, ARIA, WCAG 2.2.

Backend

Node.js (Express, Fastify, NestJS).
Python (FastAPI, Django, Flask).
Go (net/http, Gin, Echo).
Java/Kotlin (Spring Boot, Ktor).
C# (ASP.NET Core).
Ruby (Rails), PHP (Laravel, Symfony).
APIs: REST, GraphQL, tRPC, gRPC, WebSocket.

Data Layer

SQL: Postgres, MySQL, SQLite, SQL Server.
NoSQL: MongoDB, Redis, DynamoDB.
ORMs: Prisma, Drizzle, TypeORM, SQLAlchemy, Hibernate.
Object storage: S3, R2, GCS, Azure Blob.
Queues: SQS, RabbitMQ, Kafka, Redis Streams.

Build & Deployment

Bundlers: Vite, Webpack, Rspack, esbuild, Turbopack, Parcel.
CI/CD: GitHub Actions, GitLab CI, CircleCI, Jenkins.
Hosts: Vercel, Netlify, Cloudflare Pages, Fly.io, Render, AWS, GCP, Azure.
Containers + orchestration: Docker, Kubernetes, ECS, Cloud Run.

Performance & Security

Core Web Vitals: LCP, INP, CLS.
Caching: HTTP cache, CDN, service worker, Redis.
OWASP Top 10 — XSS, SQLi, CSRF, IDOR, SSRF.
CSP, HSTS, SameSite cookies, Subresource Integrity.
Authn/Authz: OAuth 2.0 / OIDC, JWT, session cookies, RBAC.