Posts

Showing posts from July, 2026

The weeks of Intentinal Building: My GSoC Midterm with OWASP Foundation

Image
Towards the Google Summer of Code midterm evaluation marks a quiet, reflective milestone in my journey with OWASP® Foundation and OWASP BLT . Over the past weeks, the daily rhythm of development has been about transforming a conceptual proposal into a living, working application. Moving from initial repository curiosity to managing a core project architecture has felt less like a sprint and more like a deliberate, step-by-step documentary of software crafting.  vanish.owaspblt.org The Blueprint: What I Set Out to Build My proposal focused on evolving BLT-Vanish into a proactive personal cybersecurity ecosystem by developing the Universal AI Identity Shield. The core philosophy centers on an explainable, local-first risk scoring platform designed to protect personal data in real time. The technical challenge lies in maintaining a strict data boundary. Sensitive user information stays entirely on the user's device inside a Flutter application, while Cloudflare Python Workers are res...

GSoC 2026 Weekly Update: Week 6 - Structuring Remediation and Preparing for the Midterm

With the application now fully up and running, Week 6 has been about completing the foundational logic for user remediation and organizing the codebase as we head into midterm evaluations. The focus has shifted from single-feature implementations to designing how these systems interact, ensuring the work built so far translates into a cohesive user experience. Completing the Remediation Architecture The primary milestone for this week was finalizing the remediation orchestration system. This framework turns security risks into a structured lifecycle of tasks, converting vulnerabilities into actionable checklists that users can easily follow. Along with this task state machine, I integrated basic escalation logic. This applies clear priority statuses and reminders for unresolved issues, helping users stay proactive about their digital security posture. To measure the overall health and accuracy of the application, I also implemented an internal metrics tracker. This component safely agg...