The latest articles on Forem by Oleksii Antoniuk (@alantalex). https://forem.com/alantalex https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3865097%2Fe7eea4ef-83e8-438a-9701-865091bf4ec7.jpeg https://forem.com/alantalex en Oleksii Antoniuk Sat, 11 Apr 2026 07:15:18 +0000 https://forem.com/alantalex/why-i-dont-trust-my-own-deployments-and-why-you-should-audit-your-security-headers-19cm https://forem.com/alantalex/why-i-dont-trust-my-own-deployments-and-why-you-should-audit-your-security-headers-19cm <p>As a Laravel developer, I’ve always felt pretty safe. Modern frameworks do a lot of heavy lifting, but here’s the cold truth: even the most secure backend can be undermined by a "leaky" frontend or a misconfigured Nginx.</p> <p>I caught myself constantly jumping between third-party tools every time I deployed a new feature just to make sure I hadn't messed up my Strict-Transport-Security or broken my Content-Security-Policy. Eventually, I got tired of the routine and built my own module within Oleant.</p> <p>What’s the deal?<br> I’m talking about the Security Headers Audit. It’s not just another tool that says "everything is bad"; it breaks down exactly what's happening under the hood of your URL.</p> <p>Why it matters (The Tech Side):<br> A lot of devs think SSL/TLS is the finish line. But without the right headers, you're still vulnerable to:</p> <p>Clickjacking (lack of X-Frame-Options).</p> <p>MIME-sniffing (no X-Content-Type-Options).</p> <p>XSS attacks that a solid CSP could have neutralized instantly.</p> <p>My Implementation:<br> I built this using Laravel 11 + Inertia.js + Vue 3. This stack allowed me to make the audit process incredibly snappy. You drop the URL, and the Vue component reactively renders the status of every critical header.</p> <p>Give it a spin:<br> I’ve exposed this tool as a dedicated route here:<br> 👉 <strong><a href="https://oleant.net/security-tools/headers-audit" rel="noopener noreferrer">https://oleant.net/security-tools/headers-audit</a></strong></p> <p>It’s not a bloated "all-in-one" suite — it’s a precision scalpel. If you’re deploying something today, just throw your link in there and see how much "red" pops up. I actually found a few embarrassing gaps in my own older projects this way.</p> <p>Follow my journey: <a href="https://oleant.dev/en/blog" rel="noopener noreferrer">https://oleant.dev/en/blog</a></p> devops laravel security webdev Oleksii Antoniuk Tue, 07 Apr 2026 06:57:31 +0000 https://forem.com/alantalex/stop-guessing-start-auditing-why-i-built-a-custom-web-performance-tool-for-laravel-devs-5h6o https://forem.com/alantalex/stop-guessing-start-auditing-why-i-built-a-custom-web-performance-tool-for-laravel-devs-5h6o <p>Hi DEV community! 👋 </p> <p>As a Senior Laravel Developer, I've always been obsessed with one thing: <strong>Performance.</strong> We all use Lighthouse and PageSpeed Insights, but I felt something was missing—a tool that speaks the language of developers and gives actionable SEO insights without the fluff.</p> <p>That's why I started building <a href="https://oleant.net" rel="noopener noreferrer">oleant.net</a>. </p> <h3> What’s the goal? </h3> <p>My mission is to simplify <strong>Core Web Vitals</strong> optimization. It's not just about the score; it's about the user experience and how search engines perceive your architecture.</p> <h3> What I'm sharing here: </h3> <p>On this profile and my technical blog at <a href="https://oleant.dev" rel="noopener noreferrer">oleant.dev</a>, I’ll be deep-diving into:</p> <ul> <li>Advanced Laravel optimization techniques.</li> <li>Real-world Core Web Vitals case studies.</li> <li>Building high-performance SEO tools from scratch.</li> </ul> <p>I'd love to hear your thoughts! What's your biggest struggle when it comes to web performance?</p> <p><strong>Check out the auditor here:</strong> <a href="https://oleant.net" rel="noopener noreferrer">oleant.net</a> 🚀</p> laravel performance webdev seo