#security · Faiz Ahmed FarooquiPosts tagged security.https://faizahmed.in/Loading Secrets at Runtime Without Leaking Them: config(), the Keystore, and runhttps://faizahmed.in/secret-keystore-runtime-config-loader-nodejs/https://faizahmed.in/secret-keystore-runtime-config-loader-nodejs/Fri, 12 Jun 2026 13:17:21 GMTawsnodejssecuritydevopsbackendEncrypt Your .env with One Command: The secret-keystore CLIhttps://faizahmed.in/secret-keystore-cli-encrypt-env-aws-kms/https://faizahmed.in/secret-keystore-cli-encrypt-env-aws-kms/Fri, 12 Jun 2026 12:59:34 GMTawssecuritynodejsbackenddevopsYour .env Is a Loaded Gun: A Saner Threat Model for Node.js Secretshttps://faizahmed.in/nodejs-secrets-threat-model-aws-kms/https://faizahmed.in/nodejs-secrets-threat-model-aws-kms/Fri, 12 Jun 2026 11:31:09 GMTsecurityawsnodejsbackenddevopsEncrypted .env for Node.js with AWS KMS: The Complete Guidehttps://faizahmed.in/encrypted-env-aws-kms-nodejs-complete-guide/https://faizahmed.in/encrypted-env-aws-kms-nodejs-complete-guide/Fri, 12 Jun 2026 11:24:08 GMTsecurityawsnodejsdevopsbackendStop Putting Secrets in process.env: Encrypt Env Vars with AWS KMShttps://faizahmed.in/secret-keystore/https://faizahmed.in/secret-keystore/Sat, 21 Feb 2026 19:30:57 GMTsecurityawsattestationnodejsnextjsnestjsdevopscloudbackendHow to Prevent Replay Attacks with JWTs: JWS vs JWE and Fingerprint Validation in Node.jshttps://faizahmed.in/how-to-prevent-replay-attacks-with-jwts-jws-vs-jwe-and-fingerprint-validation-in-nodejs/https://faizahmed.in/how-to-prevent-replay-attacks-with-jwts-jws-vs-jwe-and-fingerprint-validation-in-nodejs/Fri, 06 Jun 2025 13:27:47 GMTnodejsjwtsecurityauthenticationbackendbackendengineeringwebsecurityreplay-attackdevtipsexpressJWT, JWE, and JWKS Explained: A Developer’s Guide to Token-Based Securityhttps://faizahmed.in/jwt-jwe-and-jwks-explained-a-developers-guide-to-token-based-security/https://faizahmed.in/jwt-jwe-and-jwks-explained-a-developers-guide-to-token-based-security/Thu, 27 Mar 2025 12:30:46 GMTjwtjwejwkstokensecurity