Full-Stack Developer (React + Supabase)

As a Full-Stack Developer at AuthKeeper, you will be responsible for designing and developing secure features across the full stack, writing scalable and privacy-preserving code, implementing cryptographic workflows, enforcing strict Row Level Security, integrating secure session handling mechanisms, collaborating with security engineers, and continuously improving encryption practices to maintain zero-knowledge guarantees. You will have a hands-on role with high-impact responsibilities and direct influence over a security-first product. **Responsibilities:** - Design and develop secure features across the full stack (e.g., vault UI, TOTP, secure notes, password manager) - Write scalable, privacy-preserving code using React, TailwindCSS, Supabase, and Netlify Functions - Implement cryptographic workflows using Web Crypto API and AES-256-GCM - Enforce strict Row Level Security in Supabase and manage PostgreSQL access policies - Integrate secure session handling and auto-lock mechanisms for sensitive vault data - Harden frontend components with strong CSP headers, input validation, and memory-safe design - Collaborate with security engineers to address threat models and implement mitigation strategies - Continuously audit and improve encryption practices to maintain zero-knowledge guarantees - Contribute to a secure CI/CD pipeline with static analysis, secrets detection, and code linting **Required Skills:** - Strong hands-on experience with React, TypeScript/JavaScript, and Tailwind CSS - Deep understanding of Supabase, particularly authentication, RLS, and real-time sync - Familiarity with Netlify Functions or similar serverless environments - Experience with client-side encryption, browser-based crypto (Web Crypto API), and secure session design - Solid knowledge of zero-knowledge architecture, memory handling, and local key derivation (PBKDF2) - Understanding of web security principles: XSS, CSRF, CSP, HSTS - Git, CI/CD workflows, and clean modular architecture - Proactive mindset with attention to security implications in every layer **Nice to Have:** - Experience building or contributing to password managers, encrypted storage apps, or MFA tools - Familiarity with OAuth2, TOTP generation, or browser extension security models - Experience implementing Progressive Web Apps (PWAs) or offline-first apps - Understanding of SSR (e.g., Next.js), advanced security headers, and anti-fingerprinting techniques At AuthKeeper, you will help build a product that prioritizes privacy, encryption, and user control, work independently with high ownership over core systems, collaborate with a mission-driven team on a modern stack, gain exposure to advanced cryptography, privacy tech, and real-world threat modeling, and make an impact in a space where security is not an afterthought it's the foundation. Apply by sending your GitHub, portfolio (or projects), and a short paragraph about why this mission excites you to [HIDDEN TEXT]. As a Full-Stack Developer at AuthKeeper, you will be responsible for designing and developing secure features across the full stack, writing scalable and privacy-preserving code, implementing cryptographic workflows, enforcing strict Row Level Security, integrating secure session handling mechanisms, collaborating with security engineers, and continuously improving encryption practices to maintain zero-knowledge guarantees. You will have a hands-on role with high-impact responsibilities and direct influence over a security-first product. **Responsibilities:** - Design and develop secure features across the full stack (e.g., vault UI, TOTP, secure notes, password manager) - Write scalable, privacy-preserving code using React, TailwindCSS, Supabase, and Netlify Functions - Implement cryptographic workflows using Web Crypto API and AES-256-GCM - Enforce strict Row Level Security in Supabase and manage PostgreSQL access policies - Integrate secure session handling and auto-lock mechanisms for sensitive vault data - Harden frontend components with strong CSP headers, input validation, and memory-safe design - Collaborate with security engineers to address threat models and implement mitigation strategies - Continuously audit and improve encryption practices to maintain zero-knowledge guarantees - Contribute to a secure CI/CD pipeline with static analysis, secrets detection, and code linting **Required Skills:** - Strong hands-on experience with React, TypeScript/JavaScript, and Tailwind CSS - Deep understanding of Supabase, particularly authentication, RLS, and real-time sync - Familiarity with Netlify Functions or similar serverless environments - Experience with client-side encryption, browser-based crypto (Web Crypto API), and secure session design - Solid knowledge of zero-knowledge architecture, memory handling, and local key derivation (PBKDF2) - Understanding of web security principles: XSS, CSRF, CSP, HSTS - Git, CI/CD workflows, and clean modular architecture - Proactive mindset with