Hi there 👋
I’m currently mainly working on
- cmfcmf/docusaurus-search-local: A local/offline search plugin for Docusaurus v2.
- AdventureLookup/AdventureLookup: A website for finding tabletop adventures.
- free-pdk: Reverse Engineering of Padauk mikrocontrollers.
Libraries I Published
cmfcmf/OpenWeatherMap-PHP-API
An API wrapper for OpenWeatherMap.org written in PHP.
cmfcmf/docusaurus-search-local
Offline search support for documentation created with Docusaurus.
Documentation I've written
Writing code is not everything. I also regularly contribute to documentation, be it the introduction of new documentation [1] [2] [3], fixing typos, or commenting the code I contribute.
Full Stack Projects
AdventureLookup/AdventureLookup #PHP, #Symfony, #ElasticSearch
A community-driven website for finding tabletop adventures.
cmfcmf/CFRC (private repository) #TypeScript, #Node.js, #Redux, #Material-UI
A model railroad control software with back- and frontend written in TypeScript
zikula/core
Zikula (previously named PostNuke) is a content management framework written in PHP. I was one of the lead developers from ~2013 to ~2016 and created more than 150 issues and more than 250 pull requests during this time. One of my biggest projects was integrating the Symfony Router.
More Projects and Interests
Community Management
I try to make contributing to my bigger projets cmfcmf/OpenWeatherMap-PHP-API and AdventureLookup/AdventureLookup as easy and accessible as possible.
I aim to provide easy to setup development environments, including browser-based environments. I write extensive contributing guidelines aimed at both developers and non-developers. I try to be encouraging and supportive to all contributors, because I know how much of a difference the behavior of people you are interacting with can make.
Security Vulnerabilies I discovered
Around 2014, I was particularly interested in security vulnerarbilities and eventually found three vulnerabilities on big websites. While I no longer actively search for vulnerabilities, my knowledge and experience with them often helps me avoid them in code I write and review.
- I found an Open Redirect Vulnerability on twitch.tv, that apparently had already been reported but not yet been fixed.
- I found an Open Redirect Vulnerability on tumblr.com, which I eventually received a bounty for.
- I found a way to check if a private repository with a given name exists on github.com, which was out of scope of the bounty program at that time. I got some cool GitHub swag though!
Weird Projects
These are projects that are a bit unusual at first glance
cmfcmf/MagicMouse
A webbrowser for Squeak/Smalltalk. The webbrowser works by opening Chrome in the background and streaming images from Chrome to Squeak via FFI.
cmfcmf/Anno2018
A rewrite of the 20-year old game Anno1602 in TypeScript. This includes reverse engineering ancient file formats as well as analyzing assembler code.
PolyCode Editor (private repository)
A code editor written in TruffleSqueak/Smalltalk, that allows you to combine multiple programming languages in the same file.
CR newlines to also properly support LF and CRLF. We also wrote a binary viewer.
PolyJuS Notebooks (private repository)
Jupyter Notebook-like environment for TruffleSqueak/Smalltalk that lets you use multiple programming languages in one notebook.
Contributions/Code I'm particularly proud of
🎉 I contributed to Visual Studio Code
My contribution allows tasks to be configured to run side by side in the same terminal.🎉 My first pull request from 2012, which was my first ever contribution to open source software.