Deep technical notes and architectural essays on software engineering.https://leestack.dev/https://leestack.dev/writing/ai-assisted-exploit-discovery-patch-latency/https://leestack.dev/writing/ai-assisted-exploit-discovery-patch-latency/What the Apple M5 Memory Integrity Enforcement bypass says about production security engineering, distributed systems failure modes, and the shrinking time between vulnerability discovery and operational exposure.Sat, 16 May 2026 00:00:00 GMThttps://leestack.dev/writing/attribution-systems-are-security-systems/https://leestack.dev/writing/attribution-systems-are-security-systems/A backend engineering deep-dive into the $35M eBay affiliate fraud: covering the HTTP semantics that made it possible, the statistical signatures that exposed it, and the distributed systems principles that should have prevented it.Sat, 02 May 2026 00:00:00 GMThttps://leestack.dev/notes#code-review-bottleneck/https://leestack.dev/notes#code-review-bottleneck/Why AI tools are speeding up development but making our reviews feel impossible.Sun, 26 Apr 2026 00:00:00 GMThttps://leestack.dev/notes#the-vault-was-real/https://leestack.dev/notes#the-vault-was-real/My take on the broken promise of secure enclaves and the reality of hardware-based trust.Tue, 21 Apr 2026 00:00:00 GMThttps://leestack.dev/notes#risk-of-ownership/https://leestack.dev/notes#risk-of-ownership/Why ownership transfers are the new zero-days in modern software ecosystems.Tue, 14 Apr 2026 00:00:00 GMThttps://leestack.dev/writing/linkedin-aed-systems-analysis/https://leestack.dev/writing/linkedin-aed-systems-analysis/A backend engineer's breakdown of LinkedIn's Active Extension Detection system: the fingerprinting pipeline, the data model, the distributed surveillance architecture, and what it means when a platform weaponizes browser primitives against its own users.Thu, 02 Apr 2026 00:00:00 GMThttps://leestack.dev/writing/nasa-rules-for-code-that-cant-fail/https://leestack.dev/writing/nasa-rules-for-code-that-cant-fail/Applying NASA's legendary JPL flight software discipline to modern backend infrastructure and the era of AI-generated code.Wed, 18 Mar 2026 00:00:00 GMThttps://leestack.dev/writing/sqlite-vs-postgresql-framework/https://leestack.dev/writing/sqlite-vs-postgresql-framework/A systems-level breakdown of SQLite and PostgreSQL: concurrency models, WAL mechanics, failure modes, and when the conventional wisdom is wrong.Fri, 13 Mar 2026 00:00:00 GMThttps://leestack.dev/notes#code-is-cheap/https://leestack.dev/notes#code-is-cheap/Why AI hasn't killed software moats, it just raised the bar for what counts as one.Thu, 12 Mar 2026 00:00:00 GMThttps://leestack.dev/notes#the-new-gods/https://leestack.dev/notes#the-new-gods/Why AI might be the next belief system as traditional authority fades.Thu, 12 Mar 2026 00:00:00 GMThttps://leestack.dev/notes#the-job-was-never-writing-code/https://leestack.dev/notes#the-job-was-never-writing-code/Why engineering value is shifting from output volume to decision quality.Mon, 19 Jan 2026 00:00:00 GMThttps://leestack.dev/notes#gos-testmain-silence/https://leestack.dev/notes#gos-testmain-silence/How a single missing line in TestMain can turn a full test suite into a silent no-op.Sat, 29 Nov 2025 00:00:00 GMThttps://leestack.dev/notes#ram-as-ideology/https://leestack.dev/notes#ram-as-ideology/How memory management reflects the deeper philosophies of iOS and Android.Thu, 06 Nov 2025 00:00:00 GMThttps://leestack.dev/writing/sql-window-functions-production/https://leestack.dev/writing/sql-window-functions-production/Window functions aren't just a cleaner syntax for analytics. Understanding their execution model, cost profile, and failure modes is what separates a working query from one that takes down your reporting replica.Sat, 17 May 2025 00:00:00 GMThttps://leestack.dev/writing/the-bathtub-principle/https://leestack.dev/writing/the-bathtub-principle/Why distributed systems fail isn't usually a code quality problem. It's a failure to model stocks, flows, feedback loops, and leverage points under real production load.Fri, 18 Apr 2025 00:00:00 GMThttps://leestack.dev/writing/go-maps-never-shrink/https://leestack.dev/writing/go-maps-never-shrink/A production postmortem on Go's map memory model, why deleting keys doesn't reclaim heap, how this compounds in long-running services, and what Rust's HashMap design teaches us about explicit control in backend systems.Sun, 13 Apr 2025 00:00:00 GMThttps://leestack.dev/notes#denial-of-wallet/https://leestack.dev/notes#denial-of-wallet/Why serverless pricing models are a security risk and how to defend against them.Fri, 04 Apr 2025 00:00:00 GMThttps://leestack.dev/notes#typescript-rewrite-go/https://leestack.dev/notes#typescript-rewrite-go/Why Microsoft's switch from JavaScript to Go for the TypeScript compiler is a massive architectural admission.Wed, 12 Mar 2025 00:00:00 GMThttps://leestack.dev/notes#tdd-and-ai-code/https://leestack.dev/notes#tdd-and-ai-code/Why TDD is the only thing keeping AI-generated code from becoming a production liability.Sat, 22 Feb 2025 00:00:00 GMThttps://leestack.dev/notes#rust-vs-go-reliability/https://leestack.dev/notes#rust-vs-go-reliability/Why the upfront cost of learning Rust pays off in long-term reliability compared to Go.Fri, 08 Nov 2024 00:00:00 GMT