Embedded Files
General
Skills
Agentic AI
Agents
OpenClaw (formerly Clawbot / MoltBot)
Kimi Claw
API Keys
Openrouter: free and paid keys from one interface.
OpenClaw
OpenClaw (formerly Clawbot / MoltBot)
7 Pillars of App Architechture
Frontend (User Interface)
What it is: Everything users see and interact with
Technologies:
For Web Apps:
React + Next.js (most popular)
React: UI library
Next.js: Framework (routing, SSR, etc.)
Tailwind CSS: Styling
Shadcn/ui: Pre-built components
For Mobile Apps:
React Native (cross-platform)
iOS + Android from one codebase
Expo: Makes it easier
Works with AI coding tools
AI Tools to Build Frontend:
Beginner:
v0.dev (Vercel) - Generate React components from text
Bolt.new - Full stack apps from prompts
Lovable - No-code AI builder
Intermediate:
Cursor - AI-powered IDE
Windsurf - Similar to Cursor
Claude Code - Terminal coding
Advanced:
VS Code + GitHub Copilot
Full control + AI assistance
Key Decisions:
Web, mobile, or both?
Framework choice (React vs Vue vs Svelte)
Styling approach (Tailwind vs CSS-in-JS)
Component library (shadcn vs MUI vs custom)
2. Backend (Server Logic)
What it is: Server-side code, business logic, API endpoints
Technologies:
Node.js (JavaScript/TypeScript):
Express.js or Fastify
Most popular
Same language as frontend
Huge ecosystem
Easy for AI to generate
When to use:
Real-time apps (WebSockets)
JavaScript-heavy projects
Fast prototyping
Python:
FastAPI or Django
Best for AI/ML integration
Clean, readable code
Great for data processing
AI tools excel at Python
When to use:
AI-powered apps
Data processing
Scripting/automation
Backend-heavy logic
Go (Golang):
Gin or Fiber
Very fast
Good concurrency
Compiled (catch errors early)
When to use:
High performance needed
Microservices
System-level programming
Serverless (No traditional backend):
Vercel Functions
Cloudflare Workers
AWS Lambda
When to use:
Simple APIs
Auto-scaling needed
Don't want to manage servers
Pay per use (not 24/7)
Key Decisions:
Language choice (JS vs Python vs Go)
Framework (Express vs FastAPI vs Django)
Monolith vs microservices
REST vs GraphQL vs tRPC
3. Databases (Data Storage)
What it is: Where you store user data, content, state
SQL Databases (Structured):
PostgreSQL (most popular)
Powerful, reliable
JSON support
Full-text search
Recommended: Supabase (hosted Postgres)
MySQL/MariaDB
Widely supported
Good for simple apps
Recommended: PlanetScale
SQLite
File-based, no server
Perfect for local/small apps└─ Used in mobile apps
NoSQL Databases (Flexible):
MongoDB
Document-based (JSON-like)
Flexible schema
Good for rapid iteration
Recommended: MongoDB Atlas
Redis
In-memory (super fast)
Caching, sessions
Pub/sub messaging
Complement to main DB
Vector Databases (For AI Apps):
Pinecone (managed)
Best for production
Easy to use
Free tier available
Use: RAG, semantic search
Chroma (open-source)
Run locally
Good for development
Free
Use: Testing AI features
Weaviate
Self-hosted or cloud
Hybrid search
Use: Complex AI apps
Qdrant
Fast, Rust-based
Good performance
Use: High-scale AI
Key Decisions:
SQL vs NoSQL (structure vs flexibility)
Hosted vs self-managedNeed vector DB? (if AI features)
Backup strategy
4. Authentication (User Identity)
What it is: User login, signup, access control
Managed Solutions (Easiest):
Clerk (recommended for beginners)
Beautiful pre-built UI
Email, OAuth, magic links
Free tier: 10K users
Pricing: $25/mo after
Use: When you want it to "just work"
Supabase Auth
Included with Supabase
Email, OAuth, phone
Free tier
Use: If using Supabase already
Auth0
Enterprise-grade
Very customizable
Free tier: 7K users
Use: Complex auth needs
Firebase Auth
Google ecosystem
Easy mobile integration
Free tier generous
Use: If using Firebase
Self-Hosted (More Control):
NextAuth.js
Open-source
Works with Next.js
Many providers
Use: Want control + customization
Keycloak
Full identity management
Self-hosted
Enterprise features
Use: Large orgs, compliance needs
Methods to Support:
Essential:
Email + password
Password reset
Email verification
Nice to have:
OAuth (Google, GitHub, etc.)
Magic links (passwordless)
Phone/SMS
Biometric (mobile)
Advanced:
2FA/MFA
SSO (Single Sign-On)
SAML (enterprise)
Key Decisions:
Managed vs self-hosted
Which OAuth providers to support
2FA required?
Session vs token-based
5. Payments (Monetisation)
What it is: Taking money from users
Payment Processors:
Stripe (recommended):
Industry standard, best docs
Features:
Credit cards
Subscriptions├─ One-time payments
Invoicing
Webhooks (payment events)
195+ countries
Pricing:
2.9% + $0.30 per transaction (US)
1.4% + €0.25 (EU cards in EU)
No monthly fee
Why use:
Best developer experience
Excellent documentation
Handles 3D Secure, PCI compliance
Works everywhere
Mobile In-App Purchases:
Apple App Store:
30% fee (15% if <$1M revenue)
Mandatory for iOS apps
Use: StoreKit (iOS SDK)
Google Play Store:
30% fee (15% if <$1M revenue)
Required for Android
Use: Billing Library
Key Decisions:
One-time vs subscription
Stripe vs Paddle (tax handling)
Mobile in-app vs web checkout
Free trial strategy
6. Security (Protection)
What it is: Keeping your app and user data safe
HTTPS/SSL (Essential):
Let's Encrypt (free)
Free SSL certificates
Auto-renewal
Trusted by all browsers
Use: Certbot for setup
Cloudflare (free + more)
Free SSL
DDoS protection
CDN
Web application firewall
NEVER launch without HTTPS
Firewall (Server Protection):
UFW (Ubuntu)
sudo ufw default deny incoming
sudo ufw default allow outgoing
sudo ufw allow 22/tcp # SSH
sudo ufw allow 80/tcp # HTTP
sudo ufw allow 443/tcp # HTTPS
sudo ufw enable
Only open ports you need
Fail2Ban (Auto-blocking):
Blocks IPs after failed login attempts
Install:
sudo apt install fail2ban
Auto-bans:
SSH brute force
Failed auth attempts
Scanning/probingEssential for any VPS
Environment Variables (Secrets):
NEVER hardcode:
API keys in code
Database passwords in code
Secret keys in code
ALWAYS use .env files:
.env (local, gitignored)
Environment vars (production)
Example .env:
DATABASE_URL=postgresql://...
STRIPE_SECRET_KEY=sk_live_...
CLAUDE_API_KEY=sk-ant-...
Load with:
Node.js: dotenv package
Next.js: Built-in
Python: python-dotenv
Rate Limiting:
Prevent abuse:
Limit API calls per user
Limit login attempts
Limit file uploads
Limit expensive operations
Tools:
express-rate-limit (Node.js)
slowapi (FastAPI)
Cloudflare Rate Limiting
Input Validation:
Never trust user input
Validate:
Email format
Password strength
File types (uploads)
SQL injection prevention
XSS prevention
Libraries:
Zod (TypeScript)
Joi (JavaScript)
Pydantic (Python)
GDPR/Privacy (If EU users):
Required:
Privacy policy
Cookie consent banner
Data export (user can download)
Data deletion (user can delete account)
EU server option (data residency)
Tools:
Termly.io (policy generator)
Cookiebot (consent management)
GDPR compliance checklist
Key Decisions:
SSL provider (Let’s Encrypt vs Cloudflare)
Firewall rules (which ports)
Secrets management (where to store)
Rate limit thresholds
GDPR compliance (if needed)
7. Deployment (Going Live)
What it is: Making your app accessible to users
Web Apps - Easiest Options:
Vercel (recommended for Next.js):
Features:
Auto-deploy from GitHub
Global CDN
Serverless functions
Preview deployments (per PR)
Free SSL
Pricing:
Free: Generous (hobby projects)
Pro: $20/mo (commercial)
Best for:
Next.js apps (made by same company)
React apps
Static sites
Serverless APIs
Deploy:
1. Connect GitHub repo
2. Push code
3. Auto-deploys
That's it.
Netlify:
Similar to Vercel
Features:
GitHub auto-deploy
Forms, functions
Free SSL
Split testing
Best for:
Static sites
JAMstack
Alternative to Vercel
Cloudflare Pages:
Free, fast CDN
Features:
Unlimited bandwidth (free)
Fast global CDN
GitHub integration
Workers (edge functions)
Best for:
Static sites
Global audience
Budget-conscious
Full-Stack Apps - VPS Required:
Railway:
Easy full-stack deployment
Features:
Deploy from GitHub
Databases included
Environment variables
Auto-scaling
Simple pricing
Pricing:
$5 credit/month free
Pay per use after
Best for:
Node.js/Python apps
Apps needing database
Beginners
Deploy:
1. Connect repo
2. Railway detects stack
3. Auto-deploys
Fly.io:
Edge deployment (globally distributed)
Features:
Deploy anywhere globally
Docker-based
Databases supported
Low latency
Pricing:
3 VMs free
Pay per use after
Best for:
Apps needing global reach
Docker apps
Low-latency requirements
VPS (Full Control):
When you need a traditional server
See VPS section below for:
DigitalOcean
Hetzner
Mobile Apps:
Apple App Store:
Requirements:
Apple Developer Account ($99/year)
Mac computer (for Xcode)
iOS app bundle
Process:
1. Enroll at developer.apple.com
2. Build app with Xcode / Expo
3. Submit for review (1-3 days)
4. App goes live
Fees:
$99/year account
30% of in-app purchases (15% under $1M)
Google Play Store:
Requirements:
Google Play Console ($25 one-time)
Android app bundle (APK/AAB)
Process:
1. Register at play.google.com/console
2. Build APK/AAB
3. Upload, fill listing
4. Publish (review within hours)Fees:
$25 one-time
30% of in-app purchases (15% under $1M)
Cross-Platform Tools:
Expo (React Native)
Build iOS + Android
No Mac required (EAS Build)
OTA updates
Easiest for beginners
Key Decisions:
Web only vs mobile vs both
Platform-as-service vs VPS
Apple/Google stores vs PWADeployment frequency
Auto-deploy vs manual
Before doing any of this, write a PRD: - Vibe coding prompt template by KhazP on Github
AI
Notebook LM: Your research and thinking partner
Gemini Gems: Gems are custom AI experts for help on any topic
Nano Banana: Generate and edit images and videos (via Gemini)
Images: Use gemini or Nano Banana
Workspace
Gmail (mail.google.com)
Google Drive (drive.google.com)
Google Docs (docs.google.com)
Google Sheets (sheets.google.com)
Google Slides (slides.google.com)
Google Calendar (calendar.google.com)
Google Meet (meet.google.com)
Google Keep (keep.google.com)
Google Photos (photos.google.com)
Google Maps (maps.google.com)
Google Translate (translate.google.com)
Google Forms (forms.google.com)
Google Chat (chat.google.com)
For developers
Here are the most powerful Google tools geared toward developers. These are web-based consoles, platforms, and studios for building, deploying, managing, and scaling applications, APIs, AI models, and more. They’re essential for professional development, unlike the general productivity apps.
1. Google Cloud Console (console.cloud.google.com)
The central hub for managing Google Cloud resources. Deploy VMs, databases, networking, storage, and services. Enable APIs, manage billing, monitor performance, and access all cloud tools.
2. Firebase Console (console.firebase.google.com)
Google’s platform for mobile and web app development. Build backend services like authentication, realtime databases, cloud storage, hosting, functions, and analytics. Great for rapid prototyping with AI integrations (e.g., Gemini).
3. Google Developers Console / APIs & Services (console.developers.google.com)
Manage APIs, OAuth credentials, service accounts, and quotas. Essential for integrating Google services (Maps, YouTube, Drive, etc.) into your apps. (Often redirects to Cloud Console sections.)
4. Google Play Console (play.google.com/console)
For Android developers: Publish, distribute, and monetize apps/games on Google Play. Track performance, manage releases, reviews, and in-app purchases.
5. App Engine Admin Console (appengine.google.com or via Cloud Console)
Deploy and manage serverless web apps on Google App Engine. Supports languages like Python, Java, Node.js, Go. Auto-scales and handles infrastructure.
6. Gemini in Google AI Studio (aistudio.google.com)
Experiment with and build generative AI apps using Gemini models. Prototype prompts, fine-tune, and integrate into your projects.
7. Google Colab (colab.research.google.com)
Free Jupyter notebook environment for coding (Python/ML-focused). Run code in the cloud with GPU/TPU access—perfect for data science, AI prototyping.
8. Apps Script Editor (script.google.com)
Extend Google Workspace apps (Docs, Sheets, Forms) with custom scripts. Deploy as web apps, add-ons, or automations. Useful for building custom tools or simple web interfaces.
9. Android Studio (developer.android.com/studio) – Web previews available, but primarily desktop.
(Main IDE for Android, with cloud-based features like emulators.)
10. Chrome DevTools (built into chrome://inspect or developer.chrome.com)
Advanced web debugging tools for inspecting, profiling, and optimizing web apps directly in Chrome.
These tools integrate seamlessly (e.g., Firebase with Cloud, APIs via Developers Console). Most are free to start, with pay-as-you-go for usage. For advanced site/app building beyond basic Google Sites, use Firebase Hosting or App Engine for deployment, or Apps Script for custom web apps.
Start with the Google Cloud Console if you’re new to cloud development—it’s the gateway to everything. Check developers.google.com for tutorials and docs.
Settings
Important Google Account Settings Links
The main hub for managing your Google Account is https://myaccount.google.com/ (you’ll need to sign in). From there, you can navigate to various sections. Here are direct links to the most important settings areas (as of late 2025—these may redirect or require sign-in):
Home/Dashboard
https://admin.google.com/
Overview of your account, quick access to security and privacy checkups.Personal Info
https://myaccount.google.com/personal-info
Manage your name, birthday, gender, phone number, email addresses, and other basic details.Data & Privacy / My Activity
https://myactivity.google.com/myactivity
Control activity tracking, ad personalization, data downloads/deletions, and more.Security
Change password, enable 2-Step Verification, review devices, third-party access, and recent security events.Security Checkup
Quick personalized recommendations to secure your account (highly recommended to run regularly).Privacy Checkup
Step-by-step guide to review and adjust privacy settings.Payments & Subscriptions
Manage payment methods, subscriptions (like YouTube Premium or Google One), and purchase history.Third-Party Apps & Services
Review and revoke access for apps/websites connected to your Google Account.Activity Controls
Toggle saving of Web & App Activity, Location History, YouTube History, etc.10. Password Manager
https://passwords.google.com/ (or via Security section)
Manage saved passwords across Google services.11. Delete Your Google Account (if needed)
https://myaccount.google.com/deleteaccount
Permanent deletion options.These cover the core areas for security, privacy, personal data, and account management. Start with the Security and Privacy Checkups—they’re quick and highlight any urgent actions. For the latest changes, always visit from the main dashboard.
Vibe Coding
LLMs
Claude Next generation AI assistant built by Anthropic
Open Code The open source AI coding agent
CursorAI-assisted integrated development environment
Vercel Developer tools and cloud infrastructure
Supa Base The Postgres development platform
Sentry Code breaks, fix it faster
Snyk Purpose-Built Security Tools
Content
Pictures
Grok
Higgsfield Generate ai videos and images with cinematic quality
Hey Gen Create professional AI videos with avatars, voices, and scripts
Music
Google
Voice
Eleven labs
Google Sites
Report abuse