Pular para o conteúdo principal
Logo do site
Voltar para a página inicial

Getup · 2025

Quor

Sole front-end engineer (greenfield)

Customer console for Quor, Getup's catalog of hardened, zero-CVE container images — browse the catalog, inspect per-image security data, and manage registry access.

Visitar site
  • React
  • TypeScript
  • Vite
  • Tailwind CSS
  • TanStack Router
  • TanStack Query
  • TanStack Table
  • TanStack Form
Quor

Problema

Quor sells trust: hardened container images with zero-CVE baselines, SBOMs, and verifiable provenance. Customers needed a console that makes that evidence usable — a growing image catalog to browse, dense package-level security data to inspect, and registry credentials that production pipelines depend on.

Resultado

Shipped to production with the product's public launch. From empty repo to customers' hands solo: a fully type-safe React SPA where heavy catalog and security datasets stay responsive, and credential flows are designed to be hard to get wrong.

Destaques

  • Sole front-end engineer — architecture, design system, and implementation from zero to launch
  • Type-safe end to end with React, TypeScript, and the TanStack stack
  • Catalog and image-detail views tuned to stay fast on large security datasets
  • Registry credential and org management designed so CI access is hard to break

README

Overview

Quor is Getup's catalog of hardened, production-ready container images: zero-CVE baselines, SBOMs, cryptographic signing, and SLSA-verifiable provenance for teams running Kubernetes in production. I built its customer-facing console as the sole front-end engineer, from empty repository to public launch.

What I built

  • Image catalog and detail views — browse and filter the hardened-image catalog by category and architecture, drill into an image's tags and per-image security data.
  • Account and registry management — pull credentials, organization flows, and settings: the surfaces where a UX mistake can lock a CI pipeline out of its production images.

Architecture

A greenfield React SPA built on Vite and TypeScript, styled with Tailwind CSS, and all-in on the TanStack ecosystem — Router for type-safe routing, Query for server state, Table for the heavy data grids, and Form for the credential and organization flows. Type safety runs from route params to form submissions.

Hard problems

  • Heavy data at speed — image catalogs and package-level security data are large; tables, search, and filtering had to stay responsive at real data sizes.
  • Greenfield decisions that had to last — stack, design system, data-fetching and auth patterns chosen from zero, with the product growing around them.
  • Credential UX with real blast radius — registry access flows were designed so the dangerous mistakes are hard to make.

Outcome

The console shipped to production with Quor's public launch — one front-end engineer, zero to launched product.