Serverless API Hardening Sprint
API Gateway + Lambda threat modeling, JWT validation, and idempotency patterns for public endpoints.
Duration: 10 days · Format: Sprint · Category: Exam Prep Intensives
From 540,000 KRW (informational; enrollment flows through your selected provider.)
Overview
Short bursts of implementation with security linting baked in. You ship a hardened stub service with tests that fail loudly on regressions.
What is included
- Threat modeling cards
- JWT validation lab
- Idempotency key replay harness
- WAF rule tuning sandbox
- Structured logging contract
- CI pipeline snippet for policy checks
Outcomes
- Ship a minimal secure API stub with tests
- Document trust boundaries for reviewers
- Tune WAF rules without blocking legitimate traffic
Lead mentor
LP
Leo Park
Senior Cloud Instructor focused on operational excellence for distributed systems.
FAQ
Node.js 20 templates are default; Python 3.11 alternate track on request.
Experience notes
Idempotency harness caught two edge cases our team had punted for months.