FastAPI & PostgreSQL | Automation & Web Scraping | Security Tools
Role Python Backend Developer
Education BS Computer Science, FAST-NUCES, 2022-2026
Location Sialkot, Pakistan
Focus FastAPI backends, automation, web scraping, security tools, reports
Building Security Misconfiguration Scanner
Currently Software Developer Intern @ QuantumLogicsLabs
I like building systems that are not just UI demos: APIs, authentication, database models, background jobs, reports, exports, CLI tools, documentation, Docker setup, and tests.
My strongest project is a Security Misconfiguration Scanner built with Python, FastAPI, PostgreSQL, SQLAlchemy, Alembic, JWT authentication, Docker, pytest, Ruff, mypy, GitHub Actions, ReportLab, HTTPX, and Playwright.
At QuantumLogicsLabs, I contribute across frontend, backend, authentication, APIs, and database-backed features.
A Python/FastAPI platform that scans websites for common security misconfigurations and stores scan history in PostgreSQL.
What it checks
- Missing or weak security headers
- Exposed sensitive files
- Weak CORS behavior
- Server banner leaks
- SSL and HTTPS issues
- Risky deployment patterns
What I built
- CLI scanner with table and JSON output
- JWT-authenticated REST API under
/api/v1 - Background scan jobs with persisted status
- PostgreSQL models for users, scans, findings, and scraped jobs
- Severity scoring and remediation guidance
- PDF reports for completed scans
- Web scraping with static parsing and optional Playwright rendering
- CSV export for saved scrape results
- Docker Compose setup with app, PostgreSQL, and intentionally vulnerable target site
- Tests and quality checks with pytest, pytest-asyncio, Ruff, mypy, coverage, and GitHub Actions
Project stack
Python FastAPI PostgreSQL SQLAlchemy Alembic JWT HTTPX Docker pytest Ruff mypy ReportLab Playwright
- Security Misconfiguration Scanner — Python/FastAPI security scanner with JWT auth, PostgreSQL, PDF reports, and CI.
- BEAMS360 — EdTech admissions CRM prototype with React, FastAPI, and role-based access control.
- DocMate — Full-stack PDF workspace with text extraction, OCR, and report generation.
An EdTech admissions CRM prototype for managing leads, applications, and student/parent access.
- Role-based access control for admins, staff, and parent/student portal users
- JWT-authenticated FastAPI backend with PostgreSQL-backed lead and application data
- Dashboard views with filters and status tracking for admissions staff
- React + Tailwind CSS frontend consuming the FastAPI backend
- Dockerized setup for local development
React FastAPI PostgreSQL JWT RBAC Tailwind CSS Docker
A full-stack PDF workspace for uploading, processing, and extracting content from PDF files.
- File upload and management workflows backed by PostgreSQL and SQLAlchemy
- Text extraction and PDF report generation with
pypdfand ReportLab - OCR and summarization workflow support for scanned/unstructured documents
- FastAPI backend serving a React frontend for document operations
React FastAPI SQLAlchemy PostgreSQL pypdf ReportLab
- I separate routes, schemas, services, CRUD/repositories, and models.
- I use Pydantic models for request and response validation.
- I use SQLAlchemy ORM and Alembic migrations for database-backed projects.
- I write tests for API behavior, service logic, edge cases, and database rules.
- I use Docker and
.env.examplefiles so projects can run outside my own machine. - I document setup commands, API examples, and project limitations clearly.


