profile
🫡

Hello, I'm William

Full-Stack Engineer  ·  Security+ & DoD Contractor  ·  Web3 & AI Systems

8+ years shipping production systems — federal health IT, Web3 infrastructure, and SaaS.

I build with strict typed boundaries, security-first design, and documented architecture.

Contact me here
Download CVView Resume

Full-stack engineer and smart contract security auditor with 8+ years of production experience across federal healthcare IT, Web3 infrastructure, and independent SaaS. Day job: DoD contract engineer supporting Defense Health Agency platforms — shipping the first government blockchain deployment in production on Hyperledger Iroha. CompTIA Security+ | IAT II certified.

Off hours: auditing smart contracts on Avalanche, building SaaS tools, and shipping community projects at The Grotto (AVAX ecosystem). 44-finding audit track record — most recent: Club HashCash (Avalanche C-Chain). Methodology covers OWASP Smart Contract Top 10 2026: ABI-level analysis, adversarial threat modeling, Foundry PoC generation.

Currently expanding AvaSleuth (ContractSleuth + WalletSleuth + TokenRadar), shipping GymTech to production, and open to smart contract audit engagements. When a new tool ships that changes how things get built, I learn it and integrate it. I do not plateau.

FLAGSHIP

AvaSleuth / ContractSleuth

Flagship multi-module Web3 intelligence platform for the Avalanche ecosystem. Smart contract auditing pipeline spanning L0–L7: ABI-level static analysis, live on-chain intelligence, adversarial threat modeling, and Foundry three-phase PoC generation. 5-gate anti-hallucination pipeline prevents false findings. Includes WalletSleuth for wallet analysis and TokenRadar for token intelligence. Heartbeat state machine maintains module health. 44-finding audit track record including Club HashCash (Avalanche C-Chain).

View Code
  • NestJS
  • TypeScript
  • PostgreSQL
  • Redis
  • BullMQ
  • Foundry
  • Avalanche
  • Solidity
  • wagmi
  • viem
> AvaSleuth Terminal
DEMO
AvaSleuth ready. Primary: Qwen3.5 | Critical: Claude
Token flow: scan → who_bought → inspect
Smart wallets: 996 identities indexed
Type help or ? to see all commands.
>

DCGP

Context governance kernel for LLM agents. Implements entropy prediction and hallucination blocking to enforce deterministic output within agentic pipelines. Integrates as an opencode plugin, giving any LLM orchestration system a typed context boundary and audit surface.

View Code
  • TypeScript
  • LLM
  • RAG
  • AI
  • Node.js
  • Agents

WillAgent

NestJS ReACT orchestration system with dual-routing between local models and the Claude API. Features a typed tool registry, Redis state persistence, kill-switch for agent termination, and full audit logging. Designed for autonomous task execution with deterministic control flow and zero-trust module boundaries.

View Code
  • NestJS
  • TypeScript
  • Redis
  • Claude API
  • Node.js
  • Agents
  • LLM

Defense Health Agency — DoD Contractor

Software Engineer supporting health.mil and TRICARE platforms through government contracts (Semper Valens Solutions → Chenega Corporation). Shipping DoD Health IT features on Hyperledger Iroha—the first government blockchain deployment in production. Built a NestJS SDK adopted by 4 DoD teams, reducing boilerplate setup from 2 days to 3 hours. Maintaining enterprise CMS sites with JavaScript, C#, and Sitecore while implementing security protocols including end-to-end TLS, VPN tunnels, and WAF configurations.

  • NestJS
  • Hyperledger Iroha
  • C#
  • JavaScript
  • Sitecore CMS
  • TypeScript
  • Security+
  • .NET
  • Node.js
  • DoD

GymTech — Gym Management SaaS

Full-stack SaaS platform for martial arts and fitness gyms competing with SparkMembership. Built multi-tenant architecture with role-based access control (super_admin, gym_owner, staff, member) and tier-based subscriptions ($79-$299/mo). Integrated Stripe for platform billing and Stripe Connect for gym payment processing. Core features include class scheduling, member database, QR check-in system, landing page builder, and real-time analytics dashboards. PostgreSQL triggers enforce tier limits on members, staff, and messaging quotas. Designed complete subscription lifecycle with 14-day trials and automated data policies.

  • Next.js
  • TypeScript
  • Supabase
  • PostgreSQL
  • Stripe
  • Tailwind CSS
  • Zustand
  • RLS
  • Multi-tenant
  • SaaS

Learning Tutor

An AI-powered personalized learning platform that curates adaptive learning plans for any subject. Built to help me achieve my CompTIA Security+ certification, this full-stack application leverages LLM technology to create customized educational pathways and intelligent tutoring capabilities.

View Live Demo
  • React
  • Next.js
  • Tailwind
  • AI
  • LLM
  • TypeScript
  • Node.js
  • API
  • Full-Stack

Anything_AI

Facilitating MCP tools with agentic AI integration for any website and tech stack. Enables seamless AI-Bot communication and web scraping capabilities that adapt to client-specific APIs and requirements. Flexible architecture supports multiple programming languages and frameworks.

  • C#
  • .net
  • Python
  • JavaScript
  • AI
  • LLM
  • RAG
  • Opensource
  • JAVA
  • API
  • Fine-Tune

Appliance Consult

Full-stack application digitizing a century of appliance repair expertise into an AI-powered advisory platform. Users receive instant expert repair guidance with one click. Built with modern tech stack integrating payment processing and comprehensive database architecture to deliver intelligent repair recommendations.

  • React
  • Next.js
  • Tailwind
  • Rust
  • MongoDB
  • API
  • LLM
  • AI
  • Prisma
  • Stripe
  • ORM
  • Node.js
  • Drizzle

EAS

Brought on as lead developer for Experience as a Service platform through referrals from previous successful projects. Architected scalable full-stack solution with payment integration, authentication systems, and blockchain capabilities to serve B2B clients.

  • React
  • Next.js
  • MongoDB
  • Tailwind
  • Node.js
  • Rust
  • Stripe
  • Blockchain

Command Center

Led development team building a comprehensive Web3 wallet tracker with multi-chain indexing capabilities. Real-time data dashboard displays wallet holdings across multiple blockchain networks with integrated DeFi options for cross-chain operations.

  • React
  • TypeScript
  • Next.js
  • Tailwind
  • Solidity
  • Postgres
  • AI-LLM
  • Node.js

CoinCrete

Joined a growing development team building a Web3 dApp from the ground up with security as the primary focus. Implemented core features including smart contract integration, user authentication, and multi-chain wallet connectivity using modern full-stack technologies.

  • React
  • TypeScript
  • Next.js
  • Tailwind
  • Solidity
  • JavaScript
  • MongoDB
  • Postgres

CFT

Innovative decentralized market pools platform built with trust and transparency at its core. Features comprehensive transaction indexing on local RPC nodes, enabling users to track and verify all market activities in real-time.

  • React
  • Next.js
  • Solidity
  • Rust
  • Framer
  • SQL
  • RPC
  • Node.js

Founder & Lead Developer — GymTech

Remote

Building a full-stack SaaS platform for martial arts and fitness gyms. Architected multi-tenant system with role-based access control, tier-based subscriptions ($79-$299/mo), and Stripe Connect payment processing. Implementing class scheduling, member management, QR check-ins, landing page builder, and real-time analytics with PostgreSQL and Supabase.

Dec 2025 - Present

Software Engineer — DoD Contractor

Seattle, WA (Hybrid)

Supporting Defense Health Agency platforms (health.mil, TRICARE) through government contracts with Semper Valens Solutions and Chenega Corporation. Shipping DoD Health IT features on Hyperledger Iroha—pushing for the first government project supported on blockchain in production. Built NestJS SDK adopted by 4 DoD teams. Maintaining enterprise CMS with JavaScript, C#, and Sitecore while implementing end-to-end TLS, VPN tunnels, and WAF configurations.

April 2025 - January 2026

Lead Full-Stack Developer

Remote

Leading development of enterprise SaaS platforms with focus on payment processing, authentication systems, and data analytics. Architecting secure APIs and implementing industry-standard security practices for client applications. Managing full development lifecycle from requirements to deployment.

Oct 2022 - Present

Full-Stack Lead Developer

Seattle, WA

Lead developer for Experience as a Service (EAS) platform. Architected scalable full-stack solutions serving B2B clients. Built core features including user authentication, payment integration, and real-time data processing using modern web technologies.

2020 - 2022

Blockchain Developer & Team Lead

Remote

Led blockchain development team building decentralized applications (dApps) for Web3 projects. Designed and implemented smart contracts and frontend interfaces that interact with multiple blockchain networks. Collaborated with leading Web3 companies on production deployments.

2021 - 2024

Freelance Full-Stack Developer

Remote

Provided full-stack development services with emphasis on security and scalable architecture. Built custom web applications for clients in various industries. Specialized in React, Node.js, and blockchain integrations while maintaining strong focus on code quality and security best practices.

2020 - 2021

CompTIA Security+ Certified

CompTIA

Issued: October 28, 2025 | Expires: October 28, 2028

Credential ID: COMP001022876354

Verify Credential

OWASP Smart Contract Top 10 2026

OWASP Foundation

2025

Full-coverage audit methodology: ABI-level static analysis, live on-chain intelligence, adversarial threat modeling, Foundry three-phase PoC generation. Track record includes a 44-finding audit of Club HashCash (Avalanche C-Chain).

DoD IAT Level II

Department of Defense

October 2025

Information Assurance Technical Level II designation held in conjunction with CompTIA Security+. Qualifies for privileged access on DoD information systems.

Please contact me directly at tundra2727@gmail.com or by filling out this form.