The latest articles on DEV Community by Wen Durai (@wendurai433). https://dev.to/wendurai433 https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.us-east-2.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F4003147%2F3dd7cef5-6d97-47c2-8554-e905350d6df4.jpg https://dev.to/wendurai433 en Wen Durai Fri, 26 Jun 2026 01:50:19 +0000 https://dev.to/wendurai433/i-built-a-serverless-stranger-matching-tool-with-zero-database-here-is-the-architecture-m6n https://dev.to/wendurai433/i-built-a-serverless-stranger-matching-tool-with-zero-database-here-is-the-architecture-m6n <h2> The elevator pitch </h2> <p>You open <code>fata.uk</code>, write a few lines about what is on your mind, and AI finds a stranger whose emotional frequency matches yours. Then it gives you each other’s email and exits. <strong>No app. No signup. No database. No chat history.</strong></p> <h2> The architecture (or: how to build a social product with no server) </h2> <p>The entire backend is a single Cloudflare Worker. State lives in GitHub Issues. Here is the flow:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Browser (signal heuristic, ms-level) → HMAC-signed POST → Cloudflare Worker → BGE-M3 embedding API (1024-dim) → AES-256-GCM encrypt → GitHub Issues (encrypted pool) → Multi-channel scoring → MMR diversity rerank → Match found? → Internal LLM resonance → Resend email </code></pre> </div> <h3> Layer 1: Browser-side signal density </h3> <p>Before any API call, the browser computes four heuristics on the user’s text: length, lexical diversity, sentence count, and concrete detail markers. Score &lt; 0.3? Gentle nudge to write more. Score &lt; 0.15 on the server side? Rejected. This filters out noise before it hits the pool.</p> <h3> Layer 2: Proof-of-Work gate </h3> <p>Every submission requires solving a SHA-256 PoW challenge (difficulty 16 — ~1-2s on mobile). The solution is verified server-side, and a short-lived submit token (30 min TTL) is issued. Combined with per-IP and per-email rate limits, this makes automated abuse economically unattractive.</p> <h3> Layer 3: Embedding with fallback chain </h3> <p>The Worker calls SiliconFlow’s BGE-M3 embedding API (1024-dim). If that fails, it falls back to the browser-provided TF-IDF embedding. If both fail, server-side TF-IDF is computed. The original text is discarded after embedding — the vector cannot be reversed back to words.</p> <h3> Layer 4: GitHub Issues as an encrypted matching pool </h3> <p>This is the part I find most fun. Sensitive data (email, embedding, text snippet) is AES-256-GCM encrypted and stored in Cloudflare KV. Only metadata (language, embedding type, key version) goes into the GitHub Issue body. The pool is public but every entry is ciphertext.</p> <h3> Layer 5: Multi-channel matching + MMR rerank </h3> <p>The matching engine scores candidates across four channels:</p> <ul> <li> <strong>Semantic similarity</strong> (cosine similarity on embeddings, weight 0.30)</li> <li> <strong>Intent compatibility</strong> (LLM-parsed emotional need, weight 0.40)</li> <li> <strong>Style compatibility</strong> (responsive vs. expressive, weight 0.15)</li> <li> <strong>Signal bounce</strong> (signal density product, weight 0.15)</li> </ul> <p>Top candidates are reranked with MMR (Maximum Marginal Relevance) to ensure diversity in the matched pool.</p> <h3> Layer 6: AI writes the introduction, then disappears </h3> <p>When a match is found, an internal LLM call generates a short resonance paragraph and three icebreaker questions. Both users receive each other’s email via Resend. After that, fata is out of the picture — all further communication happens in the user’s own email client.</p> <h2> The security story </h2> <ul> <li> <strong>Key separation</strong>: <code>HMAC_KEY</code> (API signing, frontend-visible) ≠ <code>ENCRYPTION_KEY</code> (data at rest, Worker secret only)</li> <li> <strong>Rate limiting</strong>: Two-layer (in-memory + KV), fail-closed. If KV is unreachable, requests are rejected — not passed through.</li> <li> <strong>PoW + email cap</strong>: 3 submissions per email per day + 500 global daily cap</li> <li> <strong>2026-06-20 incident</strong>: A public <code>/api/hmac-key</code> endpoint was discovered and abused for LLM proxy spam (3.49 billion tokens in one day). Fixed within hours. All public LLM endpoints deleted. Postmortem in the repo.</li> </ul> <h2> Why email instead of in-app chat? </h2> <p>Every "anonymous chat" product eventually faces the same trust problem: users have to believe the platform when it says it does not read their messages. fata solves this by making it architecturally impossible to read messages — because the messages are not in fata. They are in your Gmail.</p> <h2> Stack </h2> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Static HTML page (single file) → Cloudflare Worker (fata.uk/api/*) → GitHub Issues (encrypted pool) → Cloudflare KV (sensitive data, 30-day TTL) → SiliconFlow BGE-M3 (embedding) → SiliconFlow DeepSeek V3 (resonance LLM) → Resend (email) </code></pre> </div> <h2> Try it </h2> <p><strong><a href="https://fata.uk" rel="noopener noreferrer">fata.uk</a></strong> — open in any browser.</p> <p>Source: <strong><a href="https://github.com/gsailing19/fata" rel="noopener noreferrer">github.com/gsailing19/fata</a></strong> (MIT)</p> <p><em>If you have built something with "impossible" architecture — zero servers, zero databases, or a constraint that shaped the product in unexpected ways — I would love to hear about it in the comments.</em></p> serverless architecture webdev opensource