Startup-ready engineering range
I study Computer Science at SFSU while building across TypeScript, JavaScript, Python, Java, C/C++, SQL, React, Next.js, NestJS, Flask, Zod, OpenCV, YOLOv8, Firebase, Supabase, and PostgreSQL.
CS @ SFSU / Outreach Chair @ SF Hacks
Turning real user problems into shipped products.
I don't wait for internships to build production experience. I'm Josue Cruz, a Computer Science student at San Francisco State University who has shipped embedded prototypes, full-stack IoT applications, and production TypeScript contributions while looking for the next hard problem to solve.
- Proof
- 2nd Place HackStorm AI + IoT, 10+ Keyshade commits, 15 reusable Zod schemas, and shipped IoT MVPs.
- Strength
- Fast prototype loops across sensor input, API response, dashboard update, validation rule, or model output.
- Coworker Signal
- I document handoffs, clarify shared contracts, and keep teammates unblocked when hardware or APIs shift.
About
A builder who likes early-stage ambiguity and hands-on prototypes.
Small-team execution
Hackathons, CodeDay work, and teaching support have trained me to scope quickly, test fast, document decisions, review code, and create clear API or hardware handoffs so teammates can build in parallel.
User-centered technical instincts
I like projects where the technology has a clear user: safer navigation for visually impaired people, pet-behavior telemetry before damage happens, live climate recommendations, or validation that makes developer workflows sturdier.
Selected Projects
Startup-relevant projects across AI, IoT, accessibility, and full-stack systems.
01 / 05
Technology Stack
Tools I use to prototype startup ideas from hardware to web.
Frontend
React
Next.js
JavaScript
TypeScript
Tailwind CSS
Backend
Python
Flask
NestJS
Express.js
REST APIs
Firebase
Supabase
PostgreSQL
Google Cloud Vision API
SQL
AI, Systems & IoT
C
Java
Linux
Arduino
OpenCV
YOLOv8
Tuya T5-AI
pyserial
Workflow
Git
GitHub
Zod
GitHub Actions
CI/CD
Code Review
Technical Docs
API Contracts
Startup Build Pattern
How I approach fast-moving prototype work.
Start with a real user problem.
I look for the specific moment where a person gets stuck, then shape the prototype around what would make that moment safer, clearer, or faster.
Build the smallest working loop.
Whether it is a sensor reading, API response, dashboard update, or model output, I try to get the core loop working early so the team can test reality instead of guessing.
Document just enough to keep shipping.
Good notes, clear setup steps, and honest tradeoff calls help a small team move quickly without losing the context that made the prototype work.
Writing
Writing on code and professional growth.
Notes on open-source contributions, contributor communication, and the professional lessons I am building through real engineering work.
Turning a John the Ripper Good First Issue Into a Draft PR
I started with openwall/john issue #3896, a maintenance issue titled "Consistently (don't) split long source file lines." At first glance it looked like a formatting task. Once I read deeper, it became a lesson in how small style decisions can affect portability, readability, and contributor trust inside a mature C codebase.
What the issue was really about
The issue called out a long OpenBSD-SoftRAID test vector that had been split with backslash continuations. The maintainer proposed a safer approach: close the string on one line, reopen it on the next, and let the compiler concatenate adjacent string constants. That avoids depending on details like trailing whitespace. The second part of the issue was consistency: if one long source line is split, similarly long lines across the project should be handled with the same rule.
How I approached the draft PR
My first draft built on magnumripper's earlier PR #3908. I focused on
src/openbsdsoftraid_variable_code.h, split long test vectors into adjacent string
constants, and experimented with an .editorconfig line-length rule. I originally aimed
for short 80-character splits around delimiter boundaries because that felt readable to me.
The maintainer feedback helped me recalibrate. The project did not want a broad delimiter-based refactor, and it did not want lines split that aggressively. The better target was closer to the existing project discussion: roughly 2000 characters per line for these huge vectors, with changes scoped to the original issue instead of expanding the problem.
Validation and takeaway
I tested the OpenBSD-SoftRAID format with
./john --test --format=openbsd-softraid, and the benchmark completed successfully. The
bigger win was learning how to turn maintainer feedback into a better contribution: read the history,
stay inside the issue's scope, preserve behavior, and ask clarifying questions early when style and
maintainability are part of the bug.
- Issue: long C/header source lines needed consistent treatment.
- Draft PR: split OpenBSD-SoftRAID test vectors using adjacent string literals.
- Lesson: in a mature C project, "just formatting" still needs technical discipline.
Improving Keyshade.io Through Shared Zod Validation
Keyshade.io is an open-source secrets and configuration management platform. My CodeDay work focused on making auth and product text validation more consistent across shared TypeScript schemas and platform UI flows.
The consistency problem
The work focused on how user input moved from UI components into shared request payloads. Email, OTP, device details, project names, titles, and metadata all needed predictable validation behavior before data moved deeper into auth and product workflows.
Where I investigated
I focused on the platform side first and looked for component entry points where user-provided text
moved into request helpers. That led to account and OTP flows, email helpers, device-detail schemas,
and shared validation primitives in the @keyshade/schema package.
The schema-driven solution
The branch introduced centralized Zod schemas, including email, OTP, encrypted device data, IP address, metadata, title, and alphanumeric variants. Instead of writing one-off checks inside every component, the validation rules lived in the shared schema package and could be reused by auth, platform, and project request shapes.
On the frontend, OTP and email flows used schema parsing before sending requests, disabling invalid submissions and surfacing clearer feedback. The larger product idea was consistency: shared validation improves feedback and keeps request shapes aligned across the app.
Collaboration and coordination
The work also had a collaboration layer. A maintainer pointed out overlap with Keyshade issue #929, which described unicode values being accepted and then stripped into broken slugs. We clarified how our work related to the existing thread, asked where helper logic should live, and kept changes reviewable through focused commits and technical notes.
- Issue: auth and product input needed stricter, reusable validation.
- Solution: shared Zod schemas with safe parsing before data moved deeper into the app.
- Lesson: validation work is also coordination work when multiple contributors touch shared contracts.
Resume
Resume at a glance.
Computer Science student at SFSU with production TypeScript contributions, full-stack IoT applications, embedded prototypes, teaching support, and hackathon leadership experience.
Education
San Francisco State University
B.S. Computer Science, expected May 2028
GPA: 3.6
Dean's Honor List, 2024-2025
Coursework: Data Structures & Algorithms, Object-Oriented Programming, Computer Architecture, Assembly Language, Linear Algebra.
Core Skills
Rapid Prototyping
TypeScript
Zod
Python
JavaScript
Java
C/C++
SQL
Flask
Firebase
Google Cloud Vision API
Supabase/PostgreSQL
Next.js
Nest.js
Express.js
Linux
Git/GitHub
GitHub Actions
CI/CD
REST APIs
Arduino
Tuya T5-AI
pyserial
OpenCV
YOLOv8
Experience & Leadership
Outreach Chair / SF Hacks
Support sponsor and partnership outreach for a student hackathon projected to serve 400+ participants, coordinating partner tracking, sponsor deliverables, and internal handoffs.
Open Source Contributor / Micro-Internship, Keyshade.io & CodeDay
Contributed 10+ commits to a production TypeScript monorepo, improving authentication validation, reusable schemas, and user-facing error handling.
Built 15 reusable Zod schemas and collaborated in a 4-developer codebase with 750+ stars and 260+ forks.
Quality Assurance Volunteer Tester / Madhouse Productions
Submitted 11 accepted bug reports across 2 pre-release updates, documenting reproduction steps, severity, expected and actual behavior, screenshots, recordings, and retest results.
Teaching Assistant / City College of San Francisco
Supported 120+ students in Java and introductory computing through tutoring, debugging help, assignment review, and code guidance.
Reviewed 70+ assignments and helped students improve Java fundamentals and object-oriented problem-solving.
Barista / Starbucks
Trained 2 new partners and supported high-volume rush shifts through task prioritization, teamwork, customer communication, and calm issue resolution.
Awards, Certifications & Involvement
SQL and Relational Databases 101
IBM, issued Jun 2026. Credential ID: 76cded70500c4159b05d3724fc0cec7b.
2nd Place - AI + IoT Track
HackStorm 2.0, awarded May 2026 for Smart Cane.
Machine Learning Workshop
San Francisco State University, issued May 2026.
Covered federated learning, Flower Framework + Python, and privacy and ethics in ML applications.
Prompt Engineering: Shaping Better AI Responses
IBM, issued May 2026.
Get the most out of Jira
Atlassian, issued May 2026.
Volunteering
Student Volunteer, The City Eats Inc., Feb 2026 - Present.
The Bits and Bytes of Computer Networking
Google, issued Sep 2023. Credential ID: FN6XXG5SN9TS.
Technical Support Fundamentals
Google, issued Aug 2023. Credential ID: 4T3ZP5EZSXMD.
Contact
Open to startup internships.
I am looking for internships with startup teams building practical software, AI, IoT, accessibility, or developer-tool products.
Preferred Contact
Email is the best way to reach me for startup internships, software roles, open-source work, or hackathon community partnerships.