Worked on the codecentric/c4-genai-suite repository to address a security vulnerability in the OpenAPI extension by re-enabling certificate validation, restoring secure default behavior for API consumers. The solution involved backend development using TypeScript, with a focus on API integration and adherence to security best practices. The fix was implemented as a targeted, regression-safe change, ensuring traceability through detailed commit messages. Collaboration with AI-assisted tooling, specifically Copilot Autofix, streamlined the process and improved code quality. This work reduced the risk of man-in-the-middle attacks and aligned the extension with compliance and reliability requirements, demonstrating a methodical approach to security hardening.