Worked on the SalesforceCommerceCloud/pwa-kit repository to address a security issue in the authentication flow by refining how private client behavior is applied during social login. Focused on backend and full stack development using JavaScript, the work involved refactoring the applySLASPrivateClientToEndpoints regular expression to ensure that private client access was restricted to the correct endpoints. This targeted fix improved both the security and reliability of the login process by preventing unintended exposure of private client functionality. The solution was implemented and validated through a dedicated commit, demonstrating careful attention to authentication logic and robust use of regex for endpoint targeting.