Worked on enhancing the security of the Tandoor Recipes service within the Saghen/nixpkgs repository by delivering a hardening update for its NixOS configuration. Focused on replacing DynamicUser with static user and group identities, the approach ensured that systemd runs the service under predefined execution contexts. This adjustment improved predictability and reliability across deployments while aligning with security best practices to reduce the privilege surface. Leveraged expertise in NixOS, system configuration, and the Nix language to implement these changes, resulting in a more robust and secure service setup without introducing new bugs during the development period.