| Controllers & Routing | references/controllers-routing.md | Interceptors, custom decorators, versioning trade-offs, streaming, pagination |
| Services & DI | references/services-di.md | forwardRef, dynamic modules, ModuleRef, request-scoped providers, lifecycle hooks |
| DTOs & Validation | references/dtos-validation.md | Conditional validation, validation groups, async validators, discriminated unions |
| Authentication & Authorization | references/authentication.md | Token rotation, ABAC with CASL, API keys, OAuth2/OIDC, guard ordering |
| Testing Patterns | references/testing-patterns.md | Testcontainers, guard/interceptor/pipe testing, contract tests, test utilities |
| Express Migration | references/migration-from-express.md | Strangler fig, WebSocket migration, Bull queues, canary deployment, feature flags |
| Architecture Patterns | references/architecture-patterns.md | CQRS, DDD, hexagonal, dynamic modules, lifecycle hooks |
| Database Advanced | references/database-advanced.md | Transactions, migrations, N+1, QueryBuilder, multi-tenancy, soft delete |
| Security Hardening | references/security-hardening.md | Rate limiting, Helmet, CORS, CSRF, token blacklisting, input sanitization |