II.
StackProfile JSON
Structured · livestack-profile:healthcare-hipaa-compliant
Healthcare / HIPAA Compliant (Node.js + PostgreSQL + Vault + React) json
Inspect the normalized record payload exactly as the atlas UI reads it.
{
"id": "stack-profile:healthcare-hipaa-compliant",
"_kind": "StackProfile",
"_file": "domain/stack-profiles/deep-stacks-2.yaml",
"_cluster": "domain",
"attributes": {
"displayName": "Healthcare / HIPAA Compliant (Node.js + PostgreSQL + Vault + React)",
"description": "A HIPAA-compliant application stack for healthcare software: Node.js\nwith Express or Fastify as the API layer with strict audit logging,\nPostgreSQL with column-level encryption for protected health information\n(PHI), HashiCorp Vault for secrets management and encryption-as-a-service,\nand React for the clinician-facing or patient-facing UI with role-based\naccess controls.\n\nEvery API request is logged with actor identity, resource accessed, and\ntimestamp for the audit trail required by HIPAA. Vault provides transit\nencryption so the application never handles raw encryption keys. Database\nconnections use TLS, and row-level security in PostgreSQL enforces\ntenant isolation for multi-provider deployments. This stack suits EHR\nintegrations, telemedicine platforms, patient portals, and clinical data\ntools. The primary tradeoff is development velocity: HIPAA compliance\nadds mandatory access controls, encryption, audit logging, and breach\nnotification procedures that increase both code complexity and\noperational overhead.\n",
"composes": [
"language:typescript",
"framework:react",
"library:express",
"tool:vault",
"language:sql",
"library:prisma",
"library:helmet",
"library:winston"
]
},
"outgoingEdges": [
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "language:typescript",
"kind": "composed_of"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "framework:react",
"kind": "composed_of"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "library:express",
"kind": "composed_of"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "tool:vault",
"kind": "composed_of"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "language:sql",
"kind": "composed_of"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "library:prisma",
"kind": "composed_of"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "library:helmet",
"kind": "composed_of"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "library:winston",
"kind": "composed_of"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "role:backend-engineer",
"kind": "used_by_role"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "role:security-engineer",
"kind": "used_by_role"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "role:compliance-engineer",
"kind": "used_by_role"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "workflow:hipaa-compliance-audit",
"kind": "follows_workflow"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "workflow:security-review",
"kind": "follows_workflow"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "domain:healthcare",
"kind": "applies_to"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "domain:healthtech",
"kind": "applies_to"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "skill-area:backend-security",
"kind": "requires_skill_area"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "skill-area:encryption-decryption",
"kind": "requires_skill_area"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "skill-area:authentication-authorization",
"kind": "requires_skill_area"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "skill-area:backend-api-design",
"kind": "requires_skill_area"
},
{
"from": "stack-profile:healthcare-hipaa-compliant",
"to": "skill-area:data-protection-dlp",
"kind": "requires_skill_area"
}
],
"incomingEdges": []
}