Client zero

We rebuilt our own site first

Before we ask a client to trust the process, we run it on ourselves. Here is how we applied our Double Diamond methodology to alemikdigital.com.au, from a generic WordPress template to a purpose-built Hugo static site with scroll-driven animation, a CI/CD pipeline and edge hosting.

The transformation

Before and after

Before

WordPress template, generic messaging, stock imagery, manual deploys.

After

Hugo static site, GSAP animation, Tailwind design tokens, CI/CD pipeline, edge hosting.

Applied to this project

What each phase looked like

Same four-stage process we run on every project. Here is what it meant for this one.

ListenFocusBuildLaunchThe right problemThe right solutionexploredecideexploredecide
Listen

We audited the old WordPress site: slow loads, generic copy, stock images, zero SEO structure. Mapped every pain point before opening a code editor.

Focus

Wrote 16 specs, each scoped to one deliverable. Cut anything that did not directly serve a small-business visitor looking for help.

Build

Each spec became a commit: lint, build, test, merge. The staging URL updated after every step.

Launch

Lighthouse 98, zero vulnerabilities, CI pipeline green. DNS cutover to Cloudflare, Azure SWA edge hosting live.

The stack

Built to last

No database, no plugins, nothing to patch. The whole site is flat HTML served from edge nodes.

Hugo
$ hugo --minify Building sites... | EN -------------------+------ Pages | 103 Static files | 42 Total in 607 ms
Tailwind CSS
@layer components { .btn--primary { @apply rounded-full bg-accent-yellow; color: theme("colors.ink"); } }
GSAP 3.13
gsap.from(cells, { opacity: 0, scale: 0.92, stagger: 0.08, ease: "power3.out", scrollTrigger: { ... } });
GitHub Actions Azure SWA ESLint Stylelint Prettier
By the numbers

Performance that speaks

0 / 100

Lighthouse performance

0 found

Runtime vulnerabilities

<3 minutes

Commit to deploy

0 pages

Generated from zero themes

Security

Nothing to hack

A static site has no server-side runtime, no database, no login page, no plugin surface area. The attack surface is effectively the CDN edge and DNS. Here is what that buys you.

No database

No SQL injection, no data breach, no credentials to rotate. Content is compiled at build time into flat HTML files.

No server runtime

No PHP, no Node process, no memory exploits. Azure SWA serves pre-built files from edge PoPs with managed TLS.

Audited dependencies

npm audit runs on every commit via pre-push hooks. Zero high-severity vulnerabilities in the dependency tree.

Immutable deploys

Every deploy is a complete snapshot. Roll back to any previous build in seconds. No partial state, no drift.

Your business next

Same process, same stack, same attention to detail. Your site.

Start a project