I am the CTO of stacklok and software engineer working mostly on open source security projects. I have lots of experience bootstrapping projects from new and helping grow diverse, inclusive and friendly 👯 communitees.
I founded project sigstore and developed the keylime project alongside MIT lincoln labs.
I also do a fair number of gigs around open source security in general.
- I am member of the kubernetes security response team, where I manage vulnerabilities and the hackerone bug bounty program.
- I am an elected member of the Open Source Security Foundation Governing Board, as the security representative independent contributor.
You can find me on twitter @decodebytes, or linkedin
I am always happy to 💬 about software security and growing open source communities.