I’m an Engineer with over two decades in IT.
I contribute to open source in the security supply chain space.
I’m currently focusing on Repository Service for TUF (RSTUF), a project to secure repository content distribution. This project is part of the OpenSSF/Linux Foundation. See below my talks about it.
- PyCon Ireland
- PyCon Sweden
- PackagingCon 2023: “Our stuff” - how to protect users from package compromise with RSTUF (video recording)
- EuroPython 2023: “PEP 458 a solution not only for PyPI” (video recording)
- EuroPython 2022: “Work in Progress: Implementing PEP 458 to Secure PyPI downloads” (video recording)
Some blog posts:
- Introducing RSTUF, Repository Service for TUF (OpenSSF blog)
- Introducing RSTUF (Repository Service for TUF) Beta Release (VMware Open Source blog)
- Safety for All with Repository Service for TUF (VMware Open Source blog)
- Implementing PEP 458 to Secure PyPI Downloads (VMware Open Source blog)
My archived website/blog.
(Photography by Michal Dovgal)