I’m an Engineer with over two decades in IT.

I contribute to open source in the security supply chain space.

I’m currently focusing on Repository Service for TUF (RSTUF), a project to secure repository content distribution. This project is part of the OpenSSF/Linux Foundation. See below my talks about it.

• PyCon Ireland
• PyCon Sweden
• PackagingCon 2023: “Our stuff” - how to protect users from package compromise with RSTUF (video recording)
• EuroPython 2023: “PEP 458 a solution not only for PyPI” (video recording)
• EuroPython 2022: “Work in Progress: Implementing PEP 458 to Secure PyPI downloads” (video recording)

Some blog posts:

• Introducing RSTUF, Repository Service for TUF (OpenSSF blog)
• Introducing RSTUF (Repository Service for TUF) Beta Release (VMware Open Source blog)
• Safety for All with Repository Service for TUF (VMware Open Source blog)
• Implementing PEP 458 to Secure PyPI Downloads (VMware Open Source blog)

Schedule some time to meet.

My wishlist.

My archived website/blog.

(Photography by Michal Dovgal)