Light

Pedro Kaj Kjellerup Nacht photo

pnacht Goto Github PK

followers: 21.0 following: 1.0 repos: 95.0 gists: 0.0

Name: Pedro Kaj Kjellerup Nacht

Type: User

Company: @googlers

Bio: Member of the Google Open Source Security Team

Location: Rio de Janeiro, Brazil

About me 😸

A cinephile, there's nothing I like more than going to the movies (preferably with others!) and eat some popcorn. I can watch just about anything, from superhero flicks to period dramas to slapstick comedy. Some of the best movies I've ever watched are so bad... but so, so good.

Professionally... let's just say I've been around. Started off as a structural engineer, but soon migrated to developing software for engineers for a while. After a hiatus doing an MBA, went on to work in the financial industry doing data science. Looking to make more of an impact, I went off to work with...

The Google Open Source Security Team (GOSST 👻)

GOSST was created in response to the increasing supply-chain attacks on projects that consume open-source code. It works along with the Linux Foundation's Open Source Security Foundation (OpenSSF) to improve the security of the open-source ecosystem. GOSST and the OpenSSF develop solutions to make open-source software safer at scale. See here for info on Google's open-source initiatives.

I'm part of a GOSST sub-team responsible for working hand-in-hand with the open-source community. We focus on helping individual critical projects increase their security. Our goals are to:

develop specific approaches for each project;
suggest solutions or enhancements that fit the project's needs and don't overburden maintainers;
talk with maintainers about our suggestion or about any other solutions they might prefer;
implement the changes and submit them as PRs;
collect all feedback to be shared with the rest of GOSST and the OpenSSF.

Security Solutions

See below some of the tools developed by GOSST and the OpenSSF:

Scorecard: automated checks to evaluate a project's security practices and suggest improvements as needed;
SLSA (pronounced "salsa"): a standard and protocol to ensure an artifact's provenance, guaranteeing it comes from the expected location and process. This aims to prevent tampering and improve the integrity of infrastructure and consumed packages;
Sigstore: keyless signing and verification of artifacts;
OSS-FUZZ: automated fuzzing at scale;
OSV: a human- and machine-readable database of vulnerabilities that maps affected software versions across open source ecosystems;
GUAC: graph database of security metadata (in development).

Pedro Kaj Kjellerup Nacht's Projects

jansson

C library for encoding, decoding and manipulating JSON data

jdk

JDK main-line development https://openjdk.org/projects/jdk

jna

Java Native Access

json-iterator-go

A high-performance 100% compatible drop-in replacement of "encoding/json"

jsoncpp

A C++ library for interacting with JSON.

keras

Deep Learning for humans

keras-core

A multi-backend implementation of the Keras API, with support for TensorFlow, JAX, and PyTorch.

keras-cv

Industry-strength Computer Vision workflows with Keras

keras-io

Keras documentation, hosted live at keras.io

keras-nlp

Modular Natural Language Processing workflows with Keras

keras-tuner

A Hyperparameter Tuning Library for Keras

kotlinx.coroutines

Library support for Kotlin coroutines

kubeflow

Machine Learning Toolkit for Kubernetes

libarchive

Multi-format archive and compression library

libavif

libavif - Library for encoding and decoding .avif files

libfuse

The reference implementation of the Linux FUSE (Filesystem in Userspace) interface

libjxl

JPEG XL image format reference implementation

llvm-project

The LLVM Project is a collection of modular and reusable compiler and toolchain technologies.

lodash

A modern JavaScript utility library delivering modularity, performance, & extras.

logr

A simple logging interface for Go

lxml

The lxml XML toolkit for Python

lz4

Extremely Fast Compression algorithm

maven-hello

mlflow

Open source platform for the machine learning lifecycle

moby

Moby Project - a collaborative project for the container ecosystem to assemble container-based systems

netty-tcnative

A fork of Apache Tomcat Native, based on finagle-native

num-traits

Numeric traits for generic mathematics in Rust

numpy

The fundamental package for scientific computing with Python.

opencv

Open Source Computer Vision Library

openh264

Open Source H.264 Codec

1
2
3
4

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.