Things I wrote
Essays, posts, and notes scattered across the internet.
-
How to write and continuously test vulnerability detection rules for SAST ↗
A deep dive into how GitLab built an automated testing framework using Semgrep to write and validate vulnerability detection rules for static analysis — published on the GitLab blog.
-
Reflections from Shadowing GitLab's Development Director ↗
Personal reflections and lessons from shadowing a senior engineering leader at GitLab — on management, engineering culture, and working in an async-first remote company.
-
Applying for Google Summer of Code as a Mentee ↗
A guide on navigating the GSoC application process — finding the right org, writing proposals, and getting selected. Written from first-hand experience contributing to GitLab in 2021.