Stacklok logo
Home Company
Docs
CodeGate Stacklok Insight

About the Author

Luke Hinds

CTO

Luke Hinds is the CTO of Stacklok. He is the creator of the open source project sigstore, which makes it easier for developers to sign and verify software artifacts. Prior to Stacklok, Luke was a distinguished engineer at Red Hat.

More posts by this author (12)

Link to Capturing the productivity gains of AI coding assistants without sacrificing control of privacy

Capturing the productivity gains of AI coding assistants without sacrificing control of privacy

Luke Hinds /
Dec 17, 2024
AI Security
Open Source Security
Continue Reading
Link to Stacklok has contributed Minder to the OpenSSF out of a deep belief in the power of the open source community

Stacklok has contributed Minder to the OpenSSF out of a deep belief in the power of the open source community

Luke Hinds /
Oct 28, 2024
Community
Minder
Continue Reading
Link to Cross-platform RAT deployed by weaponized 'requests' clone

Cross-platform RAT deployed by weaponized 'requests' clone

Luke Hinds / Poppaea McDermott /
Aug 30, 2024
Threat Analysis
Continue Reading
Link to Introducing the Frizbee GitHub Action: Automatically pin actions and container images to digests

Introducing the Frizbee GitHub Action: Automatically pin actions and container images to digests

Radoslav Dimitrov / Luke Hinds /
Jun 20, 2024
CI/CD security
Continue Reading
Link to Python typosquatting attack targets popular open source PyPI library with 30M weekly downloads

Python typosquatting attack targets popular open source PyPI library with 30M weekly downloads

Luis Juncal / Luke Hinds /
Jun 6, 2024
Threat Analysis
Continue Reading
Link to Announcing the Proof-of-Diligence (PoD) algorithm: A method of modeling trust and maintainability in open source ecosystems

Announcing the Proof-of-Diligence (PoD) algorithm: A method of modeling trust and maintainability in open source ecosystems

Luke Hinds / Pankaj Telang /
Apr 17, 2024
Trusty
Continue Reading
Link to An analysis of an obfuscated JavaScript malware package

An analysis of an obfuscated JavaScript malware package

Luke Hinds / Edward Thomson /
Mar 27, 2024
Threat Analysis
Continue Reading
Link to CVEs: The emperor's old clothes

CVEs: The emperor's old clothes

Luke Hinds /
Feb 21, 2024
Open Source Security
Continue Reading
Link to What is software provenance, or proof of origin?

What is software provenance, or proof of origin?

Luke Hinds /
Jan 5, 2024
Supply Chain Security 101
Continue Reading
Previous
Page 1 of 2
Next

Don't be a stranger

Newsletter

Stay in the loop

Share your email address for updates.

Explore our GitHub repo

Let's collaborate on projects.

Explore Github

Dive into our Discord

We love feedback and ideas.

Join Discord Server
Stacklok logo
© 2025 Stacklok
Privacy Policy Terms of Service
Docs
CodeGate Stacklok Insight
Contact Us
hello@stacklok.com