Dani Santos is a Senior Security Engineer with nine years of experience specializing in infrastructure and platform security for large-scale cloud-native systems. At Shopify they design and ship production security tooling focused on service identity (PKI/mTLS), Kubernetes hardening and runtime protections, and securing CI/CD and software supply chains through code signing and attestations. A strong software engineer who writes systems in Go and Ruby, Dani has contributed to notable open-source projects like Shopify/kubeaudit, adding SARIF output and autofix features to improve security reporting and automation. They combine hands-on implementation of policy-driven Infrastructure as Code with endpoint enforcement (e.g., binary execution controls) to reduce supply chain risk across GCP and AWS. A regular KubeCon speaker, Dani pairs platform collaboration with pragmatic engineering to make security scalable and developer-friendly. Based in Longueuil, Quebec, they bring an uncommon mix of deep systems coding and practical security controls shaped by real-world ops and compliance needs.
9 years of coding experience
4 years of employment as a software developer
Diploma in Full-Stack Web Development , Diploma in Full-Stack Web Development at Concordia University
Software Engineering, Software Engineering at CODE University of Applied Sciences
Certificate Digital Music Production, Certificate Digital Music Production at Langara College
kubeaudit helps you audit your Kubernetes clusters against common security controls
Role in this project:
Backend & Security Engineer
Contributions:6 releases, 127 reviews, 20 commits in 2 years 4 months
Contributions summary:Dani contributed to the `kubeaudit` project, which focuses on auditing Kubernetes clusters for security vulnerabilities. Their commits involve modifying code related to auditing capabilities, including dropping all capabilities, and implementing fixes. They also introduced support for SARIF output, indicating a focus on improving the project's reporting capabilities and integrating with security analysis tools. Further contributions include adding autofix functionality.
Choose your fave monster - project to review React
Contributions:8 PRs, 23 pushes, 2 branches in 2 years 6 months
reactjsreactmonsterreview
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.