Dominik Richter is a software engineer with 14 years of experience specializing in back-end development and security hardening, and is co-creator of notable open-source projects like Mondoo and InSpec. Based in San Francisco del Rincón, Guanajuato, he blends practical engineering with security-first thinking, contributing to projects that tighten system configurations and auditing frameworks. His contributions span adding resources and parsing capabilities to InSpec, improving HTTP streaming in Excon, and hardening Linux and Chef cookbooks with sysctl, PAM, and securetty improvements. He also improves tooling and reliability in utilities like coursera-dl by redesigning cache and user identification for safer file handling. Comfortable across languages and infrastructure, he pairs careful test automation with pragmatic refactors to make security and compliance usable for developers. An entrepreneurial hacker and founder, he quietly focuses on making security accessible through well-designed open-source tools.
This chef cookbook provides numerous security-related configurations, providing all-round base protection.
Role in this project:
Security Engineer
Contributions:126 commits, 10 PRs, 9 pushes in 4 years 2 months
Contributions summary:Dominik primarily focused on enhancing the security posture of the chef-os-hardening cookbook. Their commits implemented core dump disabling, securetty handling, and strong password checking via PAM. Furthermore, the user refactored the codebase by switching from a 'disable' to an 'enable' approach for security settings and added markdown comments for improved documentation, demonstrating a commitment to improving both functionality and maintainability. They also modified several files, including configuration templates and attributes to support the new security features.
Contributions:56 commits, 6 PRs, 7 pushes in 2 years 2 months
Contributions summary:Dominik primarily contributed to hardening the DevSec Linux Baseline by modifying system configuration parameters. Their commits focused on adjusting sysctl settings, including IPv4 and IPv6 networking, to enforce security best practices and compliance with security standards. They also addressed code quality issues, such as adding and fixing license headers and ensuring compliance with security guidelines.
security-toolsdevsecauditinspecsecurity
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.