Eric Bickle

Senior Principal Application Security Engineer

City of Langley, British Columbia, Canada
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
Eric Bickle is a Senior Principal Application Security Engineer based in Langley, BC, with 11 years of professional experience blending software architecture, secure coding, and large-scale system design. At Asurion he has driven architecture decisions and led development of enterprise platforms for mobile warranty and service, while now focusing on application security at a principal level. He contributes to high-impact open source security tooling—enhancing CodeQL’s Java taint analysis to detect thread resource abuse—linking hands-on code changes to real-world security scanning. His background spans high-availability ecommerce systems, AI-driven product classification, and public-health data platforms, giving him a rare mix of security rigor and pragmatic system engineering. Colleagues rely on him for scalable, auditable solutions that bridge architecture, developer workflows, and security testing.
code11 years of coding experience
job11 years of employment as a software developer
languagesEnglish
github-logo-circle

Github Skills (7)

javas10
github-advanced-security10
vulnerability-detection10
dataflow10
semmle-ql10
codeql10
java10

Programming languages (15)

C#JavaC++ScalaHTMLGroovyTypeScriptShell

Github contributions (5)

github-logo-circle
github/codeql

Apr 2023 - Feb 2025

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
Role in this project:
userBack-end Developer & Security Engineer
Contributions:2 reviews, 2 PRs, 21 comments in 1 year 11 months
Contributions summary:Eric primarily focused on enhancing CodeQL's Java analysis capabilities, specifically improving taint analysis to detect thread resource abuse vulnerabilities. They modified the CodeQL query library to correctly propagate taint through arithmetic expressions. Furthermore, the user updated test cases in Java to demonstrate the vulnerability and the effectiveness of the new taint analysis rules. These changes directly contribute to the security analysis features of the CodeQL tool.
github-advanced-securitysecurity-toolsgithub-security-labsecurity-researcherssecurity
ebickle/node-addon-api

Feb 2018 - Oct 2024

Contributions:2 pushes, 2 branches in 6 years 8 months
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Eric Bickle - Senior Principal Application Security Engineer