João Reigota

DevOps Tech Lead at Checkmarx

Porto Metropolitan Area Portugal
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
🎓
Top School
João Reigota is a DevOps Tech Lead based in the Porto metropolitan area with five years of industry experience and a master's background in Network and Systems Engineering from FCUP. He has progressed rapidly at Checkmarx from Software Developer to Tech Lead, blending hands-on DevOps, backend automation and full-stack skills (Angular, Node.js, TypeScript, MySQL) to ship secure, production-grade tooling. João contributes to notable open-source security tooling—adding Dockerfile parsing and new security queries to Checkmarx’s popular KICS project—demonstrating a focus on infrastructure-as-code scanning and supply-chain hardening. Comfortable across CI/CD, container ecosystems and web technologies, he pairs practical coding experience in C/Java with modern JS frameworks and infrastructure automation. Colleagues value his pragmatic approach to bridging developer workflows and security requirements while rapidly taking on leadership responsibility.
code5 years of coding experience
job2 years of employment as a software developer
bookMestrado em Engenharia de Redes e Sistemas Informáticos Ciências da Computação e Informática, Mestrado em Engenharia de Redes e Sistemas Informáticos Ciências da Computação e Informática at Faculdade de Ciências da Universidade do Porto | FCUP
github-logo-circle

Github Skills (13)

automation10
automations10
parser10
go10
parsing10
parse10
dockerfile10
security9
vulnerability-detection9
security-txt9
security-scan9
open-source8
vulnerability-scanners8

Programming languages (4)

ShellOpen Policy AgentJavaScriptGo

Github contributions (5)

github-logo-circle
Checkmarx/kics

Nov 2020 - Jan 2023

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
Role in this project:
userBack-end Developer & Automation Engineer
Contributions:5 releases, 872 reviews, 372 commits in 2 years 1 month
Contributions summary:João implemented features for parsing Dockerfiles by adding a new parser module to KICS. They enhanced KICS to recognize and validate Dockerfile syntax, adding support for multiple instructions. The user also introduced new queries related to Dockerfile security, including checks for RUN commands using `sudo`, image versions, and the presence of `ADD` or `COPY` commands.
kicscyclecompliancevulnerability-scannersiac
Checkmarx/kics-github-action

Mar 2021 - Dec 2022

GitHub actions of KICS scan - Keeping Infrastructure as Code Secure
Contributions:27 releases, 2 reviews, 15 commits in 1 year 8 months
securescankicssecurityinfrastructure
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
João Reigota - DevOps Tech Lead at Checkmarx