Mark Bestavros is a Senior Software Engineer based in Boston with 11 years of experience specializing in software supply chain security and secure build provenance. Currently at Datadog after shaping Red Hat’s approach to GenAI model security and enterprise policy compliance, he builds tooling to enforce SLSA and other industry best practices across SDLCs. A Boston University BA/MS grad and longtime open-source contributor, he has improved CI/testing for CNCF projects like Keylime and hardened projects such as Enarx and Sigstore through licensing, linting, and automation work. His background spans applied security, DevOps automation, and developer-facing tooling—often focusing on making dangerous features testable and CI more reliable. Outside of work he’s been active in the hacker community as a BostonHacks organizer, reflecting a practical interest in mentoring and grassroots engineering. Notably, his contributions include migrating complex test suites to GitHub Actions and implementing tests for a rust-based Keylime agent, underscoring hands-on expertise in modern CI/CD and Rust testing.
11 years of coding experience
7 years of employment as a software developer
BA/MS Computer Science, BA/MS Computer Science at Boston University
A CNCF Project to Bootstrap & Maintain Trust on the Edge / Cloud and IoT
Role in this project:
DevOps Engineer & Automation Engineer
Contributions:127 reviews, 43 commits, 45 PRs in 2 years 2 months
Contributions summary:Mark primarily focused on improving the Keylime project's Continuous Integration (CI) and testing infrastructure. Their contributions included migrating tests to GitHub Actions, rewriting and refactoring CI scripts (.ci/test_wrapper.sh, .ci/run_local.sh) to align with the new Actions setup and removing dependencies on Travis. These changes streamlined the testing process and improved the project's overall build and release automation. The user also implemented a test suite for the rust-keylime agent.
Contributions:8 reviews, 64 commits, 70 PRs in 1 year 3 months
Contributions summary:Mark primarily contributed to improving the security posture and code quality of the Enarx project. Their work focused on adding and updating licenses, replacing file headers with SPDX IDs for improved consistency, and enabling testing of dangerous features. They also addressed linting issues and brought formatting up to Enarx standards.
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Mark Bestavros - Senior Software Engineer at Datadog