Michael Kedar is a software engineer with a decade of hands-on experience building secure, production-grade systems, currently at Google in the Greater Sydney area. He blends backend development, DevOps and security expertise—contributing to prominent open-source projects like Google's OSV vulnerability scanner and osv.dev by improving gitignore handling, CycloneDX parsing, and automating GCP deployments with Terraform. Trained in mechatronic engineering (Hons) and computer science with AI, he brings a rare combination of systems-level thinking and practical security automation. Previously he applied signal processing and embedded-software skills at Sonartech Atlas and supported computing education at UNSW, showing a consistent focus on robust engineering and knowledge sharing.
Contributions:608 reviews, 15 commits, 435 PRs in 2 months
Contributions summary:Michael primarily focused on improving the project's infrastructure and security posture. They implemented Terraform configurations for managing the API deployments on GCP, including setting up required resources for the `oss-vdb-test` project. Furthermore, they made changes to the worker build process, added exporter and importer support for the test environment, and fixed a broken test related to ecosystem filtering. Their contributions demonstrate a focus on automating deployments and ensuring the correct functionality of the vulnerability database service.
Vulnerability scanner written in Go which uses the data provided by https://osv.dev
Role in this project:
Back-end Developer & Security Engineer
Contributions:247 reviews, 6 commits, 163 PRs in 1 month
Contributions summary:Michael implemented features to enhance the security and functionality of the OSV-Scanner. This involved the development of a feature to respect `.gitignore` files, which improves scanning accuracy. The user also made improvements to gitignore parsing to handle non-git files and resolve potential issues. They further addressed vulnerabilities related to parsing CycloneDX components and improved the handling of aliased vulnerabilities.
security-auditscannergolangsecurity-toolsopenvas
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.