Paolo Tranquilli is a software engineer with nine years of professional experience and a strong academic foundation holding PhDs in Computer Science and Mathematics. Currently at GitHub, he contributes to CodeQL and focuses on improving Swift security analysis by reducing false positives, extending dataflow analysis, and adding vulnerability detection features for the Swift ecosystem. His background spans embedded and telecom systems at Nokia and ABB/Hitachi ABB Power Grids, plus earlier research roles implementing a C compiler with mechanically assisted correctness proofs. This blend of rigorous formal methods and practical security engineering gives him a rare ability to bridge theorem-proving style correctness with production-ready code. Based in Ostermundigen, Switzerland, he brings both research-grade precision and hands-on experience in large-scale, safety- and security-sensitive systems.
9 years of coding experience
13 years of employment as a software developer
Doctor of Philosophy (PhD), Computer Science, First Class Honours, Doctor of Philosophy (PhD), Computer Science, First Class Honours at Université Denis Diderot (Paris VII) / University Paris VII
Doctor of Philosophy (PhD), Mathematics, First Class Honours, Doctor of Philosophy (PhD), Mathematics, First Class Honours at Università degli Studi di Roma Tre
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
Role in this project:
Security Engineer
Contributions:949 reviews, 764 commits, 817 PRs in 1 year 2 months
Contributions summary:Paolo's commits primarily involve contributions to the CodeQL codebase, focusing on improving the quality and security of the Swift language analysis. The user's work encompasses addressing false positives and implementing more robust checks in the security domain. They also work on extending the dataflow analysis and incorporating new features for detecting vulnerabilities in the Swift ecosystem.
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security (code scanning), LGTM.com, and LGTM Enterprise
Contributions:2 PRs, 83 pushes, 41 branches in 2 years 8 months
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.