Paul Ming

Senior Software Engineer at Microsoft

Redmond, Washington, United States
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
Paul Ming is a Senior Software Engineer based in Redmond with seven years of experience building secure, maintainable backend systems at Microsoft. He blends hands-on development with security engineering, contributing to high-profile open-source work on the dotnet/roslyn-analyzers project where he generalized tainted data analysis and added rules to catch deserialization and weak-crypto vulnerabilities. Comfortable refactoring complex static analysis logic, he focuses on practical, code-quality improvements that reduce real-world risk while keeping developer ergonomics in mind. Paul’s background suggests a strong grasp of .NET internals and a bias toward preventive, tool-driven security measures that scale across organizations. He brings a pragmatic engineering mindset that pairs production reliability with thoughtful contributions to the broader developer ecosystem.
code7 years of coding experience
github-logo-circle

Github Skills (8)

security10
security-testing10
csharp10
dataflow10
security-scan10
dotnet-core10
netframework10
software-quality9

Programming languages (8)

TypeScriptC#PowerShellJavaC++JavaScriptGoPython

Github contributions (5)

github-logo-circle
dotnet/roslyn-analyzers

Jul 2018 - Sep 2021

Role in this project:
userBackend Developer & Security Engineer
Contributions:4 releases, 50 reviews, 643 commits in 3 years 2 months
Contributions summary:Paul's contributions focused on generalizing security analysis, introducing new rules to enforce secure coding practices, and improving code quality within the Roslyn analyzers project. They implemented a refactoring of the tainted data analysis functionality to enable it to support property-based sources and sinks and added new rules to detect potential vulnerabilities related to .NET deserialization, and the use of insecure cryptographic algorithms. Additionally, the user made code cleanup improvements.
dotpaul/roslyn-analyzers

Oct 2018 - Sep 2021

Contributions:32 commits, 294 pushes, 103 branches in 2 years 11 months
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Paul Ming - Senior Software Engineer at Microsoft