Peter Stöckli

Security Researcher at GitHub

Switzerland
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

👤
Senior
🎓
Top School
Peter Stöckli is a security researcher and software engineer with 11 years of experience building practical security tooling and improving code-analysis engines. Based in Switzerland, he has moved from software engineering roles into focused security research at GitHub, where he contributes to the widely used CodeQL project by writing vulnerability queries, reducing false positives, and enhancing dataflow analysis. His background spans applied security work at Ergon Informatik and Alphabot Security and long-term software development at AXON IVY, giving him a strong blend of product-minded engineering and research rigor. He holds a CAS in Information Security and a BSc in Computer Science from Hochschule Luzern, and is notable for improving kernel-related vulnerability detection in real-world Ruby codebases.
code11 years of coding experience
job9 years of employment as a software developer
bookCAS Information Security - Technology, CAS Information Security - Technology at Hochschule Luzern
bookBachelor of Science in Computer Science, Software Systems, Bachelor of Science in Computer Science, Software Systems at HSLU Hochschule Luzern
github-logo-circle

Github Skills (9)

security10
ruby10
it-security10
dataflow10
codeql10
scanning9
github-advanced-security9
code-inspection9
scancode9

Programming languages (31)

C#CMakefileGoMustacheHTMLGroovyJupyter Notebook

Github contributions (5)

github-logo-circle
github/codeql

Feb 2020 - Dec 2022

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
Role in this project:
userSecurity Engineer
Contributions:9 reviews, 22 commits, 8 PRs in 2 years 10 months
Contributions summary:Peter primarily contributed to the CodeQL codebase, focusing on enhancing security analysis capabilities. Their work involved adding and refining queries to detect vulnerabilities, specifically related to KernelOpen vulnerabilities in Ruby code. They also addressed false positives by implementing filters and sanitizers, improving the accuracy of security scans. Moreover, the user made improvements to the dataflow analysis within the CodeQL engine to improve the detection of security vulnerabilities.
github-advanced-securitysecurity-toolsgithub-security-labsecurity-researcherssecurity
p-/ql

Feb 2020 - Mar 2024

The libraries and queries that power CodeQL and LGTM.com
Contributions:52 pushes, 14 branches in 4 years 2 months
lgtmuripoweribanqueries
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial