Rogerio Peixoto

Software Engineer at Checkmarx

Portugal, Israel
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
Rogerio Peixoto is a software engineer with five years of experience specializing in security-focused development and open-source contributions. Based in Portugal/Israel, he has strengthened infrastructure-as-code security by adding vulnerability detection, similarity IDs, and unit tests to the well-regarded Checkmarx KICS project. He brings practical expertise in analyzing Dockerfiles, Ansible, and CloudFormation templates to catch unpinned dependencies, risky upgrade patterns, and publicly exposed resources early in the pipeline. Rogerio blends hands-on engineering with a security mindset, producing auditable, test-covered improvements that reduce deployment risk. An understated strength is his ability to translate subtle misconfigurations into deterministic detection rules that scale across diverse IaC ecosystems.
code5 years of coding experience
github-logo-circle

Github Skills (8)

infrastructure-as-code10
vulnerability-detection10
dockerfile10
security10
ansible9
aws-cloudformation9
ansible-galaxy9
go8

Programming languages (9)

HCLTypeScriptDockerfileShellRustOpen Policy AgentJavaScriptGo

Github contributions (5)

github-logo-circle
Checkmarx/kics

Dec 2020 - Sep 2022

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
Role in this project:
userSecurity Engineer
Contributions:1602 reviews, 430 commits, 1768 PRs in 1 year 9 months
Contributions summary:Rogerio focused on adding security vulnerability detection capabilities to the KICS project. Their contributions include adding queries to detect various security issues related to unpinned package versions, the use of `apk upgrade`, and publicly accessible resources within Dockerfiles, Ansible, and CloudFormation templates. The user also implemented a system to generate similarity IDs for vulnerability results and added unit tests to validate these features.
kicscyclecompliancevulnerability-scannersiac
ekmixon/kics

Mar 2021 - Jul 2021

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
Contributions:44 commits in 4 months
kicscyclecompliancemisconfigurationsvulnerabilities
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Rogerio Peixoto - Software Engineer at Checkmarx