Stanislav Láznička

Security Response Committee Member at Microsoft

Czechia
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
🎓
Top School
Stanislav Láznička is a Principal Software Engineer with 15 years of experience focused on Kubernetes authentication, authorization, and x509 certificate management. Currently on Azure Cloud Native Upstream at Microsoft and a member of the Kubernetes Security Response Committee, he brings deep upstream experience shaping authn/z for production clusters. At Red Hat he led and engineered OpenShift’s authentication stack, operators for certificate rotation, and contributed critical PKI and token-introspection work across Hypershift and MicroShift. His open-source footprint spans core projects like kubernetes/kubernetes, the apiserver, and widely used OpenShift components where he fixed subtle crypto and timing-attack issues and improved certificate and webhook metrics. Comfortable across backend, DevOps and security domains, he pairs system-level cryptography experience (NSS/OpenSSL) with operator-driven cloud-native deployments. Based in Czechia with a master’s in IT Security, he’s as likely to debug a cert chain as to design an operator that automates it.
code15 years of coding experience
job8 years of employment as a software developer
bookMaster's Degree, IT Security, Master's Degree, IT Security at Brno University of Technology
languagesCzech, English
github-logo-circle

Github Skills (65)

parserator10
parser10
python10
testing10
authentication10
proxy10
security10
automation10
freeipa10
control-center10
dockers10
control-panel10
api10
kubernetes-pods10
yaml10

Programming languages (16)

JavaCSSC++CMakefileTeXGoHTML

Github contributions (5)

github-logo-circle
openshift/oauth-proxy

Feb 2019 - Jan 2022

A reverse proxy that provides authentication with OpenShift via OAuth and Kubernetes service accounts
Role in this project:
userBack-end Developer
Contributions:32 reviews, 92 commits, 32 PRs in 2 years 11 months
Contributions summary:Stanislav primarily contributed to the `openshift/oauth-proxy` repository by modifying the OpenShift provider code. Their work focused on fixing issues related to URL configurations, specifically for review and user validation endpoints, particularly in OpenShift 4.0. Additionally, they implemented functionality to refetch OAuth endpoints during login, addressing potential issues with outdated or incorrect endpoint information. Further changes include code refactoring for HTTP client caching and improvements to the overall codebase.
kubernetes-serviceproxyauthenticationopenshiftreverse-proxy
The kube-apiserver operator installs and maintains the kube-apiserver on a cluster
Role in this project:
userBack-end & DevOps Engineer
Contributions:72 reviews, 47 commits, 52 PRs in 3 years 5 months
Contributions summary:Stanislav primarily contributed to the operator's configuration and functionality, evidenced by changes across various files like `observe_cors.go`, `targetconfigcontroller.go`, and `bindata.go`. Their work included observing and incorporating additional CORS origins, observing and propagating Proxy object settings, and adding the trusted CA bundle injection into the kube-apiserver pods. The user also addressed dependency bumps and fixes related to the operator's dependencies.
apiserverkube-apiserverkubeoperatoropenshift
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Stanislav Láznička - Security Response Committee Member at Microsoft