Ulises Gascón is a senior software engineer and open source leader with 11 years of experience, currently focused on Node.js infrastructure and releases at NodeSource while serving as a Core Collaborator and Releaser on the Node.js project. He chairs and contributes across multiple standards and security bodies (Express TSC, OpenJS CPC, TC39 delegate, OWASP), and maintains 150+ OSS packages including work on high-profile projects like Express, Lodash, Yeoman, and Node.js. His contributions span CI/build systems, macOS notarization automation, and security best practices—practical work that has shaped Node.js release and macOS signing strategies. As a former Head of Open Source and engineering lead, he combines developer advocacy, mentorship, and product-focused engineering to build resilient teams and services used by enterprise clients. Notably, he refactored popular tools such as yeoman/generator-webapp to modernize dependency chains (Bower→npm, Babel 7) and authored tooling (a Jenkins-monitoring GitHub Action) that quietly improves release reliability. Based in Madrid, he blends deep technical stewardship with a knack for turning maintenance-heavy projects into sustainable, modern ecosystems.
The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.
Role in this project:
Full-stack Developer
Contributions:89 commits, 30 PRs, 30 pushes in 11 months
Contributions summary:Ulises implemented and tested various features related to user authentication and application routes within the NodeGoat project. Their primary contribution involved creating Cypress end-to-end tests for the login, profile, benefits, allocations, contributions, memos, logout, and signup functionalities. They also refactored the testing logic and added new Cypress commands to improve testability and maintainability. Additionally, the user addressed code typos and improved the testing setup by incorporating database resets and user authentication methods.
Contributions:3 releases, 323 reviews, 34 PRs in 8 years 5 months
Contributions summary:Ulises primarily contributed to the build and release process of the Node.js project. They focused on automating the macOS notarization process by integrating `notarytool`, streamlining the submission and stapling of releases, and improving the output readability. Further contributions included the removal of legacy notarization methods and enhancements such as adding verification steps and utilizing macOS keychain profiles.
windowsnode-jsjavascriptlinuxruntime
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Ulises Gascón - Senior Software Engineering at TC39