The Wayback Machine - https://web.archive.org/web/20200726034420/https://github.com/alex

alex Follow

alex Follow

Alex Gaynor alex

I program computers, and build teams that program computers, with a heavy focus on security.

Follow

5.4k followers · 38 following · 149

Highlights

Arctic Code Vault Contributor
Pro

Organizations

Pinned

pyca/cryptography

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers.

Python 3.4k 742
what-happens-when

An attempt to answer the age old interview question "What happens when you type google.com into your browser and press enter?"

26.5k 1.9k
fishinabarrel/linux-kernel-module-rust

Framework for writing Linux kernel modules in safe Rust

Rust 814 58
fishinabarrel/fishinabarrel.github.io

Security research organization dedicated to finding low hanging, critical, vulnerabilities.

HTML 6 7
topazproject/topaz

A high performance ruby, written in RPython

Python 970 85
letsencrypt-aws

Python 730 117

4,213 contributions in the last year

Activity overview

Contributed to pyca/cryptography, hallowauth/hallow, fishinabarrel/linux-kernel-module-rust and 5 other repositories

Contribution activity

July 2020

alex/rustsec-admin Rust Jul 24

Created a pull request in rust-lang/rust that received 4 comments

don't mark linux kernel module targets as a unix environment

refs #74247 r?@joshtriplett cc: @ehuss

+0 −1 • 4 comments

Refs #5113 -- build against openssl with no ct Jul 24
Lock old issues+PRs automatically Jul 24
fixed copyright year Jul 21
fixes #3405 -- run with ASAN+UBSAN in tests Jul 21
Remove from nonsense from travis script that I think is unused Jul 21
fixes #5321 -- deprecate support for OpenSSL 1.0.2 Jul 20
fixes #5329 -- properly run CI on x.y tags Jul 20
Delete several unused bindings Jul 20
Tell people to use black in our dev docs Jul 20
Paint it Black by the Rolling Stones Jul 19
fix grammar in error message Jul 19
Implement __deepcopy__ for x509 certificates Jul 19
Avoid passing the wrong size to strncpy - simply use strcpy Jul 18
fixes #4706 -- don't internal error on corrupt private key Jul 12
Remove downgrade pip operations from wheel builder Jul 12
Attempt to run tests against BoringSSL in CI Jul 11
Enforce that X.509 version is valid on parse Jul 5

Added an API for contributing randomness to the kernel Jul 16
I think const fn are stable enough that this isn't required Jul 12
test against bionic kernel Jul 12
bump nightly version used Jul 12

fix cache keys in CI Jul 25
Switch to github actions Jul 25
Update to the latest libfuzzer-sys release Jul 25

Paint it Black by the Rolling Stones Jul 23
make github actions more resillient Jul 20
fixed docs formatting Jul 16

Deprecated pkcs7 and pkcs12 support Jul 25
Paint it Black by the Rolling Stones Jul 23

Fixes #334 -- give the assignment PRs a useful commit message Jul 24

Added an output mode for use with the production github action Jul 24

Paint it Black by the Rolling Stones Jul 23

fixed corrupted iqmp value in test RSA key Jul 18

Link to our swag from the website Jul 16

fixes #376 -- document platform support in the library docs Jul 12

deps(chore): update to the latest rustls Jul 6

Stop FIPSing in centos8 Jul 4

slight language tweaks for the py2 warning link Jul 26
Emit the deprecation one level up the stack Jul 26
remove 4 OCSP bindings we don't use Jul 25
3.1 time Jul 20
prep 3.0 for release Jul 20
test FIPS mode on centos8 Jul 20
PKCS12 support Jul 20
refactor DH a bit to generate less parameters Jul 20
generate_pkcs12 (#4952) Jul 19
disable the osrandom engine on 1.1.1d+ Jul 19
test exceptions and properly reject duplicate attributes in csrbuilder Jul 19
raise a valueerror on multi-SINGLERESP valued OCSP responses Jul 19
support encoding attributes via CertificateSigningRequestBuilder Jul 19
change KeyUsage repr to be less confusing Jul 18
support unstructured name x509 attributes Jul 18
fix indexing on X509 request attribute value Jul 18
Set vectors -x Jul 18
remove NPN bindings -- you should be using ALPN! Jul 6
switch to a newer CSR with SHA256 and a challenge password Jul 6
support x509 request challenge password parsing Jul 6
support 4096 bit DSA parsing from numbers classes Jul 6
add unstructured name x509 csr attribute vector Jul 6
invalid challenge value csr Jul 5
Support parsing SCTs in OCSPResponse Jul 5
add SubjectInformationAccess extension support Jul 2

add smallvec unsoundness Jul 24
Assign RUSTSEC-2020-0021 to rio Jul 3

add centos8 fips runner Jul 19

bpo-39603: Prevent header injection in http methods Jul 17

Bump lodash from 4.17.14 to 4.17.19 Jul 15

Fix Travis CI build config validation issues Jul 12

Run go mod tidy Jul 10

Created an issue in electron/electron that received 9 comments

SIGSEGV in uv_async_send on startup

Preflight Checklist I have read the Contributing Guidelines for this project. I agree to follow the Code of Conduct that this project adheres to. …

3 of 3 • 9 comments

oss-fuzz last week: 47 vulnerabilities Jul 22
oss-fuzz last week: 38 vulnerabilities Jul 15
macOS 10.15.6 Jul 15
watchOS 6.2.8 Jul 15
tvOS 13.4.8 Jul 15
iOS 13.6 Jul 15
Pixel July Security Bulletin: Qualcomm Jul 15
Android July Security Bulletin: Qualcomm Jul 15
Android July Security Bulletin: Media Jul 15
Chrome 84.0.4147.89 Jul 14
Microsoft Patch Tuesday: July Jul 14
Adobe Media Encoder Jul 14
MS CVEs from 2015-2019 Jul 9
oss-fuzz last week: 55 vulnerabilities Jul 8
Firefox 78 Jul 3
Android is looking into rust Jul 2
oss-fuzz last week: 45 vulnerabilities Jul 1
New MS codecs vulns Jul 1

Fix ci.yml to run on *.* releases Jul 20
Deprecate OpenSSL 1.0.2 support Jul 19

SIGSEGV on starting signal-desktop Jul 21

Add a flag to der2ascii to have it pem decode before treating the input as DER Jul 18

91 contributions in private repositories Jul 1 – Jul 20

You can’t perform that action at this time.