CTO @ Pixee. ai (@pixeebot on GitHub)
ex Chief Scientist @ Contrast Security
Security researcher pretending to be a software executive.
Nothing here yet.
Jul 22, 2025 · 4 min read · Today marks an exciting day for all of us here at Pixee, and maybe in appsec? Excuse me some founder panaché. The Problem: Proving Exploitability Is Hard One of the hardest, most detail-oriented, and time consuming things to do with SAST is to try to...
SRSurag and 1 more commentedJul 10, 2025 · 4 min read · XSS is one of the more serious things in appsec, and it's pretty prevalent. It’s also one of those things that is super hard to find accurately via static analysis. And, vendors don’t want to miss it — so, typically any data that gets to a response, ...
RRyan commentedMar 31, 2025 · 3 min read · The top post on HN right now (well, yesterday) is about speaking more directly in the age of LLM "fluff". I have nothing to say about the piece’s main points. But, a sentence caught my eye that never seems to receive any pushback: While it's true th...
Join discussionDec 30, 2024 · 3 min read · This is a great piece by Anthropic. Usually the model providers push you towards complex, high maintenance, and ultimately flakey solutions. This resonates. It seems we all now agree that LLMs are primarily good at data extraction, data summarization...
Join discussion
Sep 25, 2024 · 3 min read · AI rightfully refuses to relinquish its place in our cultural conversation, and so I thought I'd share a few interesting things we've noticed at Pixee making an AI product security engineer. I hope that others might find validation, understanding, or...
Join discussion