Skip to content
Avatar

Achievements

Achievements

Highlights

  • 1 discussion answered
Block or Report

Block or report jhutchings1

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
jhutchings1/README.md

Hello! I'm Justin Hutchings, and I'm a product manager here at GitHub working on our security features for developers.

I'm currently working on our supply chain security features including @Dependabot, the Advisory Database, and the dependency graph.

Previously, I worked on the integration of Semmle's super cool CodeQL into GitHub with code scanning. Code scanning is free for public repositories, so go try it out (check your repository's security tab!).

A few of my talks on security and software:
GitHub Advanced Security roundup Applying the GitHub security development lifecycle to your project GitHub Code Scanning GitHub security advisories

Pinned

  1. This web app can be used to convert a Google calendar event into a simple Markdown file suitable for taking meeting notes.

    JavaScript 3 1

  2. This repository includes a Gemfile which includes a fake dependency which is always flagged as having security vulnerabilities.

    Ruby 5

  3. This repository contains a sample script which can be used to enable security vulnerability alerts in all of the repositories in a given organization.

    JavaScript 55 24

  4. This repo demonstrates how to use the GitHub Code Scanning API to export all the alerts in an organization to a CSV file

    JavaScript 11 8

  5. This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.

    PowerShell 10 9

Contribution activity

June 2021

Opened 1 pull request in 1 repository
github/enable-security-alerts-sample
1 merged
Reviewed 2 pull requests in 1 repository
Klahanie/klahanie 2 pull requests

Created an issue in CVEProject/cve-schema that received 5 comments

Product mappings not machine readable?

Hello, I was reviewing the new CVE schema, and it appears that the product mappings are still not machine readable. For consumers of the data, this…

5 comments
21 contributions in private repositories Jun 1 – Jun 11

Seeing something unexpected? Take a look at the GitHub profile guide.