Ugo Giordano
Senior Software Engineer, Ph.D.
Platform security engineer at Red Hat, working on OpenShift AI. I find vulnerabilities in Kubernetes operators, build libraries to fix them structurally, and create AI-powered tooling for security analysis at scale. Previously at Nokia Bell Labs researching SDN reliability.
Featured Projects
operator-security-runtime
Found a CVSS 9.1 privilege escalation across RHOAI operators. Built a Go library that replaces cluster-wide permissions with per-namespace scoped Roles, validated with a 200-trial performance framework.
Operator Chaos
Chaos engineering framework for Kubernetes operators. Injects faults into controller reconciliation loops to validate resilience and recovery behavior.
Architecture Analyzer
Static analysis tool that extracts CRDs, RBAC rules, security contexts, and network policies from Kubernetes operator source code. Builds multi-language code property graphs (Go, Python, TS, Rust) with taint analysis.
Adversarial Reviewing
Multi-agent adversarial code review system. Isolated specialist agents (security, architecture, correctness) analyze code independently, then challenge each other through structured debate rounds.
Latest Posts
-
Protect your Kubernetes Operator from OOMKill
How an unfiltered informer cache lets any user with edit permissions crash your operator. I found this in the Spark Operator, but the pattern is everywhere.
-
Building an AI-powered browser extension for tab lifecycle management
How I built a Chrome extension with a skill-based AI integration that lets any AI agent manage browser tabs through natural language, using a bridge REST API and curl commands.