Luke Hinds, CTO of Stacklok, is a highly regarded and industry recognized open source security leader and a former Distinguished Engineer from Red Hat. While at Red Hat, Luke led a security engineering team in the Office of the CTO, where open source projects such as enarx and keylime were built.
Luke founded Sigstore, an open source project that dramatically simplifies the process of digitally signing and checking software components, for a safer chain of custody tracing software back to the source. He currently acts as the chair of Sigstore’s technical steering committee.
Luke was part of the initial group who formed the OpenSSF, a cross-industry organization that brings together the industry’s most important open source security initiatives and the individuals and companies that support them. He has served as an OpenSSF Governing Board Member and previously held a community-elected position on the foundation’s first Technical Advisory Council. Luke also manages the vulnerability bug bounty program for Kubernetes, and is a maintainer of the open source Python security tool Bandit.
Luke is widely considered as the authority on open source supply chain security and is often invited to speak at events including the RSA Conference and appear on various media shows.