Skip to content
View wlynch's full-sized avatar
160 followers · 40 following

Achievements

Achievement: Pair Extraordinairex3Achievement: StarstruckAchievement: YOLOAchievement: QuickdrawAchievement: Pull Sharkx3Achievement: Arctic Code Vault Contributor

Achievements

Achievement: Pair Extraordinairex3Achievement: StarstruckAchievement: YOLOAchievement: QuickdrawAchievement: Pull Sharkx3Achievement: Arctic Code Vault Contributor

Highlights

Organizations

@tektoncd @sigstore @chainguard-dev @wolfi-dev @gittuf

Block or report wlynch

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
wlynch/README.md

Hi there 👋

Bio

Billy is a staff software engineer at Chainguard, working on developer tools and securing software supply chains for everyone! He is an active contributor and maintainer to the Sigstore and Tekton projects, and is the creator of gitsign. Prior to working at Chainguard, Billy worked on several developer tool teams at Google including Cloud Build, Google Code, and Cloud Source Repositories.

Talks

Date Title Event Links
June 2025 Securing OIDC Federation in CI/CD Workflows Open Source Summit NA 2025 Recording
June 2025 Billy and Eddie's Declassified Git Survival Guide Open Source Summit NA 2025 Recording
April 2024 Securing Git Repositories with Gittuf Open Source Summit NA 2024 Recording
May 2023 Identity-based Source Integrity with Gitsign cdCon + GitOps Con NA 2023 Recording
February 2023 Lightning Talk: Securing Your Source Repositories - 5 Tips to Get Started! Cloud Native Security Con NA 2023 Recording
October 2022 Source Attestations with Gitsign Cloud Native Security Con NA 2022 Recording
September 2022 Gitsign - Keyless Git Commit Signing Supply Chain Security Con @ Open Source Summit EU Recording
September 2022 Keyless Signing with Tekton and Sigstore CDF Mini-summit @ Open Source Summit EU Slides

Pinned Loading

  1. sigstore/gitsign sigstore/gitsign Public

    Keyless Git signing using Sigstore

    Go 1k 72

  2. tektoncd/chains tektoncd/chains Public

    Supply Chain Security in Tekton Pipelines

    Go 259 153

  3. tektoncd/pipeline tektoncd/pipeline Public

    A cloud-native Pipeline resource.

    Go 8.8k 1.8k

  4. tektoncd/triggers tektoncd/triggers Public

    Event triggering with Tekton!

    Go 574 430

  5. google/go-licenses google/go-licenses Public

    A lightweight tool to report on the licenses used by a Go package and its dependencies. Highlight! Versioned external URL to licenses can be found at the same time.

    Go 950 128

  6. bradleyfalzon/ghinstallation bradleyfalzon/ghinstallation Public

    HTTP Round Tripper for GitHub Apps - Authenticate as an Installation Workflow

    Go 352 109