Security researcher and software engineer focused on memory safety, authorization boundaries, and reproducible proof.
Website · Security ledger · HackerOne · Writing · PGP
| Surface | Result | Public proof |
|---|---|---|
Linux io_uring |
Found an SQE_MIXED out-of-bounds read. The fix merged upstream and the regression test landed in liburing. |
Kernel fix · liburing test |
| V8 / Chrome | Found an uninitialized read in Maglev. The V8 team fixed it and listed the work on the Chrome VRP panel. | V8 fix · Writeup |
| trigger.dev | Reported a cross-tenant task replay issue, fixed in v4.5.2. | GHSA-9fq3-68cw-r7p2 |
| Vaultwarden | Independently reported an SSO email verification bypass, published as CVE-2026-47164 and fixed in 1.36.0. | Writeup · Advisory |
| Anthropic | One report resolved through HackerOne with a $100 bounty. Technical details are not public. | HackerOne profile |
The edge is targeting and proof, not volume. I use focused fuzzers, source review, and target-native test harnesses to find suspicious boundaries. Every promising result gets reproduced in the target's compiled code before it reaches a maintainer. A plausible report is not enough. The bar is evidence that survives a hostile read.
| Project | What it is |
|---|---|
| reproassert | Generates and sandbox-verifies failing pytest reproduction candidates from GitHub issues. |
| AgentK | A user-space security kernel for AI agents with typed tool boundaries, policy, receipts, and replayable evidence. |
| flowdown | A zero-dependency, O(1) streaming Markdown renderer for AI output. |
I ship apps through Rekishi LLC, write technical and personal essays at tomryan.dev, release music as A5omic, and publish consciousness research on Zenodo.
Contact: overboardapps@gmail.com · GitHub · HackerOne


