Skip to content
View manzil-infinity180's full-sized avatar
🦉
Learning & Exploring
🦉
Learning & Exploring

Highlights

  • Pro

Organizations

@plone @kubernetes @kubernetes-sigs @XfLabs @tryoutshell

Block or report manzil-infinity180

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
manzil-infinity180/README.md

Hi there 👋

Bio

I'm Rahul Vishwakarma (rahulxf), a software engineer and open source contributor working on developer tools and software supply chain security.

I'm an active contributor to CNCF's in-toto project, where I work on Witness and Archivista. I also work on aflock, signed and verifiable policies that constrain what AI agents can do, and rookery, a modular attestation framework around Witness.

I'm a Google Summer of Code '24 alum (Submitty), an LFX mentee & mentor (KubeStellar), and a member of Kubernetes and Kubernetes SIGs. I currently contract with TestifySec.

Talks

Date Title Event Links
June 2026 Oops, My AI Agent Just Deleted All My Email: Locking Down Agents With Signed Policies Open Source Summit India 2026 Recording
June 2026 In-toto Attestations for What Really Happens in Your Build Pipeline, With Witness KubeCon + CloudNativeCon India 2026 Recording

Pinned Loading

  1. in-toto/witness in-toto/witness Public

    Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact provenance.

    Go 534 78

  2. in-toto/go-witness in-toto/go-witness Public

    Go implementation of witness

    Go 51 38

  3. aflock-ai/aflock aflock-ai/aflock Public

    Cryptographically signed policies that constrain AI agent behavior. Same attestation primitives as cilock, applied to agent execution: identity binding via MCP, JWT + signing-key separation, sublay…

    Go 25 1

  4. aflock-tui aflock-tui Public

    Terminal UI for inspecting aflock sessions — browse sessions, decode DSSE attestations & JWTs, replay Claude Code sessions against policies, live-watch agent sessions. Built with Bubbletea

    Go 1

  5. aflock-replay aflock-replay Public

    Browser-based tool to replay Claude Code sessions against aflock policy

    HTML

  6. kubestellar/ui kubestellar/ui Public archive

    KubeStellar's User Interface

    TypeScript 170 223