DEV Community

Ofri Peretz profile picture

Ofri Peretz

IC5/M2 Leader @ Snappy US. Building revenue APIs & AI-ready ESLint plugins. Expert in distributed teams, scalable infra, and fostering a culture of craftsmanship.

Location Austin, Texas, USA Joined Joined on  Personal website https://ofriperetz.dev?utm_source=devto&utm_medium=profile&utm_campaign=website-field twitter website

Education

CS

Work

Engineering Manager @ Snappy | Open Source Developer | ESLint for AI tools

Pin Pinned

Engineering the 100x Speedup: A Static Analysis Performance Report
ofri-peretz profile

Engineering the 100x Speedup: A Static Analysis Performance Report

#eslint #javascript #performance #benchmark
Comments 1
4 min read
The 30-Minute Security Audit: A Static Analysis Protocol for Onboarding
ofri-peretz profile

The 30-Minute Security Audit: A Static Analysis Protocol for Onboarding

#eslint #security #node #devsecops
12
Comments 6
3 min read
Math.random() Is Not Random Enough. I Found It Building API Keys in a 44K-Star Repo.
ofri-peretz profile

Math.random() Is Not Random Enough. I Found It Building API Keys in a 44K-Star Repo.

#security #javascript #node #devsecops
2
Comments
5 min read

Want to connect with Ofri Peretz?

Create an account to connect with Ofri Peretz. You can also sign in below to proceed if you already have an account.

Create Account
Already have an account? Sign in
Same NestJS Prompt. Claude Got 6 Security Errors. Gemini Got 2. Here's What Both Got Wrong.
ofri-peretz profile

Same NestJS Prompt. Claude Got 6 Security Errors. Gemini Got 2. Here's What Both Got Wrong.

#ai #security #googleai #geminichallenge
2
Comments
6 min read
5 Cycles Invisible in 14,556 Files. The Cache Bug That Hid Them.
ofri-peretz profile

5 Cycles Invisible in 14,556 Files. The Cache Bug That Hid Them.

#eslint #javascript #node #typescript
1
Comments
7 min read
import-next/no-cycle Reported 0 Cycles on Next.js. We Found Why — and Fixed It.
ofri-peretz profile

import-next/no-cycle Reported 0 Cycles on Next.js. We Found Why — and Fixed It.

#eslint #javascript #node #webdev
1
Comments
5 min read
Claude Wrote a NestJS Service. TypeScript Was Happy. ESLint Found 6 Security Holes.
ofri-peretz profile

Claude Wrote a NestJS Service. TypeScript Was Happy. ESLint Found 6 Security Holes.

#ai #security #node #devsecops
3
Comments 2
10 min read
I Inherited a NestJS Codebase. The First Lint Run Found 6 Vulnerabilities.
ofri-peretz profile

I Inherited a NestJS Codebase. The First Lint Run Found 6 Vulnerabilities.

#eslint #nestjs #security #devsecops
1
Comments
5 min read
The False Positive Tax: a 1:1 TP:FP analysis of eslint-plugin-security
ofri-peretz profile

The False Positive Tax: a 1:1 TP:FP analysis of eslint-plugin-security

#security #eslint #javascript #benchmark
Comments
11 min read
I Benchmarked 17 ESLint Security Plugins. Only One Found Every Vulnerability.
ofri-peretz profile

I Benchmarked 17 ESLint Security Plugins. Only One Found Every Vulnerability.

#security #eslint #javascript #benchmark
Comments
9 min read
no-cycle finds 0 cycles in next.js (and other lies caches tell you)
ofri-peretz profile

no-cycle finds 0 cycles in next.js (and other lies caches tell you)

#eslint #javascript #node #performance
Comments
5 min read
Aggregate Benchmarks Lie. Here's What 700 AI Functions Look Like by Security Domain.
ofri-peretz profile

Aggregate Benchmarks Lie. Here's What 700 AI Functions Look Like by Security Domain.

#ai #security #javascript #eslint
Comments
12 min read
I Found 3 Real Bugs in Popular ESLint Plugins. Unit Tests Didn't Catch Them.
ofri-peretz profile

I Found 3 Real Bugs in Popular ESLint Plugins. Unit Tests Didn't Catch Them.

#eslint #javascript #security #node
Comments
7 min read
We Ranked 5 AI Models by Security. The Leaderboard Is Wrong.
ofri-peretz profile

We Ranked 5 AI Models by Security. The Leaderboard Is Wrong.

#ai #security #eslint #javascript
2
Comments
9 min read
The AI Hydra Problem: Fix One AI Bug, Get Two More
ofri-peretz profile

The AI Hydra Problem: Fix One AI Bug, Get Two More

#ai #security #javascript #eslint
Comments
12 min read
Microsoft's ESLint Security Plugin Catches 10% of Vulnerabilities. Here's What It Misses.
ofri-peretz profile

Microsoft's ESLint Security Plugin Catches 10% of Vulnerabilities. Here's What It Misses.

#security #eslint #javascript #benchmark
1
Comments
10 min read
SonarJS Has 269 Rules. It Still Misses 65% of Security Vulnerabilities.
ofri-peretz profile

SonarJS Has 269 Rules. It Still Misses 65% of Security Vulnerabilities.

#security #eslint #javascript #benchmark
Comments
15 min read
eslint-plugin-security Is Unmaintained. Here's What Nobody Tells You.
ofri-peretz profile

eslint-plugin-security Is Unmaintained. Here's What Nobody Tells You.

#security #eslint #javascript #node
Comments
8 min read
I Let Claude Write 80 Functions. 65-75% Had Security Vulnerabilities.
ofri-peretz profile

I Let Claude Write 80 Functions. 65-75% Had Security Vulnerabilities.

#ai #security #eslint #javascript
4
Comments 4
12 min read
Exploit Analysis: PostgreSQL COPY FROM Filesystem Access
ofri-peretz profile

Exploit Analysis: PostgreSQL COPY FROM Filesystem Access

#eslint #postgres #security #node
Comments
4 min read
The Performance Protocol: Solving PostgreSQL N+1 Loops via Static Analysis
ofri-peretz profile

The Performance Protocol: Solving PostgreSQL N+1 Loops via Static Analysis

#eslint #postgres #performance #node
1
Comments 3
3 min read
Exploit Analysis: search_path Hijacking (The Hidden PostgreSQL Attack)
ofri-peretz profile

Exploit Analysis: search_path Hijacking (The Hidden PostgreSQL Attack)

#eslint #postgres #security #node
Comments
3 min read
Express.js Security Audit: 5 Middleware Vulnerabilities Found in Real Codebases
ofri-peretz profile

Express.js Security Audit: 5 Middleware Vulnerabilities Found in Real Codebases

#eslint #express #security #node
Comments
3 min read
NestJS Security: The 6 Vulnerabilities That Slip Past Code Review
ofri-peretz profile

NestJS Security: The 6 Vulnerabilities That Slip Past Code Review

#eslint #nestjs #security #node
Comments
3 min read
Your AWS Lambda Has 3 Attack Surfaces. Here's How to Find Them in 10 Minutes.
ofri-peretz profile

Your AWS Lambda Has 3 Attack Surfaces. Here's How to Find Them in 10 Minutes.

#eslint #aws #lambda #serverless
Comments
4 min read
The 10-Minute Browser Security Audit: DOM Vulnerabilities Your Linter Misses
ofri-peretz profile

The 10-Minute Browser Security Audit: DOM Vulnerabilities Your Linter Misses

#eslint #javascript #security #browser
Comments
2 min read
JWT Security Beyond the Algorithm: What Static Analysis Catches in Token Code
ofri-peretz profile

JWT Security Beyond the Algorithm: What Static Analysis Catches in Token Code

#eslint #jwt #security #authentication
Comments
3 min read
Node.js Cryptography Has a Blind Spot: What npm audit Misses That ESLint Catches
ofri-peretz profile

Node.js Cryptography Has a Blind Spot: What npm audit Misses That ESLint Catches

#eslint #node #security #cryptography
Comments
2 min read
Performance at Scale: The Static Analysis Standard for 100x Faster Linting
ofri-peretz profile

Performance at Scale: The Static Analysis Standard for 100x Faster Linting

#eslint #javascript #imports #tutorial
Comments
2 min read
Hardening Vercel AI SDK Agents: The Security Vulnerabilities ESLint Catches
ofri-peretz profile

Hardening Vercel AI SDK Agents: The Security Vulnerabilities ESLint Catches

#eslint #ai #security #vercel
Comments
3 min read
Post-Mortem: Race Conditions in PostgreSQL Pools (And the Guard)
ofri-peretz profile

Post-Mortem: Race Conditions in PostgreSQL Pools (And the Guard)

#eslint #postgres #node #database
Comments
3 min read
Post-Mortem: The Connection Leak That Crashed Production (Caught by One ESLint Rule)
ofri-peretz profile

Post-Mortem: The Connection Leak That Crashed Production (Caught by One ESLint Rule)

#eslint #postgres #node #database
Comments
3 min read
The 30-Minute OWASP Compliance Audit: Automating Secure Coding Checks with ESLint
ofri-peretz profile

The 30-Minute OWASP Compliance Audit: Automating Secure Coding Checks with ESLint

#eslint #security #javascript #tutorial
Comments
3 min read
PostgreSQL Security with node-postgres: The SQL Injection Patterns That Slip Through
ofri-peretz profile

PostgreSQL Security with node-postgres: The SQL Injection Patterns That Slip Through

#eslint #postgres #node #database
Comments
3 min read
The OWASP Compliance Protocol: Mapping 247 Static Analysis Rules
ofri-peretz profile

The OWASP Compliance Protocol: Mapping 247 Static Analysis Rules

#eslint #security #owasp #devsecops
1
Comments
8 min read
The JavaScript Security Checklist: Covering the OWASP Top 10 with ESLint
ofri-peretz profile

The JavaScript Security Checklist: Covering the OWASP Top 10 with ESLint

#eslint #career #security #javascript
Comments
4 min read
Exploit Analysis: The JWT Algorithm 'none' Attack (And the Guard)
ofri-peretz profile

Exploit Analysis: The JWT Algorithm 'none' Attack (And the Guard)

#eslint #security #jwt #node
1
Comments
4 min read
Vulnerability Case Study: Prompt Injection in Vercel AI Agents
ofri-peretz profile

Vulnerability Case Study: Prompt Injection in Vercel AI Agents

#eslint #ai #security #vercel
Comments
3 min read
SQL Injection in node-postgres: The Pattern 80% of Developers Get Wrong
ofri-peretz profile

SQL Injection in node-postgres: The Pattern 80% of Developers Get Wrong

#eslint #postgres #node #security
Comments
2 min read
The Secret Management Standard: Automating AI Agent Protection
ofri-peretz profile

The Secret Management Standard: Automating AI Agent Protection

#eslint #javascript #security #devops
Comments
2 min read
Post-Mortem: Why ESLint Performance Failed (And the 100x Fix)
ofri-peretz profile

Post-Mortem: Why ESLint Performance Failed (And the 100x Fix)

#eslint #javascript #performance #typescript
Comments
2 min read
Benchmark Report: Why Most Security Linters Miss 80% of Vulnerabilities
ofri-peretz profile

Benchmark Report: Why Most Security Linters Miss 80% of Vulnerabilities

#eslint #security #javascript #webdev
Comments
6 min read
The AI Security Protocol: Hardening Vercel AI SDK Agents
ofri-peretz profile

The AI Security Protocol: Hardening Vercel AI SDK Agents

#eslint #ai #security #vercel
Comments
3 min read
The OWASP LLM Protocol: 100% Automated Coverage for Vercel AI
ofri-peretz profile

The OWASP LLM Protocol: 100% Automated Coverage for Vercel AI

#eslint #ai #security #owasp
Comments
4 min read
Your Vercel AI SDK App Has a Prompt Injection Vulnerability
ofri-peretz profile

Your Vercel AI SDK App Has a Prompt Injection Vulnerability

#eslint #vercel #ai #security
Comments
2 min read
loading...