I'm a long time developer that learned security the hard way building tools at a security company and getting broken. I still write code often. I also help companies build AppSec programs. I joined the OWASP board in January, 2015.
Some of my projects include: Pipeline