Skip to content
View MoAz06's full-sized avatar

Block or report MoAz06

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
MoAz06/README.md

Hi, I'm Mohamed

Backend-focused Computer Science student at Leiden University, part-time Software Developer at CodeHive, and part-time Backend Developer at Kojac.

I build production-style backend systems: APIs, databases, authentication, automation workflows, and AI/cloud tools. Recently, I built ReachGate, a vulnerability-reachability triage tool that helps separate real security risk from scanner noise.

Featured: ReachGate

ReachGate — vulnerability-reachability triage for GitLab Orbit.

ReachGate checks whether a reported vulnerability is actually reachable from real application entry points. It uses deterministic graph traversal and bounded analysis to classify findings as reachable, unreachable, or unknown, helping teams focus on vulnerabilities that can realistically be exploited.

Built for the GitLab Transcend Hackathon 2026.

Python · GitLab Orbit · GitLab CI/CD · OpenVEX · SARIF · MCP · pytest

Demo

Also built: TrustGate

trustgate-ai-agents — a runtime authorization layer, or action firewall, for AI agents.

A Gemini-powered agent can only take an action when live data evidence passes deterministic policy checks returning ALLOW, APPROVAL_REQUIRED, or BLOCK.

Built solo for the Google Cloud Rapid Agent Hackathon. Open source under MIT, deployed on Google Cloud, with automated tests.

Node.js · Google Cloud Run · Vertex AI / Gemini · BigQuery · Fivetran · Docker · MCP

2-minute demo · Code

What I work with

Languages: Python · JavaScript/Node.js · C++ · SQL · TypeScript
Backend & APIs: FastAPI · Flask · REST · JWT · OAuth2 · OpenAPI/Swagger · WebSockets · MCP
Cloud & AI: Azure · Google Cloud Run · Vertex AI / Gemini · BigQuery · Fivetran · Docker
Data: PostgreSQL · SQLite · SQLAlchemy · CSV/Excel pipelines
Tools: Git · Linux/WSL · Bash · pytest · Uvicorn

Other projects

  • Procurement Risk API — FastAPI + PostgreSQL REST API with JWT/OAuth2 auth, risk-detection rules, and Swagger docs.
  • bol.com → DPD Export Tool — Python automation integrating the bol.com API with SQLite to generate shipping exports.
  • Real-Time Chat App — Flask + WebSockets with session auth and an MVC-style structure.
  • Backtracking Scheduler — C++ constraint solver with pruning to optimise search complexity.

Reach me

mohamedazahrioui2006@gmail.com · Portfolio · HackerRank certified: Software Engineer, REST API

Pinned Loading

  1. ReachGate ReachGate Public

    Deterministic vulnerability-reachability triage on GitLab Orbit's code graph: walks entry points to vulnerable code, exports OpenVEX/SARIF, verifies offline.

    Python

  2. TrustGate TrustGate Public

    Gemini agent action firewall using Fivetran and BigQuery evidence on Google Cloud Run.

    JavaScript

  3. bol-dpd-export bol-dpd-export Public

    Python

  4. procurement-risk-api procurement-risk-api Public

    Python

  5. algorithms-backtracking-champions-league algorithms-backtracking-champions-league Public

    Backtracking algorithm for generating valid competition schedules under multiple constraints (C++)

    C++

  6. data-processing-pipelines data-processing-pipelines Public

    Shell and Python data-processing pipelines for large CSV datasets (Unix tools + Python)

    Shell