$ pyspector scan ./tommaso_bona --ai --stats ✓ 6 findings · 0.42s

TOMMASO BONA

aka ParzivalHack: OSS & AI Security Researcher · IT & Security Consultant

I break parsers responsibly, write about it obsessively, and maintain PySpector, a Rust-core SAST engine built to find the next vulnerability before someone like me does.

triage findings below

finding TB-001 · identity disclosure critical

$ whoami

tommyfetch (zsh)
tommy@parzival
─────────────────────
roleIT & Security Consultant @ Tralerighe
researchOSS & AI security, independent
baseMilan, Italy · UTC+2
langsIT native · EN C1 · ES A2
stackPython · Rust · Bash · PowerShell
uptime4+ years in security
kernelADHD · Autism · Giftedness: pattern recognition runs native
statussudo make me a pizza

I started in a SOC at 17 (two months shy of my 18th birthday), watching alerts scroll by and wondering how the bugs behind them got shipped in the first place. Four years later I'm on the other side of that question: finding them in the open-source software everyone depends on (Ansible, psf/black, major AI libraries) and disclosing them properly.

Along the way I co-founded a startup and ran it as CTO to a $500k valuation, wrote for StationX, and built PySpector because the SAST tools I wanted didn't exist. Now I split my time between consulting, AI/LLM security research, and shipping open-source security tooling.

I'm neurodivergent: ADHD and Autism. They're disabilities, no way around that, but in this field they also translate into concrete advantages: pattern recognition, hyperfocus, and an instinct for the edge cases everyone else skims past.

2 CVEs in 2026 18k+ PyPI downloads top 250 GH devs: Italy 13 publications

Secured your favorite companies:

finding TB-002 · remote code execution critical

Vulnerability research

Real findings in software with billions of downloads, all responsibly disclosed and coordinated with maintainers. Each one rendered the way I actually think about it: source → flow → sink.

critical CVE-2026-31900 CVSS4 8.7

0-click RCE in psf/black's GitHub Action

A permissive regex in action/main.py let direct URL references bypass version validation in an Action with 2.2B downloads: arbitrary code execution on CI runners from just opening a PR. No maintainer interaction. Patched in v26.3.0.

source: new pull_request → permissive version regex → malicious pyproject.toml → sink: CI runner exec
critical US Dept. of Commerce impact full DB takeover

Error-based SQLi on a .gov subdomain

Found and reported a critical, high-impact error-based SQL injection leading to a full database takeover on a US Department of Commerce subdomain. Publicly acknowledged by the agency.

source: crafted parameter → unsanitized query construction → sink: full database access
high CVE-2026-11332 CVSS 7.8

Argument Injection → RCE in Red Hat's Ansible

Argument injection in ansible-core leading to remote code execution. Coordinated disclosure with Red Hat's security team, credited in the official advisory.

source: attacker-controlled argument → ansible-core arg handling → sink: remote code execution
high major AI library found by PySpector

RCE in a widely-used AI library

Identified and responsibly disclosed a critical RCE in a major AI library, surfaced by my own SAST framework during dogfooding. The tool found the bug; I confirmed the exploit.

source: pyspector scan --ai → taint finding → manual exploit verification → sink: confirmed RCE

also on record: a security report to psf/requests (triaged & fixed) · a path-traversal fix in CPython's test suite · active bug bounty targets: LLM sandboxes, CLI coding agents, web-integrated AI pipelines

finding TB-003 · weaponized side project high

The PySpector Project

Graph-based SAST, with a Rust core

★ 130+ · 18k+ downloads on PyPI · Apache-2.0

A flow-sensitive, inter-procedural taint engine for Python codebases. It builds a project-wide call graph, decomposes every function into a CFG, and propagates taint from sources to sinks with fixed-point iteration, respecting sanitizers along the way. Integrated in SatoriCI's production platform, with a dedicated --ai ruleset for LLM-integrated apps.

SOURCE request.args PROPAGATION build_query(user) sanitizer: not found SINK cursor.execute() [HIGH] SQL injection: taint reaches sink unsanitized
Up to 51kLoC/sec
71%faster than Bandit
16.6×faster than Semgrep
530k+LoC codebases tested
View on GitHub PyPI

finding TB-004 · privilege escalation medium

Career trace

Traceback (most recent call first):

tralerighe_service.it_security_consultant() 2025.09 → present

Web-infrastructure migrations, automated VAPTs, incident prevention & response across client fleets with the ESET suite.

securitycert.pyspector_lead_maintainer() 2025.09 → present

Lead dev of the SAST framework, plus mentor and community moderator since 2022. PySpectorEnterprise in the works.

voyxa.co_founder_and_cto() 2024.02 → 2025.09

0 → $500k valuation in 10 months, including a $100k pre-seed I closed myself. Ran 4 business units and 21 people building an AI vocal-helpdesk product. Board member and majority shareholder until a clean exit.

digitalizzato.fractional_cto() 2025.01 → 2025.06

Full MVP lifecycle on contract: hiring, delivery, and the security posture to go with it.

stationx.cybersecurity_writer() 2023.08 → 2025.03

Freelance writer on web pentesting, tooling and OS security; then proposed and co-created their white-papers platform.

mediaset.it_specialist() 2023.06 → 2023.08

AD user management, service desk and Python scripting at national-broadcaster scale.

netech.soc_analyst() 2022.07 → 2023.05

Where it started: intern → SOC analyst T1/T2 → Cybersecurity Specialist in 10 months (promoted 12 months ahead of plan). SIEM, EDR, live incident response.

finding TB-006 · proof of credentials low

The record

certifications

  • CompTIA: SecAI+ in progress
  • ISC2: Certified in Cybersecurity (CC), NIST CSF 2.0
  • Linux Foundation: Developing Secure Software (LFD121)
  • EC-Council: E|HE, N|DE, D|FE
  • Security Blue Team: Blue Team Junior Analyst
  • Fortinet: Certified Associate in Cybersecurity
  • SkillFront: ISO/IEC 27001:2022 Associate
  • ESET: Certified Managed Cloud & Client Security Specialist
  • IBM: Cybersecurity Roles, Processes & Operating System Security

recognition

  • 2 CVEs: credited by Red Hat & the Python Software Foundation
  • Top 250 developers on GitHub: Italy (committers.top)
  • US Dept. of Commerce: public acknowledgment for critical SQLi
  • PySpector integrated in SatoriCI's production platform

community

  • Python Software Foundation: contributing member, voting rights
  • Guardian Group PURSUIT®: volunteer OSINT analyst fighting child exploitation with law enforcement (Project 1591®)
  • SecurityCert: mentor & community moderator since 2022
  • International High IQ Society: member
  • Contributor to psf/requests and CPython

finding TB-007 · open port info

Get in touch

$ curl -s tommy://contact | jq { "email": "tommasobona04@gmail.com", "github": "ParzivalHack", "linkedin": "in/tommaso-bona", "topics": "vuln research · AI/LLM security · OSS Security · WebApp Security", "response": "usually < 24h" }