Software Engineer

Role Overview

Join Chainguard as a Staff Software Engineer on the Libraries Platform team. You will lead the architecture and implementation of the platform that powers the library factory, focusing on infrastructure, shared services, build/packaging pipelines, and a package index for external and internal users.

Key Missions

• Design and implement the Libraries Platform, including shared services, pipelines, and the package index.
• Build and maintain automation for creating, updating, and verifying artifacts, including vulnerability analysis.
• Operate shared platform services such as package indexes, registry mirrors, and metadata services.
• Develop internal developer tools and contribute to reliability, scalability, and performance of critical services and pipelines.
• Partner with ecosystem teams to drive adoption and improve the developer experience.

Responsibilities

• Lead platform architecture and implementation for infrastructure-centric services.
• Own critical outcomes for developer tooling, automation, and pipeline reliability.
• Work across SRE/platform/DevOps-style areas: reliability, observability, performance tuning.
• Contribute to ecosystem tooling and open-source packaging infrastructure.

Requirements

• 3+ years designing, building, and operating infrastructure for language ecosystems or developer platforms (e.g., build systems, package registries, CI/CD).
• Strong background in CI/CD and cloud-native infrastructure, including IaC.
• Experience with containers (Docker/OCI) and Kubernetes.
• Public cloud experience: GCP, AWS, or Azure.
• IaC and CI tooling such as Terraform and GitHub Actions/Argo/Tekton (or equivalents).
• Proficiency in Go (Golang) (or strong readiness to ramp quickly).
• Proven ability to build and own developer tooling and automation (plugins, CLIs, generators, custom pipelines).
• Excellent communication for a remote/distributed environment, with strong documentation and collaboration.

Nice-to-haves

• Experience with software supply chain security: SLSA, SBOMs, Sigstore, provenance, attestations, or secure-by-default packaging.
• Background with Linux distributions, packaging, and reproducible builds (e.g., Alpine/Wolfi/Debian, Bazel, CMake, Ninja).
• Familiarity with AI/ML packaging and infrastructure for Python libraries/frameworks (e.g., PyTorch, TensorFlow) in cloud/Kubernetes.
• Open-source contributions in ecosystem tooling, libraries, or packaging.