Skip to content
View thpani's full-sized avatar
🦚
🦚
37 followers · 69 following

Achievements

Achievement: Pair Extraordinairex4Achievement: YOLOAchievement: Pull Sharkx3Achievement: QuickdrawAchievement: Arctic Code Vault Contributor

Achievements

Achievement: Pair Extraordinairex4Achievement: YOLOAchievement: Pull Sharkx3Achievement: QuickdrawAchievement: Arctic Code Vault Contributor

Organizations

@code-423n4 @sherlock-audit @apalache-mc @blltprf

Block or report thpani

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
thpani/README.md

Hey, I'm Thomas 👋

I help platform, infrastructure, and protocol teams find failures their tests weren't designed to catch, before customers or on-call rotations do.

I build practical reliability workflows around executable specifications: property-based tests, fuzzers, simulation, adversarial scenario generation, and conformance testing. These are the same general techniques used internally at AWS, Oracle, and Microsoft, made practical for teams building cloud-native systems, from Kubernetes controllers and microservices to payment infrastructure and other stateful platforms.

As AI-generated code accelerates implementation, the bottleneck shifts from writing code to knowing whether it is correct. Executable specifications help close that gap: they describe intent precisely enough to test against, and can be invoked by agents during generation and review.

📫 Contact: blltprf.xyz · webintake@blltprf.xyz
📍 Based in: Vienna, AT · available across Europe and internationally

Services

⚡ Spec-Driven Testing & Test Oracles
Executable specs used with property-based tests, fuzzers, simulation, adversarial exploration, and conformance checks.

🤖 AI-Generated Code Testing
Precise, agent-invokable specs for testing LLM-generated protocol and infrastructure code.

📐 Protocol Specification & Review
Executable design models and invariant review for distributed protocols, cloud-native systems, and payment infrastructure.

🧪 Workshops & Labs
For teams building cloud-native systems, from Kubernetes controllers and microservices to payment infrastructure and other stateful platforms.

Customers / recent work

Aztec Labs: Governance Protocol
Formal specification + symbolic verification of 125 invariants across a multi-contract governance system · write-up

Ethereum Foundation: 3-slot finality
Formal modeling and verification of accountability in Ethereum 3SF consensus · repo

Protocol fuzzing workshop @ Protocol Berg v2
Hands-on workshop on building a Solidity protocol fuzzer in 25 minutes · recording + repo

Solarkraft
Model-based runtime monitoring for Soroban/Stellar smart contracts · repo

Open source

Apalache: Symbolic Model Checker for TLA+ and Quint
Core team member; used on Aztec governance, Ethereum 3SF, Tendermint/CometBFT, and Matter Labs/ZKsync protocols · repo

Quint: Modern Language Tooling for TLA+
Co-developed Quint from its early stages at Informal Systems, bringing TypeScript-like syntax to TLA+-style specs · repo

Pinned Loading

  1. fuzz-pb25 fuzz-pb25 Public

    Fuzzing Workshop at Protocol Berg Berlin, June 2025

    Python 3

  2. freespek/ssf-mc freespek/ssf-mc Public

    EF project Exploring Automatic Model-Checking of the Ethereum specification

    TeX 8

  3. freespek/solarkraft freespek/solarkraft Public

    Solarkraft: a runtime monitoring tool for Soroban, powered by TLA+ and Apalache

    TypeScript 12 1

  4. apalache-mc/apalache apalache-mc/apalache Public

    APALACHE: symbolic model checker for TLA+ and Quint

    Scala 570 49

  5. quint-co/quint quint-co/quint Public

    An executable specification language with delightful tooling based on the temporal logic of actions (TLA)

    TypeScript 1.5k 131