Sam May contributed to both the LF-Decentralized-Trust-labs/paladin and kaleido-io/terraform-provider-kaleido repositories, focusing on legal compliance, documentation, and security. For paladin, Sam enhanced governance readiness by systematically adding copyright and Apache 2.0 license headers to Go files and correcting documentation to ensure accuracy and proper attribution. In the terraform-provider-kaleido project, Sam implemented software bill of materials (SBOM) generation and integrated Trivy-based vulnerability scanning into the CI pipeline, improving supply chain transparency and compliance. These efforts leveraged Go, Shell scripting, and Terraform, demonstrating a methodical approach to compliance and DevSecOps practices within open source and infrastructure codebases.