1. Spring and Java
>> Vulnerability Affecting Multiple Log4j Versions Permits RCE Exploit [infoq.com]
A detailed piece on how the vulnerability works, and what are the fixes for it. A must-read this week!
>> Log4J2 Vulnerability and Spring Boot [spring.io]
And, if you switched the default logging tool in Boot to use Log4j, definitely read this piece, going over the detailed Maven/Gradle fix instructions here.
>> Native-image with Quarkus [blog.frankel.ch]
Building native images with Quarkus: evaluating docker and GraalVM integration in Quarkus.
Also worth reading:
- >> Understanding Metaspace and Class Space GC Log Entries [poonamparhar.github.io]
- >> The Best Spring Data JPA Logging Configuration in Spring Boot [thorben-janssen.com]
- >> Migrating a Spring Boot application to Java 17 – the hard way [blog.codecentric.de]
- >> Results of the Kotlin Features Survey 2021 [blog.jetbrains.com]
- >> New AOT Engine Brings Spring Native to the Next Level [spring.io]
- >> Secure communications end-to-end for Spring Boot apps – in Zero Trust environment [spring.io]
- >> Spring Cloud Gateway and gRPC [spring.io]
- >> Performance Testing with JMeter [blog.scottlogic.com]
- >> Get to Know Jakarta MVC [agilejava.eu]
Webinars and presentations:
- >> A Bootiful Podcast: Transformative leader, brilliant technologist, my friend, Patrick Chanezon [spring.io]
Time to upgrade:
- >> Hazelcast Announces a New Unified Platform with Version 5.0 [infoq.com]
- >> Hibernate Reactive 1.1.1.Final released [in.relation.to]
- >> Hibernate Validator 6.2.1.Final and 7.0.2.Final released [in.relation.to]
- >> Spring Tools 4.13.0 released [spring.io]
- >> Spring Cloud Sleuth 3.1.0 is out! [spring.io]
- >> Quarkus 2.5.2.Final released – Maintenance release [quarkus.io]
- >> Elasticsearch version 7.16.1 [elastic.co]
2. Technical & Musings
>> On Code Reviews [henrikwarne.com]
A collection of good practices to incorporate in code reviews, regardless of whether you find bugs or not!
>> Expanding the cloud: Introducing the AWS Asia Pacific (Jakarta) Region [allthingsdistributed.com]
Less latency for local residents, more than 24000 new jobs, and contributing around 11B to country GDP by opening a new region for AWS in Jakarta!
Also worth reading:
- >> Snaring the Bad Folks [netflixtechblog.com]
- >> How to use DynamoDB with AppSync [advancedweb.hu]
- >> Making Text-To-Speech Outbound Calls With AWS Connect And AWS Polly [arnoldgalovics.com]
- >> Be Scrappy, Not Crappy [reflectoring.io]
- >> Creating personalised data stories with GPT-3 [blog.scottlogic.com]
3. Comics
And my favorite Dilberts of the week:
>> Burrow Into A Team [dilbert.com]
>> Wally Gets Covid Often [dilbert.com]
>> C02 Capture Machine [dilbert.com]
4. Pick of the Week
This week, I’m picking a security-focused resource here, in light of all of the recent security discussions:
>> The Liberica Administration Center out of BellSoft – as a solid way to both monitor and manage JVMs in production