heise online

Secure Coding: Introduction to secure programming practices for Java

The new series of articles "Secure Coding" provides a comprehensive guide to secure programming practices – specifically tailored to Java developers. In today's digital landscape, security is more ...
ZDNet

AWS's AI code reviewer now spots Log4Shell-like bugs in Java and Python code

Amazon Web Services (AWS) has updated the 'detectors' in its CodeGuru Reviewer tool to seek out log injection flaws like the recently disclosed Log4Shell bug in the popular Java logging library Log4J.
heise online

Secure Coding: Best practices for using Java NIO against path traversal

The article Secure Coding: Preventing unauthorized access through path traversal (CWE-22) has already described the dangers posed by the critical vulnerability CWE-22 (path traversal) in software ...
InfoWorld

Add Logging at Class Load Time with Java Instrumentation

When you’re trying to analyze why a program failed, a very valuable piece of information is what the program was actually doing when it failed. In many cases, this can be determined with a stack trace ...
InfoWorld

Dynamic Java Log Levels with JMX/LoggingMXBean, JConsole, VisualVM, and Groovy

package dustin.examples; import java.util.logging.Logger; import static java.lang.System.out; public class FickleLogging { private static Logger LOGGER = Logger ...