InfoWorld

Using Generic ‘log’ Methods in Java Logging

When developing Java applications, it is easy to get used to invoking logging on the provided logger via its log level-specific methods. For example, Log4j‘s Logger provides methods such as ...
heise online

Secure Coding: Introduction to secure programming practices for Java

The new series of articles "Secure Coding" provides a comprehensive guide to secure programming practices – specifically tailored to Java developers. In today's digital landscape, security is more ...
Dark Reading

Java Coding Guidelines: Now Available Free Online

October 1, 2014—While conducting the research that produced The CERT® Oracle® Coding Standard for Java, the Secure Coding Team in the CERT Division of the Software Engineering Institute at Carnegie ...
ZDNet

AWS's AI code reviewer now spots Log4Shell-like bugs in Java and Python code

Amazon Web Services (AWS) has updated the 'detectors' in its CodeGuru Reviewer tool to seek out log injection flaws like the recently disclosed Log4Shell bug in the popular Java logging library Log4J.
InfoWorld

Add Logging at Class Load Time with Java Instrumentation

When you’re trying to analyze why a program failed, a very valuable piece of information is what the program was actually doing when it failed. In many cases, this can be determined with a stack trace ...
InfoQ

Interview and Book Review: The CERT Oracle Secure Coding Standard for Java

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Vivek Yadav, an engineering manager from ...