Explore >> Select a destination

You are here

 blog.thesoftwarementor.com
Today I Learned: LibYear - The Software Mentor
| | tomrenner.com
Cull your dependencies | My place to put things
5.5 parsecs away

Travel
| | Anyone writing code professionally in December 2021 will remember the "fun" of the Log4J vulnerability. For those that weren't - this was a critical security error that allowed attackers to run any code they wanted on your servers. The root cause was a logging library, Log4J, that is used by most projects that are writting in Java. It's usually used to write code something like: log.info("Process completed successfully"); which will then appear in your logs, allowing you to track your application's behaviour. Pretty innocuous stuff.
| | initialcommit.com
Major bank publishes private NPM package - oops!
5.3 parsecs away

Travel
| | Laurie Voss, co-founder of [NPM](https://www.npmjs.com/), recently sent out this tweet highlighting that a major bank has published a private package to the npm registry... and left it there for over 3 years.
| | hypirion.com
A Resilient Git Dependency Algorithm
5.1 parsecs away

Travel
| | What do we do when we can't compare dependency versions?
| | hamatti.org
Syntax Error #12 - Browser Extension Debugging : Juha-Matti Santala
20.5 parsecs away

Travel
| The home of a developer community specialist.