Freddy Guime

OffHeap 69. Ok, so the internet burned down with Log4J.

January 3, 2022 Freddy Guime API, Open Source, Security 0 Comments

Hopefully you have had some time to R&R, but if you were in tech around Dec 2020, you heard that there was this massive security incident around Log4j. It affected almost everyone, from large to small companies, and if you work in Java, chances are that you might’ve to work on it too (and if you haven’t, it’s a good idea to double-check your code)

It has a severity of “10”, which is rare, and what makes it hard to ignore. If you want to understand what it was about, and how it got there, then take a listen. Learn how to patch against it, as we travel and dive into the mechanics and the missed opportunities that happened.

http://www.javaoffheap.com/datadog
We thank DataDogHQ for sponsoring this podcast episode

DO follow us on twitter @offheap
http://www.twitter.com/offheap

News
MicroProfile 5.0:
https://microprofile.io/

Eclipse IDE Release
https://www.eclipse.org/downloads/packages/release/2021-12/r

NetBeans 12.6 Release
https://netbeans.apache.org/download/nb126/index.html

Spring Native 0.11 Release
https://docs.spring.io/spring-native/docs/current/reference/htmlsingle/

Discussion

Log4j2
https://www.lunasec.io/docs/blog/log4j-zero-day/

It made CNN:
https://www.cnn.com/2021/12/13/politics/us-warning-software-vulnerability/index.html

OffHeap 68. Facebook is in hot-water…again (very Meta)

November 9, 2021 Freddy Guime Java EE, JCP, Open Source, Predictions, Regulation 0 Comments

So we are technologist, and we create technology, and we live on it… technology on its own is neither good or evil…but what happens when a corporation dives into that gray are of how technology is used? We discuss what it means to have such a big influence in how people get their news, interact with each other, and at what point you can’t just say “I don’t want to interfere”

A very pundit-adept topic, we discuss what could possibly be done to help the issue of misinformation while also balancing the need to be heard.

http://www.javaoffheap.com/datadog
We thank DataDogHQ for sponsoring this podcast episode

DO follow us on twitter @offheap
http://www.twitter.com/offheap

October 2021
Events:
EclipseCon – October 25-28
https://www.eclipsecon.org/2021

Reactive Summit – November 2-3
https://www.reactivesummit.org/

Jakarta One – December 7
https://jakartaone.org/

Jconf.dev – December 8 – 10
https://2021.jconf.dev/

jChampions – January 2022
https://jchampionsconf.com/

DevNexus – April 2022
https://devnexus.com/

News:
JReleaser 0.7.0
https://foojay.io/today/jreleaser-0-7-0-released/

JDK 18 Shaping Up (JEP 408)
https://openjdk.java.net/jeps/408

Jakarta EE 10 Release Update
https://eclipse-ee4j.github.io/jakartaee-platform/jakartaee10/JakartaEE10ReleasePlan

Eclipse Ide 2021-09 Supports JDK 17
https://www.infoq.com/news/2021/10/eclipse-ide-java-17/?topicPageSponsorship=ef2f32ea-8615-496e-9ac7-58dffbfe1766

Raspberry Pi price increase
https://uk.pcmag.com/old-desktop-pcs/136394/raspberry-pi-suffers-first-ever-price-increase

Future of Play Framework
https://www.lightbend.com/blog/on-the-future-of-play-framework

Facebook Change to Metaverse
https://www.theverge.com/2021/10/19/22735612/facebook-change-company-name-metaverse

OffHeap 66. Faster LTS releases? And A new Java license you say? How…peculiar

October 6, 2021 Freddy Guime Open Source, OpenJDK, Oracle 0 Comments

So aside from being all giddy about Java 17 LTS release, we take now a deep dive on the changes that Oracle announced on their release schedule and Licensing. WANL (We are not Lawyers) but that didn’t stop us from discussing what could it mean, and where would it go!

Faster LTS, we are onboard. It’s fun to be able to jump from LTS to LTS, but what does that mean for older releases and maintainability (as Oracle longstanding policy is to sunset the “oldest” of LTS when a new one comes out). We see the interesting dynamics on this with the new “Oracle No Fee Terms and Conditions”, and what does that mean for Big Red’s plan for our favorite programming language.

In all, an interesting episode to pay attention to (and to know what’s important). Like all Licenses, do talk to a real lawyer before adopting a new license (we really are just code monkeys that managed to wrestle a microphone). Or go with another Java open source binary provider on the standard licenses (Like Adoptium!)

http://www.javaoffheap.com/datadog
We thank DataDogHQ for sponsoring this podcast episode

DO follow us on twitter @offheap
http://www.twitter.com/offheap

Events:
SpringOne Videos Available
https://springone.io/

EclipseCon – October 25-28
https://www.eclipsecon.org/2021

Jakarta One – December 7
https://jakartaone.org/

Jconf.dev – December 8 – 10
https://2021.jconf.dev/

The new Dev.java
https://dev.java/

FooJay.io
https://foojay.io/

Intellij Updates
https://www.jetbrains.com/idea/whatsnew/

Netbeans 12.5 Released
https://netbeans.apache.org/download/nb125/index.html

Reactive Summit – November 2-3
https://www.reactivesummit.org/

Oracle Developer Live – October 26-27
https://developer.oracle.com/developer-live/java-innovations-sep-2021/

jChampions – January 2022
https://jchampionsconf.com/

DevNexus – April 2022
https://devnexus.org/

Java Is Still Free!
https://medium.com/@javachampions/java-is-still-free-3-0-0-ocrt-2021-bca75c88d23b

Oracle Java 17 Licenses
https://www.oracle.com/java/technologies/javase/jdk-faqs.html

OffHeap 65. Helping your Boss Help You

September 21, 2021 Freddy Guime Career, Conference, Interviews 0 Comments

Allright, on this OffHeap Episode, we invited no other than @kenkousen to talk us about his new book. Helping your Boss Help You! As most of us are really underlings and have managers that we report to, Ken walk us through the things that he discovered work well (and shared stories of what didn’t work so well) in a full-on, completely stuffed episode of OffHeap.

We also dive into some of our tech news around Project Loom and Apple Surveillance. All in all, a very interesting, possibly life-changing episode of OffHeap

https://www.javaoffheap.com/datadog
We thank DataDogHQ for sponsoring this podcast episode

DO follow us on twitter @offheap
http://www.twitter.com/offheap

Upgrade your Maven Version
https://foojay.io/today/why-you-should-upgrade-to-maven-version-3-8-1-today-or-very-soon/

Apple Surveillance
https://www.technologyreview.com/2021/08/06/1030852/apple-child-abuse-scanning-surveillance/

Project Loom
https://twitter.com/ptrthomas/status/1422780344701317122?s=21

Ken’s Book: HELP YOUR BOSS HELP YOU
https://www.amazon.com/gp/new-releases/books/491578/ref=zg_bsnr_nav_b_4_491580

Pragmating Programmer’s version
https://pragprog.com/titles/kkmanage/help-your-boss-help-you/ (Prags site for ebooks)

Ken’s preview of the book
https://medium.com/pragmatic-programmers/micromanagers-ken-kousen-93c1a97f29d7

OffHeap 64. Autobots…Rollout to the Bar!

September 8, 2021 Freddy Guime API, Open Source 0 Comments

Color me jealous! Most of the OffHeap crew (excepting me, Freddy) went back to our roots, and recorded Java Off Heap at the RoundHouse! (The local bar, where Episode 1 was recorded!). It was a great opportunity to be mostly zoom-less and let the conversation flow whenever it wants to flow!

In addition we got Cedric Hurst (@divideby0) to join us there! In all an interesting evening, with libations, Boston Dynamics Acquisition, a deep discussion on the “Right to Repair”, and the implications of GitHub Copilot (the auto-filler AI-powered, FOSS trained helper) on this field!

http://www.javaoffheap.com/datadog
We thank DataDogHQ for sponsoring this podcast episode

DO follow us on twitter @offheap
http://www.twitter.com/offheap

JAX London 10/4 – 10/7 (hybrid)
https://jaxlondon.com/blog/java-conference/

EclipseCon 10/25 – 10/28 (online)
https://www.eclipsecon.org/2021

Jakarta One LiveStream 12/7 (online)
https://jakartaone.org/

Jconf.dev (In person) 12/8 – 12/10
https://2021.jconf.dev/

Boston Dynamics Acquisition
https://www.bostondynamics.com/hyundai-motor-group-completes-acquisition

Microsoft Pentagon contract cancelled
https://www.cnn.com/2021/07/06/tech/defense-department-cancels-jedi-contract-amazon-microsoft/index.html

Big MS Security Update
https://www.cnn.com/2021/07/07/tech/microsoft-security-update/index.html

Github Co-Pilot
https://twitter.com/kellabyte/status/1411449622288076801?s=21

Ruling on Google Gender Bias lawsuit
https://www.latimes.com/business/story/2021-05-27/google-gender-bias-class-action-lawsuit-women?_amp=true

Right to Repair –
https://petapixel.com/2021/07/07/president-biden-will-order-ftc-to-create-right-to-repair-rules-report/

OffHeap 63. Don’t forget to do your backup kids

August 31, 2021 Freddy Guime Containers, Java EE, Open Source 0 Comments

So new things are happening! Jakarta EE 9.1 was released, GraalVM got to 21.1, and Spring Native is now at 0.10.

We also get a new LightBend CEO (what does this mean?), and the favorite developer Copy-Paste Website (StackOverflow) got bought for (insert Dr. Evil voice here) ONE (.8) BILLION DOLLARS. You didn’t hear it first here, BUT we sure talk about what does this mean! (Remember ExpertsExchange?)

Lastly we dive into a deep discussion on Ransomware and security and how all these things we work everyday can, and are affected by it. Why some companies are keeping up, others are letting security slide, and more importantly, for us as Developers, what kind of role we play on these things.

A passionate discussion on which we touch many points and explore our involvement on this field!

http://www.javaoffheap.com/datadog
We thank DataDogHQ for sponsoring this podcast episode

DO follow us on twitter @offheap
http://www.twitter.com/offheap

GlassFish 6.2 Released
https://projects.eclipse.org/projects/ee4j.glassfish/downloads

GraalVM 21.1.0
https://www.graalvm.org/release-notes/21_1/

Stackoverflow is acquired
https://stackoverflow.blog/2021/06/02/prosus-acquires-stack-overflow/

Meat Packer Cyberattack
https://www.bbc.com/news/world-us-canada-57318965

Colonial Cyber Attack
https://en.wikipedia.org/wiki/Colonial_Pipeline_cyber_attack

BadB Promotional Cartoon (NOTE! NOT SAFE FOR WORK)
https://www.youtube.com/watch?v=EtcKavgS_2k

OffHeap 62. On Stallman, Apple and Basecamp

June 2, 2021 Freddy Guime Art, Career, Java EE, Microsoft, OpenJDK, Soft Skills 0 Comments

Right, there were a good tricle of tech news like the release of Scala 3, and that now Microsoft is part of the OpenJDK (hm… we wonder if the JClarity acquision had anything to do w/that ;). But the Internet was rocked by a big tidal wave of D&I avoidance, Social pressure (but some would say Cancel Culture?) and selective historical facts.

In that we dive to explore what has dominated the tech twitter feeds, facebook post, and essentially comment on the unbelievebable nuclear explosion (implosion in the case of Basecamp) that just happened. With the advent of Basecamp’s new policy (and the pyramid of hate), and the follow-up en-masse resignations, then Apple’s offer, twice rescinded to Antonio Garcia Martinez, to finally the Electronic Frontier Foundation inclusion of Dr. Stallman back on the board (on which, his past is either forgiven, or forgotten) this episode dives into how it got to here, and we piece together how these bungled-up situation blew up in the twittersphere

Come take a listen and tour with us the reality of being in tech today! Start listening now for a riveting episode ride!

http://www.javaoffheap.com/datadog
We thank DataDogHQ for sponsoring this podcast episode

DO follow us on twitter @offheap
http://www.twitter.com/offheap

Scala 3
https://docs.scala-lang.org/scala3/new-in-scala3.html
https://scastie.scala-lang.org/?target=dotty
https://index.scala-lang.org/

Microsoft OpenJDK:
https://devblogs.microsoft.com/java/announcing-preview-of-microsoft-build-of-openjdk/

Oracle JDK 8 Support:
https://www.oracle.com/java/technologies/java-se-support-roadmap.html

Stallman back on FSF board
https://www.fsf.org/news/statement-of-fsf-board-on-election-of-richard-stallman

Apple Antonio Garcia Martinez
https://www.businessinsider.com/apple-antonio-garcia-martinez-says-he-was-fired-over-backlash-2021-5

Basecamp – Employee rules update
https://world.hey.com/jason/changes-at-basecamp-7f32afc5
https://world.hey.com/dhh/basecamp-s-new-etiquette-regarding-societal-politics-at-work-b44bef69

OffHeap 61. Return of the APIs (Supreme Court Ruling on Oracle v Google)

May 1, 2021 Freddy Guime API, Google, Open Source, Regulation 0 Comments

Ok, 60 episodes ago, back when were were young and innocent, we started this podcast with coverage on the copyrightability of APIs. There were twist…there were turns! And a ton of nail-biting moments, but, finally it seems that the Supreme Court made a ruling (that APIs are not copyrightable)

In this episode we cover the timeline, the ruling, and the possible effects it means for all of us developers, starting on the original days of Sun, and then going all the way to April 5th. We are not lawyers but pundits, and as such, we engage in punditry as we dissect what the Supreme Court ruling said (is it narrow? overarching? did they get the analogy right?)

Would this turn out to be a George-Lucas moment where there will be more litigation? Episode VII, VIII or IX? or a Jar-Jar Binks moment? We don’t know, but we sure be covering them if they happen in our watch!

We thank DataDogHQ for sponsoring this podcast episode

DO follow us on twitter @offheap
http://www.twitter.com/offheap

Jakarta EE 9.1 – May
https://blogs.eclipse.org/post/mike-milinkovich/eclipse-jetty-11-supports-big-bang

GlassFish 6.1.0 – Aim for JDK 16: (?)
https://arjan-tijms.omnifaces.org/2021/04/glassfish-now-runs-on-jdk-16.html

JetBrains IntelliJ IDE 2021.1: (?)
https://www.jetbrains.com/idea/whatsnew/

JDK 17 Early Releases and Timeline:
https://openjdk.java.net/projects/jdk/17/

Oracle releases R2DBC driver
https://r2dbc.io/drivers/

Dell will spin off VMware
https://www.businessinsider.com/dell-to-spin-off-vmware-stake-2021-4

Oracle v Google FINALLY!
https://www.supremecourt.gov/opinions/20pdf/18-956_d18f.pdf

OffHeap 60. JDK 16, Spring Native, Micronaut, Microprofile and GraalVM have new releases! Author tags, And Companies blaming Interns (boo!)

April 4, 2021 Freddy Guime API, Java EE, OpenJDK 0 Comments

Hey y’all, well, this episode we dive into tons of fun stuff. There are new toys w/JDK 16, Spring Native and Graal. Essentially, it’s a fun time to play with Native and new JDK 16 features (Records are mainstream!).

And in a one-two punch, Spring Native release of 0.9, and Graal news of adopting truffle makes the ideal of adopting native images for your Java builds not far-fetched. It might have still some rough edges, but oh my, for some projects, it went from being painful, to a non-issue. So yeah. Millisecond startup times coming up!

Micronaut is also out with 2.4.0, which we think is actually healthy! (we worried for a second or two). And Microprofile also has a release, with its LRA (and SAGA! pattern). We really wished SAGA was an acronym

In addition some interesting consolidation happening with Crowdstrike buying Humio, and Okta acquiring Auth0. Interesting moves in security and authentication to say the least.

We see how deep SolarWinds go with blaming an intern for their security woes. If that’s your strategy, you already lost at the security game (shame!)

And lastly, oh my, there is an Outlook vulnerability making its rounds. Important enough to hear (and patch!). You don’t want weird inetpub/wwwroot files hanging in your outlook server.

http://www.javaoffheap.com/datadog
We thank DataDogHQ for sponsoring this podcast episode

DO follow us on twitter @offheap
http://www.twitter.com/offheap

Take the JVM Survey!
https://snyk.io/blog/java-ecosystem-survey-2021/

JDK 16
https://blogs.oracle.com/java-platform-group/the-arrival-of-java-16

MicroProfile LRA
https://openliberty.io/blog/2021/01/27/microprofile-long-running-actions-beta.html

CrowdStrike nabs Humio for $400M – https://techcrunch.com/2021/02/18/logging-startups-are-suddenly-hot-as-crowdstrike-nabs-humio-for-400m/

Micronaut 2.4.0
https://github.com/micronaut-projects/micronaut-core/releases/tag/v2.4.0

Okta acquires Auth0: https://techcrunch.com/2021/03/03/okta-acquires-cloud-identity-startup-auth0-for-6-5b/amp/?__twitter_impression=true&guccounter=1

SolarWinds blaming an intern
https://twitter.com/cnn/status/1365445311066480641?s=21

@Author tags:
https://twitter.com/headius/status/1366517443112402944?s=20

Graal and Truffle
https://www.graalvm.org/reference-manual/java-on-truffle/

Microsoft Exchange Mass Hack:
https://krebsonsecurity.com/2021/03/a-basic-timeline-of-the-exchange-mass-hack/

OffHeap 59. Causing Trouble at DevNexus

March 6, 2021 Freddy Guime Career, Conference 0 Comments

So we did it again! We managed to get into a conference schedule (Virtually this time). Within the Virtual Devnexus conference we invited https://twitter.com/billykorando and https://twitter.com/CGuntur to join us as we discuss the latest Java news, and Career advise!

Wanna hear from the “big kahuna”s on how to move to that next level? Then, come, and listen to this fun-packed episode of OffHeap from DevNexus!

http://www.javaoffheap.com/datadog
We thank DataDogHQ for sponsoring this podcast episode

DO follow us on twitter @offheap
http://www.twitter.com/offheap

JFrog Sunsetting BinTray
https://jfrog.com/blog/into-the-sunset-bintray-jcenter-gocenter-and-chartcenter/

OpenJ9 Source / No Binaries
https://www.reddit.com/r/java/comments/l5m3p6/eclipse_to_host_only_tck_compliant_java_se/