BrianVermeer.nl
Menu
Home
Blogs
Publications
Videos
Talks
Brian Vermeer
Java Champion | Developer | Speaker
Blogs & Reports
September 2024
ποΈ September 29
π·οΈ Foojay
π
Foojay Podcast #58: How Java Developers Can Secure Their Code
ποΈ September 16
π·οΈ Foojay
π
The Persistent Threat: Why Major Vulnerabilities Like Log4Shell and ...
August 2024
ποΈ August 29
π·οΈ Foojay
π
Four Easy Ways to Analyze your Java and Kotlin Code for Security ...
ποΈ August 28
π·οΈ Snyk
π
The persistent threat: Why major vulnerabilities like Log4Shell and ...
ποΈ August 12
π·οΈ Snyk
π
Four easy ways to analyze your Java and Kotlin code for security ...
July 2024
ποΈ July 29
π·οΈ Snyk
π
Preventing SQL injection in C# with Entity Framework
April 2024
ποΈ April 10
π·οΈ Snyk
π
Nine Docker pro tips for Node.js developers
February 2024
ποΈ February 07
π·οΈ Snyk
π
Creating SBOMs with the Snyk CLI
ποΈ February 04
π·οΈ Snyk
π
10 GitHub Security Best Practices
December 2023
ποΈ December 13
π·οΈ Dev
π
Mastering Symmetric Encryption in Java: A Practical Guide for Developers
November 2023
ποΈ November 28
π·οΈ Snyk
π
Handling security vulnerabilities in Spring Boot
October 2023
ποΈ October 17
π·οΈ Snyk
π
Securing symmetric encryption algorithms in Java
September 2023
ποΈ September 22
π·οΈ Dev
π
Using JLink to create smaller Docker images for your Spring Boot Java application
August 2023
ποΈ August 23
π·οΈ Snyk
π
Using JLink to create smaller Docker images for your Spring Boot ...
July 2023
ποΈ July 19
π·οΈ Snyk
π
8 tips for securing your CI/CD pipeline with Snyk
June 2023
ποΈ June 20
π·οΈ Snyk
π
SnakeYaml 2.0: Solving the unsafe deserialization vulnerability
May 2023
ποΈ May 21
π·οΈ Snyk
π
How to generate an SBOM for JavaScript and Node.js applications ...
April 2023
ποΈ April 26
π·οΈ Dev
π
Preventing Cross-Site Scripting (XSS) in Java applications with Snyk Code
ποΈ April 24
π·οΈ Snyk
π
Preventing Cross-Site Scripting (XSS) in Java applications with Snyk ...
ποΈ April 03
π·οΈ Dev
π
Data leak in the Netherlands: What developers should learn from this
March 2023
ποΈ March 30
π·οΈ Snyk
π
Data leak in the Netherlands: What developers should learn from ...
ποΈ March 09
π·οΈ Dev
π
Mitigating path traversal vulns in Java with Snyk Code
ποΈ March 05
π·οΈ Snyk
π
Mitigating path traversal vulns in Java with Snyk Code
December 2022
ποΈ December 20
π·οΈ Dev
π
Exploring the Spring Security authorization bypass (CVE-2022-31692)
ποΈ December 15
π·οΈ Snyk
π
Exploring the Spring Security authorization bypass (CVE-2022 ...
ποΈ December 14
π·οΈ Dev
π
Unsafe deserialization vulnerability in SnakeYaml (CVE-2022-1471)
ποΈ December 13
π·οΈ Snyk
π
Unsafe deserialization vulnerability in SnakeYaml (CVE-2022-1471)
November 2022
ποΈ November 01
π·οΈ Dev
π
How to create SBOMs in Java with Maven and Gradle
October 2022
ποΈ October 30
π·οΈ Snyk
π
How to create SBOMs in Java with Maven and Gradle
ποΈ October 19
π·οΈ Dev
π
Reviewing CVE-2022-42889: The arbitrary code execution vulnerability in Apache Commons Text (Text4Shell)
ποΈ October 17
π·οΈ Snyk
π
Reviewing CVE-2022-42889: The arbitrary code execution ...
ποΈ October 11
π·οΈ Dev
π
How to use Java DTOs to stay secure
ποΈ October 10
π·οΈ Snyk
π
How to use Java DTOs to stay secure
September 2022
ποΈ September 02
π·οΈ Dev
π
Best practices for managing Java dependencies
August 2022
ποΈ August 25
π·οΈ Snyk
π
Best practices for managing Java dependencies
ποΈ August 23
π·οΈ Dev
π
What is a reverse shell attack?!
ποΈ August 09
π·οΈ Snyk
π
Controlling your server with a reverse shell attack
July 2022
ποΈ July 14
π·οΈ Dev
π
User Office Hours: Using the Snyk CLI for Static Code Analysis
ποΈ July 07
π·οΈ Snyk
π
Exploring CVE-2022-33980: the Apache Commons configuration ...
ποΈ July 05
π·οΈ Dev
π
Deserialization exploits in Java: why should I care?
June 2022
ποΈ June 29
π·οΈ Dev
π
Building a secure CI/CD pipeline with GitHub Actions
ποΈ June 26
π·οΈ Snyk
π
Building a secure CI/CD pipeline with GitHub Actions for your Java ...
ποΈ June 24
π·οΈ Dev
π
User Office Hours: Building secure application in VS Code with Snyk
May 2022
ποΈ May 03
π·οΈ Snyk
π
3 Jedi-inspired lessons to level up your JavaScript security
April 2022
ποΈ April 07
π·οΈ Snyk
π
Spring4Shell extends to Glassfish and Payara: same vulnerability ...
March 2022
ποΈ March 31
π·οΈ Snyk
π
Spring4Shell: The zero-day RCE in the Spring Framework explained ...
ποΈ March 24
π·οΈ Dev
π
User Office Hours: Building a Secure CI/CD Pipeline with GitHub Actions and Snyk
ποΈ March 23
π·οΈ Snyk
π
How to do password hashing in Java applications the right way!
February 2022
ποΈ February 21
π·οΈ Dev
π
User Office Hours: Introduction to Snyk Code
ποΈ February 20
π·οΈ Snyk
π
Join The Big Fix: a 24-hour livestream dedicated to fixing security ...
ποΈ February 18
π·οΈ Dev
π
Win free swag by fixing security vulnerabilities
ποΈ February 08
π·οΈ Snyk
π
Join "The Big Fix" to secure your projects with Snyk and earn cool ...
January 2022
ποΈ January 11
π·οΈ Snyk
π
New years resolution: Don't show my security tokens when hacking ...
ποΈ January 04
π·οΈ Dev
π
Java JSON deserialization problems with the Jackson ObjectMapper
December 2021
ποΈ December 09
π·οΈ Snyk
π
Log4j vulnerability explained: Prevent Log4Shell RCE by updating ...
November 2021
ποΈ November 30
π·οΈ Snyk
π
Java JSON deserialization problems with the Jackson ObjectMapper ...
ποΈ November 23
π·οΈ Dev
π
New Java 17 features for improved security and serialization
ποΈ November 15
π·οΈ Snyk
π
Proactively fixing vulnerabilities to maintain Java security and ...
ποΈ November 10
π·οΈ Snyk
π
Best practices for containerizing Python applications with Docker ...
October 2021
ποΈ October 23
π·οΈ Snyk
π
Security Horror Story: Accidentally exposing PII data
ποΈ October 20
π·οΈ Snyk
π
New Java 17 features for improved security and serialization
August 2021
ποΈ August 25
π·οΈ Snyk
π
The 8 best IntelliJ plugins for improving your coding experience
ποΈ August 24
π·οΈ Computable
π
Security in geding bij infrastructure-as-code
ποΈ August 17
π·οΈ Snyk
π
How Snyk Social Trends help you fix essential security vulnerabilities
ποΈ August 02
π·οΈ Snyk
π
Brian Vermeer named one of Business Insider's "21 Top Developers ...
July 2021
ποΈ July 18
π·οΈ Snyk
π
Why you should upgrade to Maven version 3.8.1
ποΈ July 14
π·οΈ Snyk
π
Devoxx4Kids: Empowering young Java developers and creating ...
June 2021
ποΈ June 22
π·οΈ Snyk
π
Getting started with Snyk for secure Java development
ποΈ June 21
π·οΈ Dev
π
JVM Ecosystem Report 2021
ποΈ June 17
π·οΈ Snyk
π
JVM Ecosystem report 2021
May 2021
ποΈ May 11
π·οΈ Computable
π
Zo leg je fundament van productieve devsecops-cultuur
April 2021
ποΈ April 19
π·οΈ Snyk
π
Snyk Maven plugin: Integrated security vulnerability scanning for ...
ποΈ April 08
π·οΈ Dev
π
Preventing YAML parsing issues in Java
ποΈ April 07
π·οΈ Snyk
π
How to fix Java security issues while coding in IntelliJ IDEA | Snyk
ποΈ April 07
π·οΈ Snyk
π
How to fix Java security issues while coding in IntelliJ IDEA
ποΈ April 06
π·οΈ Dev
π
SQL injection cheat sheet
March 2021
ποΈ March 29
π·οΈ Snyk
π
Preventing YAML parsing vulnerabilities with snakeyaml in Java
ποΈ March 29
π·οΈ Snyk
π
Preventing YAML parsing vulnerabilities with snakeyaml in Java | Snyk
ποΈ March 25
π·οΈ Snyk
π
SQL injection cheat sheet: 8 best practices to prevent SQL injection ...
ποΈ March 14
π·οΈ Snyk
π
Solving Java security issues in a Spring MVC app
ποΈ March 14
π·οΈ Snyk
π
Solving Java security issues in a Spring MVC app | Snyk
February 2021
ποΈ February 25
π·οΈ Snyk
π
Java configuration: prevent Java Misconfiguration Blog
ποΈ February 19
π·οΈ Dev
π
Java ecosystem survey 2021: We need your input
ποΈ February 17
π·οΈ Snyk
π
10 best practices to build Java containers with Docker | Snyk Blog
ποΈ February 17
π·οΈ Snyk
π
10 best practices to build Java containers with Docker Blog ...
ποΈ February 14
π·οΈ Snyk
π
Java ecosystem survey 2021 Blog
ποΈ February 14
π·οΈ Snyk
π
Java ecosystem survey 2021 | Snyk Blog
January 2021
ποΈ January 27
π·οΈ Snyk
π
Identify, prioritize, and fix vulnerabilities with Reachable ...
ποΈ January 12
π·οΈ Dev
π
Java XML External Entity Injection - Explained and Solved
December 2020
ποΈ December 23
π·οΈ Dev
π
Git checkout remote branch: how it works and when to use it
ποΈ December 17
π·οΈ Snyk
π
Serialization and deserialization in Java Blog
ποΈ December 17
π·οΈ Snyk
π
Serialization and deserialization in Java | Snyk Blog
ποΈ December 14
π·οΈ Snyk
π
Git checkout remote branch: how it works and when to use | Snyk Blog
ποΈ December 14
π·οΈ Snyk
π
Git checkout remote branch: how it works and when to use Blog
ποΈ December 04
π·οΈ Dev
π
[Podcast] Barcoding podcast - Episode 13: Security
November 2020
ποΈ November 25
π·οΈ Snyk
π
Snyk CLI cheatsheet | Snyk
ποΈ November 25
π·οΈ Snyk
π
Snyk CLI cheat sheet
ποΈ November 19
π·οΈ Snyk
π
Docker for Java developers: 5 things you need to know not to fail ...
ποΈ November 10
π·οΈ Snyk
π
Java logging: what should you log and what not?
ποΈ November 10
π·οΈ Snyk
π
Java logging: what should you log and what not? | Snyk
ποΈ November 05
π·οΈ Dev
π
[Video] Security scanning within Gradle
October 2020
ποΈ October 29
π·οΈ Dev
π
JHipster security scanning
ποΈ October 22
π·οΈ Snyk
π
Gradle dependencies: scanning with new Snyk Gradle plugin | Snyk
ποΈ October 22
π·οΈ Snyk
π
Gradle dependencies: scanning with new Snyk Gradle plugin
ποΈ October 07
π·οΈ Snyk
π
JHipster security scanning with Snyk | Snyk
ποΈ October 07
π·οΈ Snyk
π
JHipster security scanning with Snyk
September 2020
ποΈ September 29
π·οΈ Dev
π
Fixing vulnerabilities in Maven projects
ποΈ September 18
π·οΈ Dev
π
Java 25 years β aging like fine wine or more like milk?
ποΈ September 13
π·οΈ Snyk
π
Fixing vulnerabilities in Maven projects | Snyk
ποΈ September 13
π·οΈ Snyk
π
Fixing vulnerabilities in Maven projects
ποΈ September 11
π·οΈ Dev
π
Exception Handling in Java Streams
ποΈ September 02
π·οΈ Dev
π
5 tips to improve your Docker security
August 2020
ποΈ August 24
π·οΈ Dev
π
How 4 lines of Java code end up in 518772 lines in production.
ποΈ August 18
π·οΈ Dev
π
Secure code review: Bonus - Who reviews the code?
ποΈ August 17
π·οΈ Dev
π
Secure code review: Part 8 - Statically testing
ποΈ August 16
π·οΈ Dev
π
Secure code review: Part 7 - Well-known attacks
ποΈ August 15
π·οΈ Dev
π
Secure code review: Part 6 - Handling sensitive data
ποΈ August 14
π·οΈ Dev
π
Secure code review: Part 5 - Least privilege principle
ποΈ August 13
π·οΈ Dev
π
Secure code review: Part 4 - Enforce secure authentication
ποΈ August 12
π·οΈ Dev
π
Secure code review: Part 3 - Test for vulnerabilities introduced by dependencies
ποΈ August 11
π·οΈ Dev
π
Secure code review: Part 2 - Never store secrets as code
ποΈ August 11
π·οΈ Snyk
π
Java dependency management: how many lines of code does my ...
ποΈ August 11
π·οΈ Dev
π
How is your sticker game in 2020 π»
ποΈ August 10
π·οΈ Dev
π
Secure code review: Part 1 - Sanitize and validate all input
ποΈ August 10
π·οΈ Dev
π
π£ [Feedback asked] Calling all JS developers using VS Code
ποΈ August 05
π·οΈ Dev
π
Eclipse Collections now supports Triples
ποΈ August 03
π·οΈ Snyk
π
Security Badge - Instant Security Information
July 2020
ποΈ July 24
π·οΈ Dev
π
Live Vulnerability spotting in VSCode
ποΈ July 23
π·οΈ Dev
π
Live Exploiting Your Open Source Dependencies with Brian Vermeer
June 2020
ποΈ June 07
π·οΈ Snyk
π
Discover package vulnerabilities with the Snyk integration for JSDelivr
May 2020
ποΈ May 21
π·οΈ Snyk
π
Sum List of numbers in Java | Snyk
ποΈ May 21
π·οΈ Snyk
π
Java turns 25βaging like fine wine or more like milk?
ποΈ May 21
π·οΈ Snyk
π
Sum List of numbers in Java
ποΈ May 21
π·οΈ Snyk
π
Java turns 25βaging like fine wine or more like milk? | Snyk
ποΈ May 08
π·οΈ Dev
π
Summing a List of numbers in Java
April 2020
ποΈ April 19
π·οΈ Snyk
π
Secure Code Review | Snyk
ποΈ April 19
π·οΈ Snyk
π
Secure Code Review
ποΈ April 07
π·οΈ Dev
π
Effortlessly finding vulnerabilities in npm packages with VS Code
ποΈ April 02
π·οΈ Dev
π
Challenge
ποΈ April 01
π·οΈ Snyk
π
Vuln Cost: Effortless finding vulnerabilities in npm packages with VS ...
March 2020
ποΈ March 30
π·οΈ Snyk
π
Vulnerable Gradle plugin-publish plugin reveals sensitive ...
ποΈ March 25
π·οΈ Snyk
π
Open Source Vulnerability Scanner | Snyk
ποΈ March 16
π·οΈ Dev
π
The perils of configuration security
February 2020
ποΈ February 27
π·οΈ Dev
π
Kotlin becomes the 2nd most popular language on the JVM
ποΈ February 26
π·οΈ Dev
π
Web Application Firewall - Friend of your DevOps pipeline?
ποΈ February 26
π·οΈ Dev
π
How to implement DevSecOps across the entire organisation
ποΈ February 25
π·οΈ Snyk
π
Ghostcat breach affects all Tomcat versions
ποΈ February 24
π·οΈ Snyk
π
Ghostcat breach affects all Tomcat versions | Snyk
ποΈ February 12
π·οΈ Dev
π
What are your favorite Software Development tools ?
ποΈ February 04
π·οΈ Snyk
π
Spring dominates the Java ecosystem with 60% using it for their ...
ποΈ February 04
π·οΈ Snyk
π
Kotlin overtakes Scala and Clojure, becoming the 2nd most popular ...
ποΈ February 04
π·οΈ Snyk
π
JVM Ecosystem Report 2020 | Snyk
ποΈ February 04
π·οΈ Snyk
π
IntelliJ IDEA dominates the IDE market with 62% adoption among ...
ποΈ February 04
π·οΈ Snyk
π
Kotlin overtakes Scala and Clojure, to become the 2nd most popular ...
ποΈ February 04
π·οΈ Snyk
π
JVM Ecosystem Report 2020
ποΈ February 04
π·οΈ Snyk
π
64% of developers report that Java 8 remains the most often used ...
ποΈ February 04
π·οΈ Snyk
π
36% of developers switched from Oracle JDK to an alternate ...
January 2020
ποΈ January 21
π·οΈ Snyk
π
The cost of a security breach
ποΈ January 21
π·οΈ Snyk
π
The cost of a security breach | Snyk
December 2019
ποΈ December 24
π·οΈ Dev
π
Use strong encryption and hashing algorithms in Java
ποΈ December 14
π·οΈ Dev
π
Avoid Java serialization
ποΈ December 12
π·οΈ Dev
π
Configure your Java XML-parsers to prevent XXE
September 2019
ποΈ September 21
π·οΈ Dev
π
10 Java security best practices
ποΈ September 16
π·οΈ Snyk
π
10 Java security best practices
ποΈ September 15
π·οΈ Snyk
π
10 Java security best practices | Snyk
August 2019
ποΈ August 26
π·οΈ Dev
π
Jackson Deserialization Vulnerability
ποΈ August 20
π·οΈ Snyk
π
Jackson Deserialization Vulnerability | Snyk
ποΈ August 20
π·οΈ Snyk
π
Jackson Deserialization Vulnerability
ποΈ August 19
π·οΈ Dev
π
Optional .... what else?
ποΈ August 16
π·οΈ Dev
π
10 Eclipse plugins you shouldnβt code without
ποΈ August 14
π·οΈ Snyk
π
10 Eclipse plugins you shouldn't code without
ποΈ August 14
π·οΈ Snyk
π
10 Eclipse plugins you shouldn't code without | Snyk
July 2019
ποΈ July 24
π·οΈ Snyk
π
Fix open source vulnerabilities directly from your Eclipse IDE | Snyk
ποΈ July 24
π·οΈ Snyk
π
Fix open source vulnerabilities directly from your Eclipse IDE
April 2019
ποΈ April 16
π·οΈ Snyk
π
Take actions to improve security in your Docker images | Snyk
ποΈ April 16
π·οΈ Snyk
π
Shifting Docker security left
ποΈ April 16
π·οΈ Snyk
π
80% of developers are not addressing Docker security
ποΈ April 16
π·οΈ Snyk
π
The top two most popular Docker base images each have over 500 ...
ποΈ April 16
π·οΈ Snyk
π
Take actions to improve security in your Docker images
ποΈ April 16
π·οΈ Snyk
π
Shifting Docker security left | Snyk
ποΈ April 16
π·οΈ Snyk
π
80% of developers are not addressing Docker security | Snyk
March 2019
ποΈ March 22
π·οΈ JetBrains
π
Catching Vulnerabilities Instantly in Your IntelliJ IDEA Environment
January 2018
ποΈ January 03
π·οΈ DZone
π
Optional... What Else?
ποΈ January 03
π·οΈ DZone
π
Exception Handling in Java Streams