David Jorm, from the Red Hat Security Response Team, will present on the Victims project. A project which you can use to scan your project libraries to see if they have any known security flaws, or CVE.
A CVE is an item in a list of known vulnerabilities in all software. It provides a common way for people from different organizations to identify a particular known vulnerability.
Often when building your own Java application, you will rely upon JAR files built and distributed by others. While the victims project can't tell you if your Java code contains security flaws (wouldn't that be cool?), it can tell you if you are relying upon a JAR that Red Hat has determined is vulnerable to a CVE.
James Livingston, Support Engineering Group, Red Hat, will talk about functional programming in Java. We will cover a quick introduction to how FP can be useful in preventing classes of bugs, and some examples of how it can simply asynchronous programming involving Futures
Apache Cayenne provides an ORM framework. Apache Tapestry provides both a web framework and dependency injection. This presentation will demonstrate building a java web application using these technologies, including how to build and use injected services.
Hugo has had some recent experience working on an enterprise Clojure project as a junior developer with no prior exposure to FP.
His talk will share his team's experience and discuss some of the pain points that they encountered. This includes:- learning clojure, leiningen and emacs as quickly as possible- unit tests vs repl- managing configurations- unit testing code with side effects