Knowledge Tree
Home Research Docs About
concept

Java

Also known as: Java 21+

Facts (11)

Sources
bureado/awesome-software-supply-chain-security - GitHub github.com GitHub 5 facts
referenceGoogle Best Practices for Java Libraries provides comprehensive guidance for Java supply chain security, though it does not offer automated validation.
referenceThe SAP-samples/risk-explorer-execution-pocs repository provides runnable proof-of-concept implementations that demonstrate how third-party dependencies can achieve arbitrary code execution at both install time and runtime across multiple ecosystems, including Python, JavaScript, Ruby, PHP, Rust, Go, and Java.
referenceHuskyCI, developed by Globo.com, orchestrates security tests and centralizes results for analysis across multiple programming languages including Python, Ruby, JavaScript, Go, Java, and HCL, utilizing SAST tools, GitLeaks for secrets scanning, and SCA tools.
referenceThe IEEE Security & Privacy journal published 'An Empirical Study of the SBOM Landscape' in 2023, which analyzes six Software Bill of Materials (SBOM) tools and evaluates the accuracy of the SBOMs they produce for complex open-source Java projects.
referenceJReleaser is a release automation tool for Java/JVM projects that can sign artifacts (such as JARs, Zips, and Tars) with cosign for publishing to AWS S3, JFrog Artifactory, or as release assets on GitHub, GitLab, or Gitea.
A Mixed-Methods Study of Open-Source Software Maintainers On ... arxiv.org arXiv Feb 3, 2025 2 facts
referenceThomas Rausch, Waldemar Hummer, Philipp Leitner, and Stefan Schulte performed an empirical analysis of build failures in the continuous integration workflows of Java-based open-source software, published in the 2017 IEEE/ACM 14th International Conference on Mining Software Repositories (MSR).
referenceQuang-Cuong Bui, Ranindya Paramitha, Duc-Ly Vu, Fabio Massacci, and Riccardo Scandariato conducted an empirical study of automatic program repair techniques on real-world Java vulnerabilities, published in Empirical Software Engineering in 2024.
Free and open-source software - Wikipedia en.wikipedia.org Wikipedia 1 fact
accountIn August 2010, Oracle sued Google, alleging that Google's use of Java in the Android operating system infringed on Oracle's copyrights and patents.
Cybersecurity Trends and Predictions 2025 From Industry Insiders itprotoday.com ITPro Today 1 fact
claimJava 21+ is essential for managing quantum-safe encryption keys, and companies will need to update their systems to include this version as they integrate PQC algorithms.
What is OSS? - CircleCI circleci.com CircleCI Jun 10, 2024 1 fact
claimWell-known examples of open source software include GNU/Linux, Firefox (provided by the Mozilla Foundation), GIMP, jQuery, Java, Python, Git, PyTorch, and WordPress.
The Complete Guide to Open Source Licenses - FOSSA fossa.com FOSSA 1 fact
claimDifferent programming communities have established licensing norms, such as JavaScript projects commonly using the MIT license and Java projects often using the Apache 2.0 license.