Architecture, Code and Java - Technology Performance Pulse

Ready for changes with Hexagonal Architecture

The Netflix TechBlog

MARCH 10, 2020

Leveraging Hexagonal Architecture We needed to support the ability to swap data sources without impacting business logic , so we knew we needed to keep them decoupled. We decided to build our app based on principles behind Hexagonal Architecture and Uncle Bob’s Clean Architecture. Entities are the domain objects (e.g.,

Architecture

Architecture Transportation Java Strategy

Finding and Fixing Five Kinds of Architectural Technical Debt

DZone

APRIL 13, 2023

Technical debt takes on various forms from source code smells to security risks to the more serious issue of architectural technical debt. What exactly is architectural technical debt and why should I care? What exactly is architectural technical debt and why should I care?

Architecture

Architecture Airlines Best Practices Java

SKP's Java/Java EE Gotchas: Clash of the Titans, C++ vs. Java!

DZone

FEBRUARY 27, 2021

This begins not only in designing the algorithm or coming out with efficient and robust architecture but right onto the choice of programming language. Considering all aspects and needs of current enterprise development, it is C++ and Java which outscore the other in terms of speed. JAVA SOLUTION (Will Be Uploaded Later).

Java

Java C++ Benchmarking Programming

Unlock end-to-end observability insights with Dynatrace PurePath 4 seamless integration of OpenTracing for Java

Dynatrace

DECEMBER 9, 2020

Cloud-native technologies and microservice architectures have shifted technical complexity from the source code of services to the interconnections between services. Heterogeneous cloud-native microservice architectures can lead to visibility gaps in distributed traces. Deep-code execution details. Dynatrace news.

Java

Java Traffic Architecture Strategy

What is infrastructure as code? Discover the basics, benefits, and best practices

Dynatrace

JUNE 10, 2022

The IT world is rife with jargon — and “as code” is no exception. “As code” means simplifying complex and time-consuming tasks by automating some, or all, of their processes. Today, the composable nature of code enables skilled IT teams to create and customize automated solutions capable of improving efficiency.

Best Practices

Best Practices Infrastructure Code Speed

How To Implement Specific Distributed System Patterns Using Spring Boot: Introduction

DZone

SEPTEMBER 11, 2024

Regarding contemporary software architecture, distributed systems have been widely recognized for quite some time as the foundation for applications with high availability, scalability, and reliability goals. Spring Boot Overview One of the most popular Java EE frameworks for creating apps is Spring.

Systems

Systems Java Software Architecture Programming

SRP Is the MEDUSA of Clean Code Family

DZone

DECEMBER 9, 2020

While we are hearing tips on Clean code, the most common tip is maintaining SRP while writing class or methods, in a broader scope Module/Package/Service/API. Most of the time it succumbs us and we are ending up with anti-KISS code but If we use it in the right proportion, then we can create a cohesive and robust architecture.

Code

Code Architecture Design Java

Hidden indicators: Tracing the emergence of Apache Struts CVE-2024-53677

Dynatrace

FEBRUARY 28, 2025

Recently, a critical vulnerability was discovered in Apache Struts, a widely used Java-based web application framework. This vulnerability, published as CVE-2024-53677 on December 11, 2024, affects the file upload mechanism, allowing for path traversal and potential remote code execution.

Social Media

Social Media Java Open Source Media

Open Sourcing the Netflix Domain Graph Service Framework: GraphQL for Spring Boot

The Netflix TechBlog

FEBRUARY 3, 2021

By open-sourcing the project, we hope to contribute to the Java and GraphQL communities and learn from and collaborate with everyone who will be using the framework to make it even better in the future. Our colleagues wrote a Netflix Tech Blog post describing the details of this architecture.

Open Source

Open Source Java Architecture Metrics

The Anatomy of Broken Apache Struts 2: A Technical Deep Dive into CVE-2024-53677

Dynatrace

FEBRUARY 25, 2025

Broken Apache Struts 2: Technical Deep Dive into CVE-2024-53677The vulnerability allows attackers to manipulate file upload parameters, possibly leading to remote code execution. Introduction Apache Struts 2 is a widely used Java framework for web applications, valued for its flexibility and Model-View-Controller (MVC) architecture.

Servers

Servers Processing Java Tuning

The anatomy of the Spring4Shell vulnerability and how to prevent its effects—and those of similar vulnerabilities

Dynatrace

APRIL 14, 2022

Because 60% of developers use Spring for their Java applications , many applications are potentially affected. With a critical CVSS rating of 9.8 , Spring4Shell leaves affected systems vulnerable to remote code execution (RCE). Further, the report lists Tomcat as the most popular Java application server.

Java

Java Servers Code Open Source

Third-party vulnerabilities: Prioritize CVEs with vulnerable function insights

Dynatrace

AUGUST 21, 2024

This information specifies which function in the source code relates to a vulnerability. Let’s assume the Java library shown in figure 1 is affected by vulnerability CVE-2024-XYZ. To give users additional insights, Dynatrace provides vulnerable function usage information for certain vulnerable software packages.

Java

Java Monitoring Open Source Software

Dynatrace with industry consortium submits OpenFeature standard as CNCF sandbox project

Dynatrace

MAY 19, 2022

They enable product delivery and SRE teams to turn functionality on and off at runtime without deploying new code. This decoupling of code deployment from feature release is a crucial enabler for modern Continuous Delivery practices. OpenFeature architecture enables flexibility. Proprietary SDKs create adoption challenges.

Java

Java Cloud Code Technology

The top eight DevSecOps trends in 2022

Dynatrace

FEBRUARY 23, 2022

Indeed, according to one survey, DevOps practices have led to 60% of developers releasing code twice as quickly. But increased speed creates a tradeoff: According to another study, nearly half of organizations consciously deploy vulnerable code because of time pressure. Increased adoption of Infrastructure as code (IaC).

Serverless

Serverless Infrastructure Innovation DevOps

Handling Flaky Unit Tests in Java

Uber Engineering

JUNE 15, 2021

It warns software engineers of bugs in newly-implemented code and regressions in existing code, before it is merged. It also … The post Handling Flaky Unit Tests in Java appeared first on Uber Engineering Blog. Unit testing forms the bedrock of any Continuous Integration (CI) system.

Java

Java Testing Software Engineering Engineering

Runtime vulnerability management is still a vexing challenge for organizations

Dynatrace

JUNE 1, 2022

But with cloud-based architecture comes greater complexity and new vulnerability challenges. Further, software development in multicloud environments introduces multiple coding languages and third-party libraries. According to the Dynatrace CISO report, organizations still lack the insight they need to monitor this code.

Artificial Intelligence

Artificial Intelligence Java Cloud Strategy

How Netflix Scales its API with GraphQL Federation (Part 2)

The Netflix TechBlog

DECEMBER 11, 2020

Our Journey so Far Over the past year, we’ve implemented the core infrastructure pieces necessary for a federated GraphQL architecture as described in our previous post: Studio Edge Architecture The first Domain Graph Service (DGS) on the platform was the former GraphQL monolith that we discussed in our first post (Studio API).

Architecture

Architecture Best Practices Engineering Open Source

InfoSec 2022 guide: How DevSecOps practices drive organizational resilience

Dynatrace

JUNE 13, 2022

Open source code, for example, has generated new threat vectors for attackers to exploit. Considering open source software (OSS) libraries now account for more than 70% of most applications’ code base, this threat is not going anywhere anytime soon. Spring4Shell vulnerabilities expose Java Spring Framework apps to exploitation.

Open Source

Open Source DevOps Java Innovation

Dynatrace simplifies OpenTelemetry metric collection for context-aware AI analytics

Dynatrace

JANUARY 17, 2023

Code changes are often required to refine observability data. This results in site reliability engineers nudging development teams to add resource attributes, endpoints, and tokens to their source code. Kubernetes teams lack simple, consistent, vendor-agnostic architectures for analyzing observability signals across teams.

Analytics

Analytics Metrics Open Source Java

Dynatrace Application Security protects your applications in complex cloud environments

Dynatrace

DECEMBER 8, 2020

Teams are embracing new technologies and continuously deploying code. But what if you could see what’s running in production in real-time, continuously analyzing all services for vulnerabilities, and prioritizing those based on what code is called? They also can’t provide deep insights unless you have source code access.

Cloud

Cloud Open Source Internet Internet

Seamlessly Swapping the API backend of the Netflix Android app

The Netflix TechBlog

SEPTEMBER 8, 2020

On the Android team, while most of our time is spent working on the app, we are also responsible for maintaining this backend that our app communicates with, and its orchestration code. Image taken from a previously published blog post As you can see, our code was just a part (#2 in the diagram) of this monolithic service. Java…Script?

Latency

Latency Cache Java Traffic

RSA guide 2024: AI and security are top concerns for organizations in every industry

Dynatrace

MAY 2, 2024

Additionally, blind spots in cloud architecture are making it increasingly difficult for organizations to balance application performance with a robust security posture. blog Generative AI is an artificial intelligence model that can generate new content—text, images, audio, code—based on existing data. What is generative AI?

Artificial Intelligence

Artificial Intelligence Cloud Best Practices DevOps

Dynatrace strengthens container security across popular cloud-based registries

Dynatrace

MARCH 6, 2024

This process involves a few steps: Query public registry on latest OneAgent, code module, and ActiveGate tag information Copy container image to private registry Check that the images are valid and secure. Signed and immutable container images are available for the entire Dynatrace observability stack.

Cloud

Cloud Monitoring Java Network

Dynatrace introduces automatic vulnerability management for PHP

Dynatrace

DECEMBER 9, 2021

Applications are a common source of security breaches but the prevalence of cloud-native architectures, open source, third-party libraries, and container runtime environments makes the management of modern IT environments complex. Asset exposure —indicates exposure of the vulnerable code to the internet. How to get started.

Social Media

Social Media Open Source Cloud Media

What Adrian Did Next — Part 4 — how I helped Netflix launch on iPad and iPhone — 2007 to 2010

Adrian Cockcroft

JANUARY 27, 2025

This was all a spare time project, as my day job at Netflix at that time was as a director level manager of a team working on personalization code in Java, and it wasnt my job to write the codemyself. One of the Java engineers on my teamJian Wujoined me to help figure out the API. The code is still up on github.

C++

C++ Mobile Hardware Java

Plan, execute, and modernize a cloud migration strategy with Dynatrace

Dynatrace

MAY 9, 2022

From a cloud adoption standpoint, Smartscape helps to do the following: Adjust service architecture or infrastructure to improve application performance. Modernize the application, containerize the application, and refactor the code. Migrate to the same architecture in a different location. Repurchase.

Strategy

Strategy Cloud Infrastructure Metrics

RSA 2022 guide: DevSecOps transformation with runtime vulnerability management

Dynatrace

MAY 23, 2022

As a result, while cloud architecture has enabled organizations to develop applications iteratively, it also increased exposure to vulnerabilities. Software intelligence as code enables tailored observability, AIOps, and application security at scale – blog. AIOps capabilities drive intelligent cloud observability – blog.

Strategy

Strategy Innovation Cloud Serverless

What is application security? And why it needs a new approach

Dynatrace

MARCH 17, 2021

Application security is a software engineering term that refers to several different types of security practices designed to ensure applications do not contain vulnerabilities that could allow illicit access to sensitive data, unauthorized code modification, or resource hijacking.

Open Source

Open Source Cloud Games Java

Get out-of-the-box visibility into your ARM platform (Early Adopter)

Dynatrace

MAY 1, 2020

Other distributions like Debian and Fedora are available as well, in addition to other software like VMware, NGINX, Docker, and, of course, Java. We anticipate massive growth in the popularity of this architecture in the coming quarters, driven additionally by companies’ push for cost reductions.

Java

Java Hardware Metrics Tuning

A look behind the scenes of AWS Lambda and our new Lambda monitoring extension

Dynatrace

FEBRUARY 25, 2021

Dynatrace has offered a Lambda code module for Node.js This has led to the recent release of our new Lambda monitoring extension supporting Node.js, Java, and Python. In theory, an existing code module or agent can be used to monitor a Lambda function if there’s a way to load it into the running Lambda process.

Lambda

Lambda AWS Monitoring Serverless

OneAgent for Linux on IBM Z (General Availability)

Dynatrace

NOVEMBER 20, 2019

At Dynatrace, where we provide a software intelligence platform for hybrid environments (from infrastructure to cloud) we see a growing need to measure how mainframe architecture and the services running on it contribute to the overall performance and availability of applications. Full-stack and cloud-infrastructure monitoring modes.

Availability

Availability Hardware Java Tuning

Mitigating security vulnerabilities moves front and center in modern observability strategies

Dynatrace

MARCH 1, 2023

As digital transformation accelerates, organizations turn to hybrid and multicloud architectures to innovate, grow, and reduce costs. But the complexity and scale of multicloud architecture invites new enterprise challenges. Log4j is a ubiquitous bit of software code that appears in myriad consumer-facing products and services.

Strategy

Strategy Cloud Software Software

Black Hat 2023: Pairing causal AI and generative AI for cybersecurity threats

Dynatrace

AUGUST 7, 2023

Developers use generative AI to find errors in code and automatically document their code. They can also use generative AI for cybersecurity, write prototype code, and implement complex software systems. But as the Black Hat 2023 agenda indicates, generative AI also introduces new security risks. A new CISO report explains why.

DevOps

DevOps Analytics Best Practices Java

RSA Guide 2023: Cloud application security remains core challenge for organizations

Dynatrace

APRIL 11, 2023

Cloud application security remains challenging because organizations lack end-to-end visibility into cloud architecture. As organizations migrate applications to the cloud, they must balance the agility that microservices architecture brings with the complexity and lack of transparency that can also come with it.

Cloud

Cloud DevOps Open Source Retail

Practical API Design at Netflix, Part 1: Using Protobuf FieldMask

The Netflix TechBlog

SEPTEMBER 3, 2021

If a consumer is only interested in production titles and format, they can set a FieldMask with paths “title” and “format”: [link] Masking fields Please note, even though code samples in this blog post are written in Java, demonstrated concepts apply to any other language supported by protocol buffers. Field names are not included.

Design

Design Java Code Servers

Orchestrating Data/ML Workflows at Scale With Netflix Maestro

The Netflix TechBlog

OCTOBER 18, 2022

Meson was based on a single leader architecture with high availability. Figure 1 shows the high-level architecture. Maestro high level architecture In Maestro, a workflow is a DAG (Directed acyclic graph) of individual units of job definition called Steps. With the high growth of workflows in the past few years?

Java

Java Scalability Traffic Architecture

OpenTelemetry enables automated operations management at scale

Dynatrace

JULY 18, 2022

Users can add the APIs manually to their code to define exactly what needs to be measured and monitored continuously after the code is deployed for maintenance purposes. The reference architecture works with C++,NET, Erlang/Elixir, Go, Java, PHP, Python, Ruby, Rust, and Swift — with support for additional languages to come.

Artificial Intelligence

Artificial Intelligence Open Source Analytics Monitoring

Azure Well-Architected Framework: What it is and how to tame it with AI and automation

Dynatrace

APRIL 21, 2022

As organizations adopt microservices architecture with cloud-native technologies such as Microsoft Azure , many quickly notice an increase in operational complexity. The Azure Well-Architected Framework is a set of guiding tenets organizations can use to evaluate architecture and implement designs that will scale over time.

Azure

Azure Monitoring Virtualization Metrics

Keptn – The Autonomous Cloud control plane for Dynatrace explained

Dynatrace

JULY 9, 2020

From of our learnings on how we integrated Dynatrace into our DevOps toolchain , we advise our customers to follow our best practices around integrating delivery tools with Dynatrace, enforcing Dynatrace-based quality gates, implementing monitoring as code or automate remediation based on Dynatrace problems. Monitoring Configuration as Code.

Cloud

Cloud DevOps Azure Architecture

New Dynatrace Operator elevates cloud-native observability for Kubernetes

Dynatrace

MAY 5, 2021

Both Kubernetes monitoring and routing capabilities now use a containerized architecture and are managed by the new Dynatrace Operator. Existing Dynatrace customers can now migrate from VM-based ActiveGates to Kubernetes pods that support necessary ActiveGate capabilities.

Cloud

Cloud Traffic Monitoring Open Source

What is? OpenTelemetry??An open-source standard for logs, metrics, and traces

Dynatrace

OCTOBER 15, 2021

OpenTelemetry reference architecture. Here are the steps the solution takes, and the data it generates along the way: Instruments your code with APIs, telling system components what metrics to gather and how to gather them. These are core components and language-specific (such as Java, Python,Net, and so on).

Open Source

Open Source Metrics Cloud Transportation

Easy automated Concourse deployment validation with Dynatrace and Pitometer

Dynatrace

JUNE 18, 2019

In my colleague Andi Grabner’s recent blog on Automated Deployment and Architectural Validation, he notes that, based on a recent ACM survey , validating deployment still seems to be a semi-automated task for most software delivery teams. Dynatrace news. Let’s take a deeper look at a real example pipeline.

Architecture

Architecture DevOps Open Source Java

How a data lakehouse brings data insights to life

Dynatrace

OCTOBER 4, 2022

Further, these resources support countless Kubernetes clusters and Java-based architectures. where an error occurred at the code level. Cost-effective architecture. They can call on dozens of databases and deliver gigabytes of data across myriad devices.

Analytics

Analytics Storage Infrastructure Metrics

Native support for IBM mainframe in Dynatrace provides end-to-end visibility and AI-powered answers

Dynatrace

MAY 6, 2019

We recently introduced several code modules that provide out-of-the-box code-level insight for each mainframe transaction. Here’s what you can do with our GA code modules for z/OS: Gain insight into the CICS Transaction Server on z/OS with our CICS code module. In-depth analysis at the source-code level.

Java

Java Programming Technology Technology

Ready for changes with Hexagonal Architecture

Finding and Fixing Five Kinds of Architectural Technical Debt

Trending Sources

SKP's Java/Java EE Gotchas: Clash of the Titans, C++ vs. Java!

Unlock end-to-end observability insights with Dynatrace PurePath 4 seamless integration of OpenTracing for Java

What is infrastructure as code? Discover the basics, benefits, and best practices

How To Implement Specific Distributed System Patterns Using Spring Boot: Introduction

SRP Is the MEDUSA of Clean Code Family

Hidden indicators: Tracing the emergence of Apache Struts CVE-2024-53677

Open Sourcing the Netflix Domain Graph Service Framework: GraphQL for Spring Boot

The Anatomy of Broken Apache Struts 2: A Technical Deep Dive into CVE-2024-53677

The anatomy of the Spring4Shell vulnerability and how to prevent its effects—and those of similar vulnerabilities

Third-party vulnerabilities: Prioritize CVEs with vulnerable function insights

Dynatrace with industry consortium submits OpenFeature standard as CNCF sandbox project

The top eight DevSecOps trends in 2022

Handling Flaky Unit Tests in Java

Runtime vulnerability management is still a vexing challenge for organizations

How Netflix Scales its API with GraphQL Federation (Part 2)

InfoSec 2022 guide: How DevSecOps practices drive organizational resilience

Dynatrace simplifies OpenTelemetry metric collection for context-aware AI analytics

Dynatrace Application Security protects your applications in complex cloud environments

Seamlessly Swapping the API backend of the Netflix Android app

RSA guide 2024: AI and security are top concerns for organizations in every industry

Dynatrace strengthens container security across popular cloud-based registries

Dynatrace introduces automatic vulnerability management for PHP

What Adrian Did Next — Part 4 — how I helped Netflix launch on iPad and iPhone — 2007 to 2010

Plan, execute, and modernize a cloud migration strategy with Dynatrace

RSA 2022 guide: DevSecOps transformation with runtime vulnerability management

What is application security? And why it needs a new approach

Get out-of-the-box visibility into your ARM platform (Early Adopter)

A look behind the scenes of AWS Lambda and our new Lambda monitoring extension

OneAgent for Linux on IBM Z (General Availability)

Mitigating security vulnerabilities moves front and center in modern observability strategies

Black Hat 2023: Pairing causal AI and generative AI for cybersecurity threats

RSA Guide 2023: Cloud application security remains core challenge for organizations

Practical API Design at Netflix, Part 1: Using Protobuf FieldMask

Orchestrating Data/ML Workflows at Scale With Netflix Maestro

OpenTelemetry enables automated operations management at scale

Azure Well-Architected Framework: What it is and how to tame it with AI and automation

Keptn – The Autonomous Cloud control plane for Dynatrace explained

New Dynatrace Operator elevates cloud-native observability for Kubernetes

What is? OpenTelemetry??An open-source standard for logs, metrics, and traces

Easy automated Concourse deployment validation with Dynatrace and Pitometer

How a data lakehouse brings data insights to life

Native support for IBM mainframe in Dynatrace provides end-to-end visibility and AI-powered answers

Stay Connected