Code, Java and Systems - Technology Performance Pulse

Announcing Java SSRF protection in Dynatrace Application Security

Dynatrace

APRIL 9, 2025

This can include internal services within an organizations infrastructure or external systems. Java remains one of the most popular programming languages globally, and it is used by major companies worldwide for everything from web and Android apps to server-side programming and large-scale enterprise systems.

Java

Java Programming Architecture Cloud

SKP's Java/Java EE Gotchas: Clash of the Titans, C++ vs. Java!

DZone

FEBRUARY 27, 2021

They still will win for mission-critical or real-time systems, which need performance over these parameters. Considering all aspects and needs of current enterprise development, it is C++ and Java which outscore the other in terms of speed. In Byteland they have a very strange monetary system. Ahem, Slow!

Java

Java C++ Benchmarking Programming

How To Implement Specific Distributed System Patterns Using Spring Boot: Introduction

DZone

SEPTEMBER 11, 2024

Regarding contemporary software architecture, distributed systems have been widely recognized for quite some time as the foundation for applications with high availability, scalability, and reliability goals. Spring Boot Overview One of the most popular Java EE frameworks for creating apps is Spring.

Systems

Systems Java Software Architecture Programming

Find vulnerabilities in your code—don’t wait for someone to exploit them

Dynatrace

FEBRUARY 13, 2023

With the increasing amount of sensitive information stored and processed, it’s essential to ensure that systems are secure and protected against potential threats. The deep insights into application code provided by OneAgent® help track potentially vulnerable data flow within an application.

Code

Code Java Testing Tools Testing

Optimizing Java XPath CPU and memory overhead by 98%

Dynatrace

MARCH 9, 2022

The system saw up to 800 application requests per second – far more than anticipated. More worrisome was a spike in CPU usage, resulting in severe service disruption as backend processing systems crashed due to the spike in load. Therefore, it was unsurprising to see a huge spike in traffic for Family Visa enrollment via Metrash.

Java

Java Traffic Government Code

What is infrastructure as code? Discover the basics, benefits, and best practices

Dynatrace

JUNE 10, 2022

The IT world is rife with jargon — and “as code” is no exception. “As code” means simplifying complex and time-consuming tasks by automating some, or all, of their processes. Today, the composable nature of code enables skilled IT teams to create and customize automated solutions capable of improving efficiency.

Best Practices

Best Practices Infrastructure Code Speed

Hidden indicators: Tracing the emergence of Apache Struts CVE-2024-53677

Dynatrace

FEBRUARY 28, 2025

Recently, a critical vulnerability was discovered in Apache Struts, a widely used Java-based web application framework. This vulnerability, published as CVE-2024-53677 on December 11, 2024, affects the file upload mechanism, allowing for path traversal and potential remote code execution.

Social Media

Social Media Java Open Source Media

Progressive delivery at cloud scale: Optimizing CPU intensive code with Dynatrace

Dynatrace

OCTOBER 21, 2020

This is a great example of how valuable Dynatrace is for diagnosing performance or scalability issues, and a great testimony that we at Dynatrace use our own product and its various capabilities across our globally distributed systems. And the code-level root cause information is what makes troubleshooting easy for developers.

Code

Code Cloud Engineering Java

The Anatomy of Broken Apache Struts 2: A Technical Deep Dive into CVE-2024-53677

Dynatrace

FEBRUARY 25, 2025

Broken Apache Struts 2: Technical Deep Dive into CVE-2024-53677The vulnerability allows attackers to manipulate file upload parameters, possibly leading to remote code execution. Applications must migrate to the new mechanism, as using the deprecated file upload mechanism leaves systems vulnerable. While Struts version 6.4.0

Servers

Servers Processing Java Tuning

Fully automatic code level monitoring and extended version support for AIX

Dynatrace

SEPTEMBER 7, 2019

In April of this year, we released a long-awaited GA version of the full-stack OneAgent for the IBM AIX operating system. AIX is considered to be one of the core operating systems used by our largest customers. Fully automatic deep code monitoring module injection. TL9 SP9 (see details below). Deployment of OneAgent on AIX 6.1

Code

Code Monitoring Java Operating System

Strace Revisited: Simple Is Beautiful

DZone

FEBRUARY 6, 2024

In the realm of system debugging, particularly on Linux platforms, strace stands out as a powerful and indispensable tool. Its simplicity and efficacy make it the go-to solution for diagnosing and understanding system-level operations, especially when working with servers and containers.

Java

Java Servers Systems Code

Handling Flaky Unit Tests in Java

Uber Engineering

JUNE 15, 2021

Unit testing forms the bedrock of any Continuous Integration (CI) system. It warns software engineers of bugs in newly-implemented code and regressions in existing code, before it is merged. It also … The post Handling Flaky Unit Tests in Java appeared first on Uber Engineering Blog.

Java

Java Testing Software Engineering Engineering

Log4Shell vulnerability: Identifying and minimizing production risk

Dynatrace

DECEMBER 12, 2021

It results in remote code execution (RCE) by submitting a specially composed request. In summary, the Log4Shell vulnerability allows an attacker to instruct the vulnerable system to download, and subsequently execute, a malicious command. Java processes with public-facing internet exposures are an easy target for this type of abuse.

Java

Java Internet Internet Database

The anatomy of the Spring4Shell vulnerability and how to prevent its effects—and those of similar vulnerabilities

Dynatrace

APRIL 14, 2022

Because 60% of developers use Spring for their Java applications , many applications are potentially affected. With a critical CVSS rating of 9.8 , Spring4Shell leaves affected systems vulnerable to remote code execution (RCE). Further, the report lists Tomcat as the most popular Java application server.

Java

Java Servers Code Open Source

Protect your organization against zero-day vulnerabilities

Dynatrace

AUGUST 3, 2022

Malicious attackers have gotten increasingly better at identifying vulnerabilities and launching zero-day attacks to exploit these weak points in IT systems. A zero-day exploit is a technique an attacker uses to take advantage of an organization’s vulnerability and gain access to its systems.

Java

Java Traffic Benchmarking Strategy

Log4j 2 Vulnerability: Identifying and Minimizing Production Risk

Dynatrace

DECEMBER 12, 2021

It results in remote code execution (RCE) by submitting a specially composed request. In summary, the Log4Shell exploit allows an attacker to instruct the vulnerable system to download, and subsequently execute, a malicious command. Java processes with public-facing internet exposures are an easy target for this type of abuse.

Java

Java Internet Internet Database

Open Sourcing the Netflix Domain Graph Service Framework: GraphQL for Spring Boot

The Netflix TechBlog

FEBRUARY 3, 2021

By open-sourcing the project, we hope to contribute to the Java and GraphQL communities and learn from and collaborate with everyone who will be using the framework to make it even better in the future. The transition to the new federated architecture meant that many of our backend teams needed to adopt GraphQL in our Java ecosystem.

Open Source

Open Source Java Architecture Metrics

Dynatrace with industry consortium submits OpenFeature standard as CNCF sandbox project

Dynatrace

MAY 19, 2022

They enable product delivery and SRE teams to turn functionality on and off at runtime without deploying new code. This decoupling of code deployment from feature release is a crucial enabler for modern Continuous Delivery practices. Proprietary SDKs create adoption challenges. SDKs are lightweight, developer friendly, and flexible.

Java

Java Cloud Code Technology

What is Log4Shell? The Log4Shell vulnerability explained (and what to do about it)

Dynatrace

DECEMBER 16, 2021

Since December 10, days after a critical vulnerability known as Log4Shell was discovered in servers supporting the game Minecraft, millions of exploit attempts have been made of the Log4j 2 Java library, according to one team tracking the impact, with potential threat to millions more applications and devices across the globe.

Internet

Internet Internet Games Java

Dynatrace memory analysis helps Product Architects identify unknown unknowns

Dynatrace

FEBRUARY 9, 2023

While memory allocation analysis can show wasteful or inefficient code, it can also reveal different problems, one of which we’ll examine in this blog post. We recently extended the pre-shipped code-level API definitions to group logical parts of our code so they’re consistently highlighted in all code-level views.

Java

Java Metrics Servers Code

Best PostgreSQL GUI [2024]

Scalegrid

OCTOBER 18, 2024

Due to its versatility for storing information in both structured and unstructured formats, PostgreSQL is the fourth most used standard in modern database management systems (DBMS) worldwide 1. Offering comprehensive access to files, software features, and the operating system in a more user-friendly manner to ensure control.

Open Source

Open Source Database Cloud Operating System

The top eight DevSecOps trends in 2022

Dynatrace

FEBRUARY 23, 2022

Indeed, according to one survey, DevOps practices have led to 60% of developers releasing code twice as quickly. But increased speed creates a tradeoff: According to another study, nearly half of organizations consciously deploy vulnerable code because of time pressure. Increased adoption of Infrastructure as code (IaC).

Serverless

Serverless Infrastructure Innovation DevOps

InfoSec 2022 guide: How DevSecOps practices drive organizational resilience

Dynatrace

JUNE 13, 2022

Open source code, for example, has generated new threat vectors for attackers to exploit. Considering open source software (OSS) libraries now account for more than 70% of most applications’ code base, this threat is not going anywhere anytime soon. Cloud operations and observability boost resilience for American Family – blog.

Open Source

Open Source DevOps Java Innovation

What is vulnerability management? And why runtime vulnerability detection makes the difference

Dynatrace

AUGUST 18, 2022

But managing the breadth of the vulnerabilities that can put your systems at risk is challenging. According to the 2022 CISO Research Report , only 25% of respondents’ security teams “can access a fully accurate, continuously updated report of every application and code library running in production in real-time.”

Traffic

Traffic Java Network DevOps

AI Flame Graphs

Brendan Gregg

OCTOBER 28, 2024

The green frames are the actual instructions running on the AI or GPU accelerator, aqua shows the source code for these functions, and red (C), yellow (C++), and orange (kernel) show the CPU code paths that initiated these AI/GPU programs. The gray "-" frames just help highlight the boundary between CPU and AI/GPU code.

Programming

Programming Hardware Tuning C++

Why the supposedly fixed CVE-2020-36641 vulnerability is still exploitable—And what to do about it

Dynatrace

JANUARY 23, 2024

In May 2023 the critical vulnerability CVE-2020-36641 in the Java library aXMLRPC was published in the National Vulnerability Database (NVD). To what extent attacks are possible depends on the Java version and other environmental factors. xml version="1.0"?> > <!DOCTYPE DOCTYPE foo [<!ENTITY

Java

Java Servers Code Software

AI-driven analysis of Spring Micrometer metrics in context, with typology at scale

Dynatrace

APRIL 7, 2022

One of these solutions is Micrometer which provides 17+ pre-instrumented JVM-based frameworks for data collection and enables instrumentation code with a vendor-neutral API. Spring Boot, on the other hand, is a Java framework for building cloud-native Java applications. Here’s how it works. of Micrometer.

Metrics

Metrics Java Latency Cache

Automatic connection of logs and traces accelerates AI-driven cloud analytics

Dynatrace

NOVEMBER 18, 2021

Logs are a crucial component in the mix that help BizDevOps teams understand the full story of what’s happening in a system. With PurePath ® distributed tracing and analysis technology at the code level, Dynatrace already provides the deepest possible insights into every transaction. How to get started.

Analytics

Analytics Cloud Java Serverless

Java Or Scala Performance – Which One Is Better?

Alex Podelko

SEPTEMBER 4, 2018

For years, the debate has raged on regarding which programming language is better, Java or Scala. While some argue that just because Java is older it is better, others believe Scala is better for a variety of reasons. In essence, Java is classified as an object oriented programming language. The Size and Quality of the Code.

Java

Java Performance Programming Virtualization

When things go sideways: Troubleshooting the OpenTelemetry Operator

Dynatrace

DECEMBER 13, 2024

Managing Auto-Instrumentation in Pods The Operator automatically injects and configures auto-instrumentation for your applications, which enables you to collect telemetry data without modifying your source code. Instrumentation Instrumentation is the process of adding code to software to generate telemetry signalslogs, metrics, and traces.

Java

Java Servers Code Metrics

Third-party vulnerabilities: Prioritize CVEs with vulnerable function insights

Dynatrace

AUGUST 21, 2024

This information specifies which function in the source code relates to a vulnerability. The Dynatrace third-party vulnerabilities solution provides key capabilities for detailed and continuous insights into vulnerable software components present in an IT system. The vulnerable function in the software package is highlighted in red.

Java

Java Monitoring Open Source Software

Dynatrace Application Security protects your applications in complex cloud environments

Dynatrace

DECEMBER 8, 2020

Teams are embracing new technologies and continuously deploying code. But what if you could see what’s running in production in real-time, continuously analyzing all services for vulnerabilities, and prioritizing those based on what code is called? They also can’t provide deep insights unless you have source code access.

Cloud

Cloud Open Source Internet Internet

Dynatrace Application Security boosts BizDevSecOps for Kubernetes

Dynatrace

FEBRUARY 10, 2021

In cloud-native application stacks, everything is code. Dynatrace entered the Application Security market with automatic and continuous protection for Java workloads. and Java are the most popular languages within Kubernetes environments. Automatic vulnerability detection for Kubernetes platform versions.

Java

Java Open Source Engineering Database

Why open source software and open standards are crucial to the future of software development

Dynatrace

OCTOBER 26, 2022

From common coding libraries to orchestrating container-based computing, organizations now rely on open source software—and the open standards that define them—for essential functions throughout their software stack. Above all, when developers use code that others have developed and vetted it saves time and money.

Open Source

Open Source Software Software Development

OneAgent release notes version 1.229

Dynatrace

NOVEMBER 22, 2021

It affects only those extensions that use native libraries called from Python code distributed with the extension. Operating systems. Future Dynatrace OneAgent operating systems support changes. The following operating systems will no longer be supported starting 01 February 2022. Impact : This issue will rarely happen.

Operating System

Operating System Java Metrics Google

Application observability meets developer observability: Unlock a 360º view of your environment

Dynatrace

NOVEMBER 6, 2023

Application observability helps IT teams gain visibility in their highly distributed systems, but what is developer observability and why is it important? The scale and the highly distributed systems result in enormous amounts of data. They also care about infrastructure: SREs require system visibility and incident management.

Development

Development DevOps Programming Cloud

Advance DevSecOps practices with a vulnerability management strategy

Dynatrace

FEBRUARY 1, 2022

Consider the Log4Shell vulnerability , which emerged in December 2021 and is estimated to have affected hundreds of millions of systems worldwide. The vulnerability is located in Log4j 2, an open-source Apache Java software used to run logging services in a host of front-end and backend applications.

Strategy

Strategy Games DevOps Open Source

Ready for changes with Hexagonal Architecture

The Netflix TechBlog

MARCH 10, 2020

We had an interesting challenge on our hands: we needed to build the core of our app from scratch, but we also needed data that existed in many different systems. Having our core logic isolated means we can easily change data source details without a significant impact or major code rewrites to the codebase.

Architecture

Architecture Transportation Java Strategy

PostgreSQL vs. Oracle: Difference in Costs, Ease of Use & Functionality

Scalegrid

JULY 13, 2020

Oracle Database is a commercial, proprietary multi-model database management system produced by Oracle Corporation, and the largest relational database management system (RDBMS) in the world. Compare ease of use across compatibility, extensions, tuning, operating systems, languages and support providers. Compare Ease of Use.

Open Source

Open Source Tuning C++ Database

Why vulnerability management enhances your cloud application security strategy

Dynatrace

JANUARY 21, 2022

Log4Shell is a software vulnerability in Apache Log4j 2 , a popular Java library for logging error messages in applications. Without a centralized approach to vulnerability management, DevSecOps teams waste time figuring out how a vulnerability affects the production environment and which systems to fix first. Contextual insight.

Strategy

Strategy Cloud DevOps Open Source

OneAgent release notes version 1.231

Dynatrace

JANUARY 9, 2022

Impact : This issue affects only those extensions that use native libraries called from Python code distributed with the extension. Operating systems. Future Dynatrace OneAgent operating systems support changes. The following operating systems will no longer be supported starting 01 March 2022. x – 2.12.x.

Operating System

Operating System Google Java Virtualization

Seniors and Juniors

O'Reilly

APRIL 8, 2025

As they move into the workforce, they need to deepen their knowledge and become part of a team writing a software system for a paying customer. The computer doesnt know C++ and doesnt care if the software was written in Java, Haskell, or BASIC; no matter how the software is written, its going to execute binary machine code.

Programming

Programming Code Software Software

Why software supply chain attacks are increasing

Dynatrace

JULY 29, 2022

One such software supply chain attack reared its head in late 2021, with the Log4Shell vulnerability , which affected millions of live applications using Java libraries. The compromised software can then compromise customer data or IT systems. According to one survey, supply chain attacks on open source software increased 650% in 2021.

Software

Software Software Open Source DevOps

Enhanced AI model observability with Dynatrace and Traceloop OpenLLMetry

Dynatrace

DECEMBER 4, 2023

By using OpenLLMetry and Dynatrace, anyone can get complete visibility into their system, including gen-AI parts with 5 minutes of work.” As the collected data seamlessly integrates with your Dynatrace environment, you can analyze LLM metrics, spans, and logs in the context of all traces and code-level information.

Open Source

Open Source Metrics Java Latency

Announcing Java SSRF protection in Dynatrace Application Security

SKP's Java/Java EE Gotchas: Clash of the Titans, C++ vs. Java!

Trending Sources

How To Implement Specific Distributed System Patterns Using Spring Boot: Introduction

Find vulnerabilities in your code—don’t wait for someone to exploit them

Optimizing Java XPath CPU and memory overhead by 98%

What is infrastructure as code? Discover the basics, benefits, and best practices

Hidden indicators: Tracing the emergence of Apache Struts CVE-2024-53677

Progressive delivery at cloud scale: Optimizing CPU intensive code with Dynatrace

The Anatomy of Broken Apache Struts 2: A Technical Deep Dive into CVE-2024-53677

Fully automatic code level monitoring and extended version support for AIX

Strace Revisited: Simple Is Beautiful

Handling Flaky Unit Tests in Java

Log4Shell vulnerability: Identifying and minimizing production risk

The anatomy of the Spring4Shell vulnerability and how to prevent its effects—and those of similar vulnerabilities

Protect your organization against zero-day vulnerabilities

Log4j 2 Vulnerability: Identifying and Minimizing Production Risk

Open Sourcing the Netflix Domain Graph Service Framework: GraphQL for Spring Boot

Dynatrace with industry consortium submits OpenFeature standard as CNCF sandbox project

What is Log4Shell? The Log4Shell vulnerability explained (and what to do about it)

Dynatrace memory analysis helps Product Architects identify unknown unknowns

Best PostgreSQL GUI [2024]

The top eight DevSecOps trends in 2022

InfoSec 2022 guide: How DevSecOps practices drive organizational resilience

What is vulnerability management? And why runtime vulnerability detection makes the difference

AI Flame Graphs

Why the supposedly fixed CVE-2020-36641 vulnerability is still exploitable—And what to do about it

AI-driven analysis of Spring Micrometer metrics in context, with typology at scale

Automatic connection of logs and traces accelerates AI-driven cloud analytics

Java Or Scala Performance – Which One Is Better?

When things go sideways: Troubleshooting the OpenTelemetry Operator

Third-party vulnerabilities: Prioritize CVEs with vulnerable function insights

Dynatrace Application Security protects your applications in complex cloud environments

Dynatrace Application Security boosts BizDevSecOps for Kubernetes

Why open source software and open standards are crucial to the future of software development

OneAgent release notes version 1.229

Application observability meets developer observability: Unlock a 360º view of your environment

Advance DevSecOps practices with a vulnerability management strategy

Ready for changes with Hexagonal Architecture

PostgreSQL vs. Oracle: Difference in Costs, Ease of Use & Functionality

Why vulnerability management enhances your cloud application security strategy

OneAgent release notes version 1.231

Seniors and Juniors

Why software supply chain attacks are increasing

Enhanced AI model observability with Dynatrace and Traceloop OpenLLMetry

Stay Connected