The latest trends and tips in DevSecOps through instrumentation and Security Observability.

Subscribe To Blog

Johnathan Gilday

Johnathan develops Contrast’s Java agent as a Principal Engineer. From his prior experience with software research and development efforts for the U.S. Department of Defense, he brings expertise in modern software stacks, including mobile platforms, non-relational cloud storage solutions, Java technologies, and cloud automation technologies.

XML External Entity (XXE) Pitfalls With JAXB

The Java XML Binding (JAXB) runtime that ships with OpenJDK 1.8 uses a default configuration that protects against XML external entity (XXE) attacks. Contrast researched this secure default configuration and found that developers should not rely..

Continue Reading >>

Portable Builds with Docker

At Contrast, we like to enable developers to solve their own problems without submitting tickets to the Operations team. We also like to define our infrastructure with code.

Continue Reading >>