webtechie.be_
~ / podcasts / podcast

Foojay Podcast #63: How do we keep our Java applications up to date and secure?

FR
Frank Delporte · Dec 16, 2024 · 1 min read

Most teams want to run a current Java version, yet many production systems stay stuck on old releases and outdated dependencies. Management priorities, legacy code, and fear of breaking things all pull in the same direction. In this Foojay Podcast #63, we sit down with Gerrit Grunwald, Jonathan Schneider, Martijn Dashorst, Carl Wanting, Charl Fasching, and Johan Janssen to talk about how we keep Java applications current and secure.

What we talked about

  • CVE fixes in Java updates
  • LTS versus STS release cadence
  • The goals and inner workings of OpenRewrite
  • Upgrade strategies, all at once versus step by step
  • How recipes get created and maintained
  • What Moderne adds on top of OpenRewrite
  • IDE integration for OpenRewrite
  • Company-maintained recipes for specific products
  • Updating legacy projects and migration approaches
  • How Java evolution shapes upgrade decisions

What stood out

The panel agrees that upgrading is rarely a pure technical problem. Tooling like OpenRewrite removes a lot of the manual grind, but teams still need a plan and buy-in from management. Small, repeatable steps beat one big jump.

See the Foojay Podcast #63 for all info, shownotes, links, etc.

#podcast#foojay#java#openrewrite#security#jvm