Steve Poole

Developer Advocate, Security Champion, DevOps practitioner (whatever that means) Long time Java developer, leader and evangelist. I’ve been working on Java SDKs and JVMs since Java was less than 1. JavaOne Rockstar, JSR leader and representation, Committer on open source projects including ones at Apache, Eclipse and OpenJDK. A seasoned speaker and regular presenter at international conferences on technical and software engineering topics.

Follow me on:
READ MORE

On the Road Again: Here Comes September

By Steve Poole on September 06, 2022 Events and Webinars

4 minute read time

Sonatype DevRel folk will be speaking, presenting, and there to help at open source conferences, Java conferences, and more throughout September 2022.
Read More...
Hammer cracking an egg
READ MORE

Java Serialisation - The Gift That Keeps on Taking (Part 3)

By Steve Poole on July 02, 2022 Cybersecurity

7 minute read time

Part 3 of our issues with Java serialisation shares a deep dive into gadget chains and denial of service attacks.
Read More...
are you ready for Java JEP'dy?
READ MORE

Java JEP’DY. Sometimes You Just Have to Let Your Hair Down.

By Steve Poole on April 01, 2022 developers

3 minute read time

Java JEP'dy. a game for Java developers everywhere Inspired by the original Jepardy quiz came at Devnexus, Devoxx UK, JBCN, JNation and more
Read More...
READ MORE

Java Serialisation - The Gift That Keeps on Taking (Part 2)

By Steve Poole on March 30, 2022 open source security

8 minute read time

Part two of our Java serialization series: the unexpected consequences of design and how the data stream can be compromised.
Read More...
An image of white gifts with red bows stacked on top of each other, to illustrate how Java Serialisation is the gift that keeps on giving
READ MORE

Java Serialisation - The Gift That Keeps on Taking (Part 1)

By Steve Poole on March 11, 2022 java

6 minute read time

Log4Shell impels us to review the reasons Java needs serialisation, how to use it safely, and what other options exist. Here in part 1, we examine design.
Read More...
Twitter LinkedIn Facebook YouTube GitHub
Products
Free Tools
Solutions
Resources
Customer Portal
Company
SON_logo_white@2x copy trimmed

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759

Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102

Australia Office - 60 Martin Place Level 1, Sydney, NSW 2000, Australia

London Office -168 Shoreditch High Street, E1 6HU London

Subscribe for all the latest software security news and events

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service    Privacy Policy    Modern Slavery Statement    Event Terms and Conditions   Do Not Sell My Personal Information