How Deep Is the Log4j Vulnerability in Maven Central? An In‑Depth Dependency Analysis

Google Open Source Insights researchers examined every Maven Central package version, revealing that over 8% of Java packages are affected by Log4j, most through transitive dependencies, and highlighting the complex, multi‑step remediation required across deep dependency trees.

Dependency AnalysisJava SecurityMaven Central

0 likes · 4 min read

How Deep Is the Log4j Vulnerability in Maven Central? An In‑Depth Dependency Analysis

Programmer DD

Apr 3, 2021 · Operations

Automate Maven Central Deployment with GitHub Actions: A Step‑by‑Step Guide

This article explains how to use GitHub Actions to automatically publish a Spring Boot payment library to Maven Central, covering required OSSRH and GPG credentials, Maven POM configuration, secret management, and a complete workflow YAML that triggers on a GitHub release.

GPGGitHub ActionsJava

0 likes · 11 min read

Automate Maven Central Deployment with GitHub Actions: A Step‑by‑Step Guide

Java Architecture Diary

Oct 30, 2020 · Backend Development

What’s New in Spring Boot 2.3.5, 2.2.11, and 2.1.18 Releases?

Spring Boot 2.3.5, 2.2.11, and 2.1.18 have been released on Maven Central, each bringing dozens of bug fixes, documentation improvements, and dependency upgrades, while the 2.1.x line has reached end‑of‑life and users are urged to migrate to newer versions.

JavaMaven CentralSpring Boot

0 likes · 3 min read

What’s New in Spring Boot 2.3.5, 2.2.11, and 2.1.18 Releases?