The Specification Crisis: How Different User Personas Complicate Software Development

January 21, 2025

Explore how different user personas in software development teams create specification drift, amplified by LLMs, and discover solutions for better collaboration.

TL;DR: Different user personas (developers, managers, stakeholders) have conflicting priorities that create specification drift. LLMs amplify this problem by generating code from outdated specs.

Software ArchitectureDevelopment Best PracticesTeam DynamicsAILLM

Secure APIs against XEE Attacks (XML Injection Attacks)

November 1, 2014

Learn how to secure your APIs against XML External Entity (XEE) attacks, including XML Injection and XML Expansion attacks, with practical mitigation steps for Java and RestEasy.

TL;DR: Prevent XEE attacks in Java/RestEasy by configuring SAXParserFactory to disable external entities and disallow DTDs, and enabling secure processing.

Software ArchitectureDevelopment Best PracticesProgramming LanguagessecurityAPIXMLJava