Building An Angular App For ColdFusion Using Docker Compose

Ben Nadel shares how he's building Angular utility apps inside his ColdFusion blogging platform using Docker Compose....

From: Ben Nadel

Working Code Podcast - Episode 192: The Best And Worst Code

Ben Nadel and the crew talk about the best and worst code that they've seen (which is sometimes the code that they also wrote)....

From: Ben Nadel

ColdFusion updates released Aug 20 2024, offering Tomcat update

An update for ColdFusion has been released today for both cf2023 update 9 and and cf2021 update 15.

From: Charlie Arehart - Server Troubleshooting

Announcing ColdFusion updates released Aug 20 2024: offers Tomcat upgrade

An update for ColdFusion has been released today for both cf2023 as update 9 and and cf2021 as update 15.

From: Charlie Arehart - Server Troubleshooting

Working Code Podcast - Episode 191: Too Much Process

Ben Nadel and the crew talk about bureaucratic processes at work, why they exist, and what we can (maybe) do about them....

From: Ben Nadel

Creating A Transient View Helper In Angular 18

Ben Nadel creates a transient view helper service that is unique instantiated for each host component in Angular 18....

From: Ben Nadel

BSidesLV 2024 Slides - Modern ColdFusion Exploitation and Attack Surface Reduction

Thank you to BSidesLV for the opportunity to speak this year.  The slides from my talk, Modern ColdFusion Exploitation and Attack Surface Reduction, are now online below.  They're pretty similar to my Summercon slides, with a few updates.

From: Hoya Haxa - A Security Research Blog

Supercharge Your Spring Apps with AI - A Beginner's Guide to Claude 3.5 Sonnet and Spring AI

Unlock the power of artificial intelligence in your Java applications with Claude 3.5 Sonnet and Spring AI. This beginner-friendly guide walks you through integrating cutting-edge AI capabilities into your Spring projects, opening up a world of possibilities for smart, responsive applications.

From: Dan Vega

Working Code Podcast - Episode 190: Career Advice To Younger Self

Ben Nadel and the crew talk about career advice that they'd give to their younger selves....

From: Ben Nadel

How Do I Name a Unit Test?

{ describe('methodName()', () => { }) }) All my tests for this method go in the method name describe block.

From: Jeffry Houser's Blog

Harnessing Local LLMs - A Practical Guide to Ollama and Open Web UI

This guide introduces Ollama, a tool for running large language models (LLMs) locally, and its integration with Open Web UI.

From: Dan Vega

How to Temporarily Disable Database Triggers and Constraints for Bulk Operations in Modern Databases

In this article, we will explore how to temporarily disable database triggers and constraints.

From: Gregory's Blog

JavaScript Application Size Shouldn't Affect Performance

Ben Nadel deconstructs the argument that the size of a JavaScript application affects the overall performance of said application....

From: Ben Nadel

Code Isn't Magical, It's Just A Series Of Commands

Ben Nadel explains that code isn't magical - that's is just a series of commands. And that thinking about it this way makes it easier to maintain....

From: Ben Nadel

Java Method References - A Beginner's Guide

Discover the power of method references in Java! This beginner-friendly guide explains what method references are, why they're useful, and how to use them effectively.

From: Dan Vega

Working Code Podcast - Episode 188: Code Review Nuance

Ben Nadel and the crew talk about code reviews; and reflect on the decision tree that we use when reviewing other people's code...

From: Ben Nadel

On ColdFusion Administrator Access Control Bypass Techniques

IntroductionAccess Control is frequently boring but important.

From: Hoya Haxa - A Security Research Blog

Follow-up on June 2024 CF update: more on change of default algorithm from CFMX_COMPAT

If you're considering or have already implemented the latest CF updates from June 2024 (CF2023 update 8 and CF2021 update 14), you might have struggled a bit to understand completely what Adobe was getting at in the update technotes, as they can sometimes be rather terse in covering some points (wor...

From: Charlie Arehart - Server Troubleshooting

On handling the June 2024 CF update change of default algorithm from CFMX_COMPAT

If you're considering or have already implemented the latest CF updates from June 2024 (CF2023 update 8 and CF2021 update 14), you might have struggled a bit to understand completely what Adobe was getting at in the update technotes, as they can sometimes be rather terse in covering some points (wor...

From: Charlie Arehart - Server Troubleshooting

Summercon 2024 Slides - Modern ColdFusion Exploitation and Attack Surface Reduction

Last Friday it was an absolute honor to talk about ColdFusion security at Summercon.

From: Hoya Haxa - A Security Research Blog

An "x-input" Property Binding Directive In Alpine.js

Ben Nadel creates an x-input directive in Alpine.js which allows outer component properties to be bound to inner component properties....

From: Ben Nadel

Code Kata: Building A Tri-State Switch In Alpine.js

Ben Nadel tries to build a tri-state switch / toggle using Alpine.js....

From: Ben Nadel

Follow-up on March 2024 CF update: feature to log "implicit" scope searches that would fail

Don't miss that Adobe had added a useful feature (a "patch", made available in Apr 2024) to help in identifying any CFML code you may have which refers "implicitly" to scopes that would no longer searched (for any variables without a scope prefix), which is the new default behavior for CF2021, CF202...

From: Charlie Arehart - Server Troubleshooting

Helpful "new" CF feature identifies "implicit" scope searches that would fail after March update

Don't miss that Adobe had added a useful feature (a "patch", made available in Apr 2024) to help in identifying any CFML code you may have which refers "implicitly" to scopes that would no longer searched (for any variables without a scope prefix), which is the new default behavior for CF2021, CF202...

From: Charlie Arehart - Server Troubleshooting