Java 26 released

Java 26 adds HTTP/3 support to the HttpClientApi.

Other features here

How to let AI use a debugger

An interesting read from foojay.io:

Java contains a text base debugger.

As AI also is text based Bruno Borges added a skill to his AI to use the debugger and debug a program.

Check it out! 

European Nato countries can manage their F35 jet software

Dutch defense secretary Gijs Tuinman declared that they can circumvent US restrictions on the software in the F-35 fighter jets they bought in the US, muych like you can jailbrake your phone.

More... 

 

Microsoft warns for AI recommendation poisoning

The Microsoft Defender Security research team published  an article warning for AI recommendation poisoning. 

When using an AI on a website you do not control, you do not know which prompt it actually uses.

Microsoft has  spotted "summarize with AI" buttons that add hidden instructions to give subtly misleading, biased and dangerous results.

The problem extends to any website providing AI  assistance on a variety of topics like health and security. These can be manipulated with AI Memory poisoning, where the system has been pre-populated with biased data, like websites that should be trusted as authoritative sources.

Remember the warnings from Harry Potter and the chamber of secrets: 

Never trust anything that can think for itself 

if you can't see where it keeps its brain.

IntelliJ 2025.3 performance issue

The new IntelliJ 2025.3 pauses frequently.

This is largely due to the new  slick Island theme.

I'm expecting a quick fix, but until then better switch back to one of the older themes (e.g. Light).

more info... 

There is also an annoying migration popup for the move from SQL conzole to SQL files. If you have configured a global datasource, it popz up in EVERY project your open. Issue..

 

 

Trusted browser extensions turn malicious

A set of chrome/edge browser extensions that have been popular for years, turned into malware after an update last year (2024). The extensions, among which Clean Master is the most popular, were publised by Star Laboratary Technology Co. , a Chinese company.

The extensions run malicious JavaScript with full browser access and collecting data on all operations and send them to China. 

More info... 

Spring boot 4 / framework 7 released (updated)

Spring boot 4 was released this week, on the heels of the Spring Framework 7 release. Here are some highlights:

• Upgrades in underlying technology:

• Java 25 (with a Java 17 baseline)
• Gradle 9
• Jackson 3 
• plenty of major releases for Spring modules (Data, AMQP, Batch, BraphQL, HATEOAS, Rest Docs, Security...)

• Completion of the effort to add JSpecify null safety throughout the codebase 
• OpenFeign like support for declarative HTTP Service clients based on annotated interfaces for RestClient, RestTemplate and WebClient.
• Autowired RestTestClient (operating on the underlying MockMvc instance) 
• REST API Versioning
• new JMS Client API 
• Kotlin Serialisation (<-> JSON)