BT

Facilitating the Spread of Knowledge and Innovation in Professional Software Development

Write for InfoQ

Register Sign in

Unlock the full InfoQ experience

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources.

Log In

or

Don't have an InfoQ account?

Stay updated on topics and peers that matter to youReceive instant alerts on the latest insights and trends.
Quickly access free resources for continuous learningMinibooks, videos with transcripts, and training materials.
Save articles and read at anytimeBookmark articles to read whenever youre ready.

Logo - Back to homepage

News Articles Presentations Podcasts Guides

Topics

Development

Featured in Development

Are We Ready for the Next Cyber Security Crisis Like Log4shell?

Soroosh Khodami discusses why we aren't ready for the next Log4Shell. He shares live demos of dependency confusion and compromised builds, explaining how minor oversights gift hackers total system access. He explains the value of Software Bill of Materials (SBOM), dependency firewalls, and shifting security left to build resilient DevSecOps cultures that protect the modern software supply chain.

All in development

Architecture & Design

Featured in Architecture & Design

Panel: Taking Architecture Out of the Echo Chamber

Andrew Harmel-Law and a panel of expert architects discuss the shifting practice of architecture in 2025. They explain strategies for communicating technical debt to stakeholders, the benefits of decentralized decision-making through ADRs, and the career paths of modern leaders. The panel shares insights on bridging the gap between mobile and backend teams to ensure a holistic system.

All in architecture-design

AI Infrastructure

Featured in AI, ML & Data Engineering

Directing a Swarm of Agents for Fun and Profit

Adrian Cockcroft explains the transition from cloud-native to AI-native development. He shares his "director-level" approach to managing swarms of autonomous agents using tools like Cursor and Claude Flow. Discussing real-world experiments in BDD, MCP servers, and language porting, he discusses why the future of engineering lies in building platforms that orchestrate AI-driven development.

All in ai-ml-data-eng

Culture & Methods

Featured in Culture & Methods

The Principal Engineer’s Path: Skills, Strategies, and Lessons Learned

Sophie Weston explains that technical careers are winding journeys, not straight ladders. Drawing on 30 years of experience, she shares how senior ICs can become "broken combs" by broadening skills in systems thinking and strategy. She discusses the vital role of organizational flexibility and explains how public speaking and community engagement create feedback loops for career success.

All in culture-methods

DevOps

Featured in DevOps

Securing the AI Stack: From Model to Production

This eMag explores the shift from AI experimentation to production, where legacy defenses fall short. We dive into the critical trifecta of AI-driven phishing, model poisoning, and cloud governance. By rethinking security as a lifecycle responsibility, this issue provides a roadmap for securing the machine age through layered tactics, robust MLOps, and responsible deployment frameworks.

All in devops

Events

Helpful links

Choose your language

InfoQ Architect Certification

Join Luca Mezzalira for this 5-week online cohort. Master socio-technical architecture leadership.

Register Now.

Learn how leading engineering teams run AI in production—reliably, securely, and at scale.

Early Bird ends April 14.

QCon San Francisco

Learn what's next in AI and software, from teams already doing it.

Early Bird ends April 14.

InfoQ Homepage Interviews Web Security with Aaron Bedra

Web Security with Aaron Bedra

Download

19:00

Bio

Aaron Bedra is the application security lead at Braintree. He is the co-author of Programming Clojure, Practical Software Security, and another upcoming Pragmatic Press book.

About the conference

GOTO Aarhus is an premier software development conference designed for developers, team leads, architects, and project managers. At GOTO, the program is created for developers by developers. Our concept has always been to present the latest developments as they become relevant and interesting for the software development community.

Dec 13, 2013

Interview with

Aaron Bedra

by

Dio Synodinos

BT