Skip to main content
Brian Vermeer

Brian Vermeer

Staff Developer Advocate

Brian is well-known in the Java community. He is a Developer Advocate for Snyk, Java Champion, and Software Engineer with over a decade of hands-on experience creating and maintaining (web)applications. He is passionate about Java, (Pure) Functional Programming, and Cybersecurity. Brian is a JUG leader for the Virtual JUG and the NLJUG. He also co-leads the DevSecCon community and is a community manager for Foojay. He is a regular international speaker at mostly Java-related conferences like JavaOne, Devnexus, Devoxx, Jfokus, JavaZone, and many more.

Showing 13 - 24 of 75 records

wordpress-sync/feature-spring-security-auth-bypass
Blog

Exploring the Spring Security authorization bypass (CVE-2022-31692)

December 16, 2022

wordpress-sync/feature-snakeyaml-java-vuln
Blog

Unsafe deserialization vulnerability in SnakeYaml (CVE-2022-1471)

December 14, 2022

wordpress-sync/blog-hero-software-supply-chain-security
Blog

How to create SBOMs in Java with Maven and Gradle

October 31, 2022

Blog

Reviewing CVE-2022-42889: The arbitrary code execution vulnerability in Apache Commons Text

October 18, 2022

wordpress-sync/feature-java-dto-1
Blog

How to use Java DTOs to stay secure

October 11, 2022

wordpress-sync/hero-presentation
Blog

Best practices for managing Java dependencies

August 26, 2022

wordpress-sync/hero-safe-containers
Blog

10 best practices to build a Java container with Docker

August 24, 2022

wordpress-sync/hero-tsd-podcast-navy
Blog

Controlling your server with a reverse shell attack

August 10, 2022

wordpress-sync/blog-feature-security-alert-purple
Blog

Exploring CVE-2022-33980: the Apache Commons configuration RCE vulnerability

July 8, 2022

Blog

Building a secure CI/CD pipeline with GitHub Actions for your Java Application

June 27, 2022

wordpress-sync/blog-feature-snyk-policies
Blog

Spring4Shell extends to Glassfish and Payara: same vulnerability, new exploit

April 8, 2022

wordpress-sync/blog-feature-code-vulnerability-warning
Blog

Spring4Shell: The zero-day RCE in the Spring Framework explained

April 1, 2022