https://speakerdeck.com/cat_edelveis 2026-04-09 10:03:31 -0400 "In the blue corner: the undisputed heavyweight industry standard, the king of the ORMs, weighing in with a decade of dominance and millions of Stack Overflow answers... JPA! In the red corner: the lean, type-safe challenger, the Sultan of SQL, the elite defender of the database... jOOQ!" This session isn't just a talk; it’s a technical title fight. We’re going glove-to-glove on the issues that matter: the N+1 knockout, the "Criteria API" clinch, the power of code generation, and raw runtime performance. After every round, the referee (the audience) will vote to decide who landed the winning blow. Who will bring home the belt, and who will be left on the canvas? Your vote decides the champion. "In the blue corner: the undisputed heavyweight industry standard, the king of the ORMs, weighing in with a decade of dominance and millions of Stack Overflow answers... JPA! In the red corner: the lean, type-safe challenger, the Sultan of SQL, the elite defender of the database... jOOQ!" This session isn't just a talk; it’s a technical title fight. We’re going glove-to-glove on the issues that matter: the N+1 knockout, the "Criteria API" clinch, the power of code generation, and raw runtime performance. After every round, the referee (the audience) will vote to decide who landed the winning blow. Who will bring home the belt, and who will be left on the canvas? Your vote decides the champion. Wed, 22 Apr 2026 00:00:00 -0400 https://speakerdeck.com/cat_edelveis/the-persistence-heavyweight-championship-jpa-vs-jooq https://speakerdeck.com/cat_edelveis/the-persistence-heavyweight-championship-jpa-vs-jooq Your mission is to turn a bloated CVE-infested container image into a hardened low-noise image with low vulnerability exposure and clear operational posture. You have 45 minutes before the explosive attack hits. Mission possible! This session provides a straight path towards building more secure and maintainable Java container images. We will identify the key culprits such as stale dependencies, outdated base, lack of provenance, and excessive privileges. Then, we will draft a step-by-step plan to: - Pick a minimal and well-maintained base image, - Shrink privileges, - Prove provenance with version pinning, signatures and SBOMs, - Scan and classify with CVSS rules to cut noise and fix what’s exploitable, - Automatically monitor for updates. Expect a before/after scan comparison, copy-and-paste Dockerfile instructions, verification checklist, and a clear and reproducible path towards hardened Java container images that provide an impenetrable lock-box for your applications. Your mission is to turn a bloated CVE-infested container image into a hardened low-noise image with low vulnerability exposure and clear operational posture. You have 45 minutes before the explosive attack hits. Mission possible! This session provides a straight path towards building more secure and maintainable Java container images. We will identify the key culprits such as stale dependencies, outdated base, lack of provenance, and excessive privileges. Then, we will draft a step-by-step plan to: - Pick a minimal and well-maintained base image, - Shrink privileges, - Prove provenance with version pinning, signatures and SBOMs, - Scan and classify with CVSS rules to cut noise and fix what’s exploitable, - Automatically monitor for updates. Expect a before/after scan comparison, copy-and-paste Dockerfile instructions, verification checklist, and a clear and reproducible path towards hardened Java container images that provide an impenetrable lock-box for your applications. Thu, 09 Apr 2026 00:00:00 -0400 https://speakerdeck.com/cat_edelveis/mission-possible-the-45-minute-path-to-bullet-proof-java-container-images https://speakerdeck.com/cat_edelveis/mission-possible-the-45-minute-path-to-bullet-proof-java-container-images