Self-replicating. CI-aware. Token-hijacking. #ShaiHulud infected 200+ npm packages in a day—automatically. @spoole167 calls it a turning point for software supply chain risk. Stop the next one: https://t.co/mfNE5SU5Ja #CI/CD #DevSecOps #SupplyChainSecurity #JAVAPRO #DevOps

When vulnerabilities hit software supply chains, the fallout isn’t always financial—it’s personal. @spoole167 connects the dots from dependency hell to real harm. Read his article. It might change how you treat your next CVE: https://t.co/raakcZ1L4s #DevSecOps #OpenSource #Java

Episode 8 of 10xInsights - Jules May talks Quantum for your digital audio pleasure. https://t.co/GMuGwP5OAZ

Hey UK speakers , aspiring speakers , or friends of them - the LJC Party on the 2nd Dec has space for people like you. 5 mins of your time gets you free admission to the first LJC Ignite Party event ever. Submit your talk here

December Party and an unConference from the @ljcjug. More fun than upgrading your legacy apps .. https://t.co/zLDkQJQC5E

This meme! 🤣

📢 CFP EXTENDED! You asked, we listened: The #JCON EUROPE 2026 #CallforPapers now runs until Oct 24 (23:59 UTC+2). Submit your talk, fix a pain, and showcase your #Tech expertise. First timers welcome! 🔗 https://t.co/josEpx9FJG #JCON2026 #Java #CFP #TechConference

@manojnp @li_haoyi @soujava @VKazulkin @sascha242 @MBoegie @vilojona @javisan81 @yostane @spoole167 @rpelisse @wbauweraerts 💬 Which article or author inspired you most? Share your thoughts & favorite insights below! 🙏 Thanks to all our amazing contributors & readers — your support makes every #JAVAPRO issue possible. 👉 Subscribe for free & join the Java community:

Portable tests run anywhere, not just in #QA. @spoole167 makes the case for shared test ownership—without slowing devs down. His model weighs runtime, flakiness & bug yield. Want faster feedback loops? Read: https://t.co/v5Vv04EOsY @EclipseFdn #ShiftLeft #SoftwareTesting #Java

Why attack one company… …when you can compromise one maintainer and reach millions? #ShaiHulud scaled like SaaS. As @spoole167 highlights, supply chain attacks are now business models. Read more: https://t.co/mfNE5SU5Ja #DevSecOps #SupplyChainSecurity #JAVAPRO #DevOps

After a longer-than-anticipated break, the next episode of 10xInsights with @KadiGrigg and @brunoborges hits the digital airways https://t.co/yOsmXoLDzQ

@spoole167 and I are back with our podcast 10X Insights! Kicking this season off, we are speaking with the one and only @brunoborges about #vibecoding If this pic doesn't make you listen, IDK what will 🤷‍♀️ Tune in- https://t.co/3ukXISSW6s

What makes #ShaiHulud different? It’s the first self-propagating worm in the #JavaScript ecosystem. Not just malware—but #CI/CD-aware, developer-credential-stealing & auto-republishing. This changed the threat model forever. @spoole167 explains https://t.co/mfNE5SU5Ja #DevSecOps

#AI won’t replace your dev team. But it can act like a junior dev—fast, helpful, and… occasionally wrong. @spoole167’s pragmatic breakdown shows where AI delivers value in dev—and where it silently adds risk. https://t.co/vwL2thxddX #AIinSDLC #Java @diffblueHQ @datadoghq

Devs don’t need another #AI that spits boilerplate. They need tools that reduce risk: fewer bugs, smarter tests, faster PRs. @spoole167 maps out where AI helps—and where it quietly adds tech debt. Read his #JAVAPRO article: https://t.co/vwL2thxddX #AIinSDLC #Java @diffblueHQ

This MIT paper just broke my brain. Everyone keeps saying LLMs can't do real logical reasoning. Turns out we've just been teaching them wrong this whole time. These researchers built something called PDDL-INSTRUCT that actually teaches models to think through planning problems

An excellent 1st edition of @Ai4Devs yesterday in Amsterdam, thanks to @JoostKW @vilojona and many many others, including @starbuxman @prpatel!

#DadJokes Happy Sunday

Let's be scared and frightened about supply chain #security by the great @spoole167 at @javazone #javazone25

A few minutes until my scary talk on AI, cybercrime and supply chain beachheads at @javazone