腾讯网

“前缀替换”攻击引发恐慌:高度仿真的“Jackson”冒牌库入侵Maven ...

长期被视为比npm更安全的Java生态系统,近日遭遇一起新型且高度复杂的软件供应链攻击。Aikido Security最新报告披露,Maven中央仓库中发现一个伪装成常用Jackson JSON库的恶意组件,攻击者通过精妙的"前缀替换"手法欺骗开发者 ...
InfoWorld

Java XML and JSON: Document processing for Java SE, Part 1: SAXON and Jackson

XML and JSON are important to me, and I’m grateful to Apress for letting me write an entire book about them. In this article I will briefly introduce the second edition of my new book, Java XML and ...