Rajesh Patel brought once again to my attention the fact that many developers assume an ORM framework protects you from SQL injection. SQL or HQL or whatever injection, is just exploiting a bug whose source is String concatenation. It has nothing to do with which tool you use to get, store, delete or update data [...]
Archives for Development
Assertions in Java
It was not until recently that I found this feature of the Java language. Runtime assertions, which can be enabled or disabled with JVM arguments, and derive in errors if failed. Such a feature can be very helpful in building quality Classes. In some way, when enabled, every object built with assertions in its code [...]
Posts