This video was recorded in December 2021, at the time when an injection vulnerability was found in log4j2, affecting a lot of developers and systems around the world. It is not meant as a critique of log4j2 developers, or of open source, but rather discusses the systemic issue of trust in 3rd party libraries, defined as libraries being outside your control. Of course, this video is by far not a complete analysis, but aims to be a conversation starter. So join the conversation!
Alex Bolboaca is a programmer, CTO, author, trainer and coach at Mozaic Works.