10x Insights
Wicked Good Development
Catchup with the ancestor of 10xInsights. Episodes below in reverse date order. Take some time to hear what industry experts have to say on open source, tech-debt, security and even Java usergroups
Developer and Open Source Contributor Stories at Devnexus Part 3
Luis Majano, Grace Jansen
May 14, 2022
This episode is three fold as we finish up the roundtable discussion on Devnexus 2022 and we get a chance to interview two more developers who contribute to the open source community. We connect with Luis Majano, CEO of Ortus Solutions and long-time computer engineer, about putting in the open source work. From using a 70/30 ratio to dedicate time building open source in between client work to getting the next generation involved in maintaining minor code fixes first-hand, hear how the level of work put in makes the difference in professional open source. We also learn with Grace Jansen, Developer Advocate at IBM, about how the preservation of open source collaboration will be the guiding light to pushing technology forward. Hear how her unique background in Biology gives her insight into methodologies and behaviors when it comes to responsiveness and resiliency.
Listen Developer and Open Source Contributor Stories at Devnexus Part 2
Brad Wood
May 12, 2022
Brad Wood, Software Architect at Ortus Solutions says “everybody should be secure” when it comes to open source security. Hear Brad’s distinctive perspective after occupying roles of both an open source maintainer and contributor. From the advantages of using ColdFusion to the effects of trust in development like abandonware and namespace confusion attacks, Brad covers it all with Wicked Good Development at DevNexus 2022.
Listen Developer and Open Source Contributor Stories at Devnexus Part 1
Maarten Mulders
May 11, 2022
This episode is the first in a mini-series from our experience at Devnexus 2022. It was an exciting time to learn from developers and capture wisdom from the open source community. The life of a contributor told by Maarten Mulders, Consultant, Trainer, and Technology Advocate at Info Support, plays out on Wicked Good Development during DevNexus 2022. Considering Apache Maven to be the cornerstone for Java development, hear how Maarten navigates fixing bugs, avoiding build breaks, and Java derivative languages.
Listen 
The Logic of Code Quality
Rohan Bhaumik, Sal Kimmich, Stephen Magill
Apr 13, 2022
Write code so good you don’t need documentation to go along with it. Achieving code quality that is measurable, efficient, and scalable across even the leanest development teams can feel like a stunt. Yet, the costs of growing tech debt make setting a standard a no-brainer. From defining code quality, how to measure it, and the best time to involve quality checks in the development process, join a comprehensive talk on the logic of high code quality. Coming straight from Sonatype in-house industry experts Product Manager Rohan Bhaumik, Developer Advocate Sal Kimmich, and VP of product innovation Stephen Magill.
Listen 
Women in Tech #Breaking the Bias
Ankita Lamba, Grace Lee, Santi Mulukutla, Sue Jasmin
Apr 13, 2022
“I’ll block, you run.” In this encouraging talk from four women in tech at Sonatype, hear how their career paths have shaped how they support mitigating and interrupting bias at work and ways to create environments that empower women to be their authentic selves every day. Join Senior Security Researcher Ankita Lamba, Product Manager Grace Lee, Customer Success Engineer Santi Mulukutla, and Director of Agile Coaching Sue Jasmin as they create space to discuss:-The importance of active sponsorship and mentorship-How to eliminate bias in the hiring process-Cultural limitations that affect bias in company cultures-Why cancel culture doesn’t work when it comes to inclusion.
Listen 
Spring4shell
Various security experts
Apr 02, 2022
Did Spring4Shell set the internet on fire again? Not so fast. In a special episode of Wicked Good Development, we dissect the zero-day RCE vulnerability in the Spring Framework dubbed Spring4Shell or Springshell. From comparisons to Log4j to how to remediate it and what versions on vulnerable, the experts on today’s show break down what we know so far about this new vulnerability. And most importantly, how to determine if you're affected.
Listen Java Queens at Devnexus 2023
Erin Schnable, Emily Jiang, Mary Gygleski, Holly Cummins
Apr 28, 2023
Java Queens at Devnexus 2023: Prepare for an insightful discussion with Java Champions Erin Schnable, Emily Jiang, Mary Gygleski, and Holly Cummins at Devnexus 2023. They sit down with Kadi Grigg and Theresa Mammarella for an unforgettable conversation about making an impact in the tech community. They cover topics like: Their unique journeys in tech Embracing the mindset of a lifelong learner The power of goal setting for personal growth The essential qualities of a great leader Why conference talks, like this one, fuel their passion and drive.
Listen 
Testcontainers with Oleg Šelajev
Oleg Šelajev
Apr 11, 2023
Ready to take a dive into the world of TestContainers? Join Kadi Grigg and Sonatype Developer Advocate Jamie Coleman as they sit down with the one and only Oleg Šelajev of AtomicJar, Inc., for an episode packed with insights and laughs. Together, they'll delve into the world of Testcontainers and uncover the secrets behind these powerful tools that have revolutionized the testing landscape. From the origin of Testcontainers to the crucial importance of reliability in testing, they'll cover it all and so much more.
Listen 
JUG aka The Java User Group
Steve Poole, Frank Greco, Sharat Chander
Mar 28, 2023
In our latest episode, we sit down with Steve Poole (Leader of London JUG | Director, Developer Relations, Sonatype), Frank Greco (Founder of NYJavaSIG | Director, Technology and Strategy, Crossroads Technologies), and Sharat Chander (Sr. Director, Java and Cloud Native Product Management and Developer Relations, Oracle). Java user groups (JUGs) have seen changes over the years due to the growing prominence of Java and a continuously maturing audience. We’ll be revisiting the late 90s/early 2000s when JUGs first started appearing. Listen in for answers to questions like: What was their purpose? What are they now? Why are JUGs a valuable community resource? How has the pandemic changed them?
Listen 
Central: A Look Back and a Look Forward
Brian Fox, Jason Swank, Joel Orlina
Mar 21, 2022
If you utilize Java or any other JVM, there’s a good chance you know the Maven Central repository. Today’s episode brings long-time maintainers and contributors of Maven Central, Brian Fox, Jason Swank, and Joel Orlina to the mic to rehash the early days of Maven Central, lessons learned from managing open source ecosystems, and bring insight into the platform’s practical software supply chain management capabilities of the past, present, and future.
Listen 
White House Unveils New National Cybersecurity Strategy
Jeff Wayman, Brian Fox
Mar 14, 2023
On March 2, 2023 the Biden-Harris administration made a historic move with the release of the National Cybersecurity Strategy. This is the first time the US government has taken a stance on product liability with regard to software. In this episode, Jeff Wayman–Conduit of Goodness at Sonatype–takes the mic to speak with Sonatype’s Co-founder and CTO, Brian Fox. Listen in as they break down important details of this historic new strategy, its meaning, and how it impacts you and your organization.
Listen 
Simon Brown on Visualizing Software Architecture
Simon Brown, Dann Conn, Sal Kimmich
Mar 03, 2023
When you interview your dream guest, the conversation is wicked good. In this episode, Kadi and co-host Sal Kimmich sit down with Simon Brown–creator of the C4 Software Architecture Model–and Developer Advocate Dann Conn. Topics of conversation include the ins and outs of the C4 model, how having a detailed architecture diagram can make or break you, and more. Tune in as we discuss the intention behind the model, best practices, and how critical it is for technical and non-technical folks alike to understand.
Listen 
Build Breaking and More with ABN AMRO's Ingmar Vis
Ingmar Vis
Feb 17, 2023
Join Kadi and guest co-host Sola Otudeko for a chat with ABN AMRO’s Ingmar Vis. Listen in as they discuss: The value of breaking builds. Why automation is key for agile development. Lessons he’s learned throughout his open source journey. What pushed him to give back to open source.
Listen 
Learning with Tom Cools
Tom Cools Theresa Mammarella
Feb 03, 2023
A day of celebration of the hard work and dedication done in the open source community and an opportunity to come together and share knowledge and experiences. At Wicked Good Development we thank open source maintainers and contributors for their endless pursuit of showcasing the power of open collaboration for the advancement of technology. In this episode, Kadi and guest co-host Theresa Mammarella invite open-source contributor, Tom Cools, to share his journey in the world of open source. Sit back and relax as we talk through why he got involved in the community, what his first project was, and best practices to make projects more accessible for new contributors.
Listen 
The Struggle With Open Source Licensing
Filipp Kofman, Adam Such
Jan 20, 2023
In this episode, Kadi and guest co-host, Dariush Griffin, sit down with Filipp Kofman (Partner, Davis Wright Tremaine LLC) and Adam Such (Solutions Architect, Sonatype) to discuss struggles with open source licensing. There’s not always a clear-cut answer on the best way to handle open source licensing, especially when it comes to managing your dependencies. Topics of discussion include ideas from legal and development perspectives, the struggles they face, and best practices for working together to reach mutually beneficial goals.
Listen 
Cross over with the Federal Tech Podcast
Stephen Magill John Gilroy
Jan 06, 2023
When an interview is that good, you need to share it! Sonatype's Dr. Stephen Magill joins Federal Tech host, John Gilroy, for a discussion on how software developers can be assured code they develop is safe. Listen in as they discuss topics that range from how even bespoke code needs new versions and improvements over time to other interesting aspects of software risk, like artifacts.
Listen Demystifying Tech Debt
Justin Young, Brad Cupit
Dec 16, 2022
In this episode, Kadi sits down with Sonatype’s Director of Product Management, Justin Young, and Engineering Manager, Brad Cupit to discuss all things tech debt. What is it? Can different types be treated the same? How do you quantify it? And more importantly, how do you prioritize it? Tune in and learn how you too can begin to understand your tech debt and begin to tactically manage it.
Listen Fall 2022 Maven Central Updates
Brian Fox, Joel Orlina, Jason Swank, Lakshmi Mohandas
Dec 02, 2022
This session features Brian Fox (CTO and Co-Founder), Joel Orlina (Engineering Manager, Maven), Jason Swank (Director of Engineering, Technical Operations) and Lakshmi Mohandas (Senior Product Manager). Listen in as they discuss Maven Central's relationship with Sonatype, its pain points and how we are addressing them, and the latest updates that make Maven more unified and powerful than before.
Listen 
James McLeod Shares His Journey to FINOS and Beyond
James McLeod
Nov 21, 2022
This session features open source war stories from James McLeod, Director of Community for FINOS–the Financial Technology vertical of the Linux Foundation. After years in FinTech as a bank software developer, James McLeod now works to create impactful open source technology and communities. He works closely with contributors from the world’s largest investment banks and cloud providers on a daily basis, providing experiences and insights we’re excited to share with our listeners.
Listen 
Starting Security Left
Various security experts
Feb 18, 2022
We're tackling the ongoing discussion about shifting security left - or really starting security left. What do developers need to understand about the current state of application security? How should they be involved in security decisions? What's involved in building secure code from the beginning? This episode wraps up on the topic of what questions organizations and developers should be asking themselves when it comes to their security practices.
Listen 
Ted Neward's Philosophy 101
Ted Neward, Steve Poole
Oct 21, 2022
What does philosophy have to do with software development? More than you might think! In this episode, hosts Kadi and Omar sit down with Technologist, Ted Neward and Developer Advocate, Steve Poole to discuss how philosophy is at the heart of everything. Ted provides great insight as to how his background has influenced his outlook on software development and why developers should be asking themselves the hard questions. As Ted puts it, “It is the hard questions that are usually the good ones that will lead you to a positive outcome.”
Listen Russ Eling Talks Founding OSS Consultants and Open Source Compliance
Russ Eling
Sep 22, 2022
In the latest episode, Russ Eling–Founder and CEO of OSS Consultants–sits down with Kadi Grigg and co-host A.J. Brown to discuss his journey with open source. Tune in to hear valuable lessons learned during his tenure as an Open Source Compliance Officer at General Motors and how that eventually led to the creation of OSS Consultants.
Listen The Secret Life of Maven Central
Joel Orlina
Aug 26, 2022
In this episode, Joel Orlina joins Kadi Grigg to provide insights and knowledge on “The Secret Life of Maven Central,” his talk given at Devoxx UK and OpenSFF Day. Joel sheds light on the previously unknown history of Maven Central and how it works under the covers. He also discusses how the Central team addresses critical security risks like dependency confusion and how it responded to security events such as Log4Shell, and most importantly, how you can get involved.
Listen Hacks & Ax: July Update
Ax Sharma
Aug 03, 2022
Ax Sharma, a security researcher at Sonatype and tech journalist at large, joins Kadi and Omar for his monthly malware update. Ax breaks down the latest on protestware and ransomware.
Listen 
Devoxx Poland Recap
Oleg Šelajev, Ana-Maria Mihalceanu, Brain Vermeer
Jul 15, 2022
After attending the Devoxx Poland Developer Conference in June in Krakow, Kadi and co-host Steve Poole sat down with speakers Oleg Šelajev, Developer Relations at Atomic Jar Inc, Ana-Maria Mihalceanu, Java Champion and Developer Advocate at Redhat, and Brain Vermeer, Java Champion and JUG Leader Netherlands about their key takeaways from the event, trends on cloud adoption, how hot the developer market is right now, and their favorite presentations (hint: they weren’t their own talks!).
Listen Vulnerability Drills: What’s the Intention, Habit, and Impact
Kadi, Omar, Developer Relations Team
Jun 30, 2022
What’s the Intention, Habit, and Impact: In this episode, Kadi and Omar sit down and chat with members of the Developer Relations team at Sonatype to discuss the value in engineering teams doing vulnerability drills. We now live in a world where it's not a matter of if you will get attacked, it’s now a matter of when you will get attacked. So what can you do to protect yourself when that does happen? Learn why this shouldn’t be viewed as an incident response but more as streamlining your operational and engineering levels that need to be in lockstep with one another.
Listen 
Evolution of Supply Chain Attacks
Jamie Whitehouse, Daryl Handley, Cody Nash, AJ Brown
Jun 09, 2022
For this episode, Jamie Whitehouse, Director of Product Management at Sonatype, joins Kadi as guest host. With the unique perspectives of a Product Manager, Engineering Manager Daryl Handley, Data Scientist Cody Nash, and principal Engineer AJ Brown, we dissect the evolution of software supply chain attacks and lessons learned. We’ll dive into how credit card fraud detection and supply chain attack detection is similar, the data science behind these systems, and the behavior of the developers.
Listen Cybersecurity Experts, Log4j, and Open Source
Three industry experts
Feb 03, 2022
Three industry experts with different ties to the world of software talk about the latest in software, from Log4j to today, and what remediation looks like for development teams. We discuss update behaviors in the development community and the risks associated with using old code. To round out our debut episode - we talk about the silent industrial revolution and who bears the burden of maintaining open source software.
Listen