A practical breakdown of the most common Spring Boot performance bottlenecks — and how we optimized our API from 3 seconds to 200 ms.

AI copilots like GitHub Copilot and Cursor can push production-ready code instantly—but CI-only security scans catch issues after merge, when it’s too late. In this live session, see how to detect vulnerabilities in real time inside the IDE, validate reachability before merge, apply guardrails to AI-generated code, and auto-fix safely. Includes live demo securing Copilot and AI agent workflows. 📅 March 11, 2026 👉 Register https://www.linkedin.com/events/7432784645383110656/

AI is now a core execution layer in software delivery. In 2025, attackers exploited automation, trusted pipelines, and AI-generated code instead of vulnerabilities. This report explains why traditional AppSec signals failed and what must change in 2026.

2025 exposed a shift in software supply chain attacks. AI-assisted malware, self-propagating techniques, and widespread trust abuse altered how compromises spread across dependencies, registries, and CI/CD pipelines.

This upcoming LinkedIn Live SafeDev Talk examines what truly changed, why long-held security assumptions are breaking down, and what development teams need to rethink as they head into 2026.

📅 January 20th | ⏰ Time: 𝟏𝟔:𝟑𝟎 (𝐂𝐄𝐒𝐓)/𝟏𝟎:𝟑𝟎 (𝐄𝐃𝐓)

Join Us!

In Securing the Museum of Software in an AI Coding Tsunami, Eran Kinsbruner argues that software now consists of legacy, modern, and rapidly AI-generated code, creating unprecedented complexity and risk. Traditional AppSec can’t keep up with machine-speed development. He calls for a unified, developer-first, agentic AppSec platform that embeds security into coding workflows to prevent, fix, and secure all code eras before vulnerabilities reach repositories.

OpenTelemetry deprecates Zipkin exporters in favor of native OTLP support. Migration paths and timeline through December 2026.

OpenTelemetry proposes stability changes: stable-by-default distributions, decoupled instrumentation, and epoch releases for production deployments.

Sudden latency spikes rarely have a single cause. This blog shows how to uncover the real source using traces, histograms, and modern debugging signals.

Last9 is built to work with high-cardinality telemetry, and we’ve been covering it in detail through our series. This piece looks at a familiar pain: issues that only show up for a specific tenant or deployment. Why does that context disappear in most monitoring setups?