Assertion Libraries for Java: AssertJ versus Google Truth

When formulating assertions, JUnit quickly reaches its limits. The AssertJ and Google Truth libraries offer new possibilities ...
CSO Online

Critical sandbox bypass fixed in popular Thymeleaf Java template engine

The 9.1-CVSS vulnerability enables attackers to circumvent RCE protections in the de facto template engine for the Java Spring ecosystem.