Blog

featured blog post

Find personally identifiable information (PII) and secrets exposed by your APIs

Do you know if personally identifiable information (PII), classified, or confidential business information has been exposed by your APIs. Now you can find out with Moderne, which uses rich type information to detect how sensitive data flows throughout your codebase.

Find PII in APIs

September 4, 2023

Find personally identifiable information (PII) and secrets exposed by your APIs

Do you know if personally identifiable information (PII), classified, or confidential business information has been exposed by your APIs. Now you can find out with Moderne, which uses rich type information to detect how sensitive data flows throughout your codebase.

August 23, 2023

Migrating from Hamcrest to AssertJ with OpenRewrite and Moderne

Learn how to quickly and easily migrate from the Hamcrest assertion library to AssertJ. Get tech stack liquidity with OpenRewrite and Moderne.

Micronaut framework 4.0 release incorporates auto-upgrade with OpenRewrite recipes

Automating framework upgrades benefits both the users and the maintainers. We celebrate the work of Micronaut framework 4 maintainers to enable their users to migrate automatically on the day of the release.

How to use generative AI for automating code remediation at scale

Moderne has developed a novel approach to automate code remediation at scale that uses deep learning. Learn why scalable auto-remediation needs rules, not probabilities and what Moderne's deep learning system is all about.

Auto-remediating code at scale with lossless semantic tree and generative AI

Catch this on-demand webinar about the technical innovations behind Moderne's automated code remediation platform. Learn about the Lossless Semantic Tree and how we're using generative AI for code. If you’re getting up to speed on AI/ML for code, this session is a good primer as well.

Dependency updates unmasked: Version bumps don’t keep your code secure

In this blog post, we bust the myth that most open-source security vulnerabilities can be fixed with patch version bumps. We analyze real data to show you why it's inaccurate. In actuality, the majority of security dependencies require potential source code changes. Keep reading for the full analysis.

O’Reilly report: Automated code remediation and securing the software supply chain

Read our book to learn the patterns, practices, and tech behind automated code remediation that enable your developers to gain back thousands of hours, stay ahead of security vulnerabilities, and position your organization to outmaneuver the competition.

The role of auto-remediation in DevSecOps: Improving security and speeding up development

There’s no longer a need for development teams to make daily decisions on whether to release software on time or improve code security and quality. They can do both by employing automated code remediation as part of a DevSecOps practice. Read on to learn more.

Conversations in automated code remediation at Devnexus 2023

Recap of Moderne's participation at Devnexus 2023, including two conversations with the DevOps Speakeasy podcast team.

How to rapidly migrate Spring frameworks

Migrating to new Spring Framework and Spring Boot versions? Want to go way faster? Safely take advantage of new features? Watch this on-demand episode of VMware's “The Golden Path to Spring One” developer learning series and learn how to do both with automated remediation.

Case study: Improving code security with continuous software modernization

In this case study, Choice Hotels explains how they overcame the challenge of maintaining their codebase with Moderne’s automated code remediation.

The future of AppSec: Emerging trends and new best practices

Explore existing practices and emerging trends in application security (AppSec) to better protect your software. And we’ll ask (and answer) the question: Should the security of your codebase be the responsibility of individual developers?

Code authorship vs. code remediation

Just as the traditional technical debt was addressed via refactoring, this new type of technical debt plaguing our modern assembled applications can also be addressed by expanding on refactoring capabilities. These activities are highly repetitive across organizations as everyone integrates some subset of the same third-party components to create business value. This high level of repeatability points us to automation.

Case study: Improving risk profile and DevEx with automated code remediation in financial services

With Moderne, our customer gained full-fidelity insight into their codebase and the ability to automate source code remediation at scale. Now their development teams can reduce business risk and add more business value every day.

How Axon Framework handles breaking changes through OpenRewrite

If you're an open source maintainer who wants to provide an easier path for your users to upgrade, check out what the Axon Framework developers have done. They have incorporated OpenRewrite migration recipes into their releases to automate source code changes—even handling breaking changes.

January 30, 2023

Moderne achieves SOC 2 Type 2 certification

By achieving SOC 2 Type 2 certification, Moderne has demonstrated its commitment to keeping our customers’ source code secure, enabling our customers to confidently use our platform.

January 19, 2023

Auto-remediation of code for continuous software modernization

Continuous software modernization is driving better security and new efficiencies in code development, freeing developers from repetitive, tedious tasks and enabling the delivery of more business value. Enterprises are using continuous software modernization to automate software upkeep ranging from the mundane, day-to-day code clean-up tasks to security vulnerability remediation to large scale software migrations across multiple dependencies. Moderne, the pioneer of continuous software modernization, enables you to operationalize the practice at scale for your organization.

January 19, 2023

What we know so far about generative AI applications to mass refactoring.

Generative AI is best in single-point suggestive applications. Rule-based systems are best in multi-point authoritative applications. There is a tradeoff between recipe development speed and manual review time.

January 17, 2023

Lossless Semantic Trees: The key to restoring creativity to software engineering

We are familiar with the shortcomings of text of course. Software maintenance automation starts with a Lossless Semantic Tree.

January 9, 2023

"Freedom and responsibility" is great for platform engineering.

The best solutions emerge when centrally forced change is anti-cultural. Diffusion of responsibility causes mass communication as a tool to falter.

January 8, 2023

"The SDLC is a relay race between systems of record and automation."

Tooling connects this race in perfect alternation. No one company can own the race, nor should they.

January 7, 2023

The software industrial revolution is here, but migration is manual?

Industrialized production requires industrialized maintenance. Migration engineering can be automation rather than clerical work. We are too far along the industrialization curve for migration engineering to continue to be manual.

App modernization is the missing piece of devops

Application modernization goes hand-in-hand with security, performance, and agility. It has also been traditionally laborious. Automated software modernization is the missing piece of devops.

Moderne achieves SOC 2 Type 1 certification

We wanted to share some exciting news: we’ve successfully completed our SOC 2 Type 1 audit! We prioritized this audit as part of an ongoing commitment to holding ourselves to the highest standards for securing customer code.

What does semantic refactoring look like?

The first time you see automated refactoring that takes advantage of semantic information, it seems like magic.

The gateway drug to mass, automated refactoring is technical debt

Automating the menial tasks that are often required when addressing technical debt brings value to your users.

Why is technical debt often de-prioritized in an agile environment?

It can often be hard to quantify the benefit of addressing technical debt until there is some "triggering" event that suddenly makes it important. This can leave organizations scrambling as they react to the current crisis at hand. Automation that uses semantic information can help address technical debt before it becomes a problem

Observers for AST nodes in OpenRewrite

Inspired by a feature in JavaParser 3.0's first milestone release, we decided to add an event-driven system for observation of changes to AST nodes.

October 12, 2021

What made this change?

Product announcements, new features and best practices for OpenRewrite and Moderne SaaS.

October 4, 2021

Basic Groovy and Gradle support

Product announcements, new features and best practices for OpenRewrite and Moderne SaaS.

No results! Try adjusting your filters or check back at a later time for more content.