Sign up to save your podcasts
Or
Share Modernize or Die® - CFML News for November 16th, 2021 - Episode 126
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Modernize or Die® - CFML News for November 16th, 2021 - Episode 126
2021-11-16 Weekly News - Episode 126
Watch the video version on YouTube at https://youtu.be/83taKaR58xs
Hosts:
Eric Peterson - Senior Developer for Ortus Solutions
Thanks to our Sponsor - Ortus Solutions
The makers of ColdBox, CommandBox, ForgeBox, TestBox and almost every other Box out there.
A few ways to say thanks back to Ortus Solutions:
- Like and subscribe to our videos on YouTube.
- Subscribe to our Podcast on your Podcast Apps and leave us a review
- Sign up for a free or paid account on CFCasts, which is releasing new content every week
- Buy Ortus’s new Book - 102 ColdBox HMVC Quick Tips and Tricks on GumRoad (http://gum.co/coldbox-tips)
Patreon Support
We have 38 patreons providing 98% of the funding for our Modernize or Die Podcasts via our Patreon site: https://www.patreon.com/ortussolutions.
News and Events
Ortus Webinar for November - Javier Quintero - FORGEBOX Business Plan: Introducing Organizations and Teams
November 19th at 11:00 AM Central Time (US and Canada)
In this webinar, Javier Quintero, lead developer of FORGEBOX, will present the new features and the improved UI that is now available on FORGEBOX 6. Moreover, he’ll explore in depth the Business Plan that is directed towards organizations and teams so they can collaborate and support their software building needs. He will show us how to create a new organization, how you can add members to it with specific roles, and how you can control teams, members, packages and publish access.
with Javier Quintero
https://us02web.zoom.us/meeting/register/tZclfuGopjkiG9TIMoC93YbKIcLM1ok_KKlw
ICYMI - Mid Michigan CFUG Meeting - Using AI and machine learning along with ColdFusion to build a smarter call center with Nick Kwiatkowski
Tuesday 11/9/21 at 7 pm eastern
Using AI and machine learning along with ColdFusion to build a smarter call center at the next Mid-Michigan CFUG meeting Tuesday 11/9/21 at 7 pm eastern.
Michigan State University’s, Nick Kwiatkowski, will be showing how to create voice and text-based chat bots that you can deploy to your contact centers (and help desks!) to help automate frequently asked questions.
Recording - check Facebook group
ICYMI - Online CF Meetup - "Avoiding Server-Side Request Forgery (SSRF) Vulns in CFML", with Brian Reilly
Thursday, November 11, 2021 - 9:00 AM to 10:00 AM PST
Server-Side Request Forgery (SSRF) vulnerabilities allow an attacker to make arbitrary web requests (and in some cases, other protocols too) from the application environment. Exploiting these flaws can lead to leaking sensitive data, accessing internal resources, and under certain circumstances, remote command execution.
Several ColdFusion/CFML tags and functions can process URLs as file path arguments -- including some tags and and functions that you might not expect. If these tags and functions process unvalidated user-controlled input, this can lead to SSRF vulnerabilities in your applications. In addition to providing a list of affected tags and functions, I'll cover some approaches for identifying and remediating vulnerable code. My goal for this talk is to raise awareness about what may be a security blindspot for some ColdFusion/CFML developers.
https://www.meetup.com/coldfusionmeetup/events/281850930/
Recording: https://www.youtube.com/watch?v=-wu6cRZcRx0
CFCasts Content Updates
https://www.cfcasts.com
Just Released
- SoapBox - ColdBox Anniversary Edition with Brad Wood
Coming this week
- Youth Trainings - Universidad Don Bosco
A new series of ForgeBox coming very soon
Send your suggestions at https://cfcasts.com/support
Conferences and Training
Deploy by Digital Ocean - THIS WEEK
THE VIRTUAL CONFERENCE FOR GLOBAL DEVELOPMENT TEAMS
November 16-17, 2021
https://deploy.digitalocean.com/home
AWS re:Invent
NOV. 29 – DEC. 3, 2021 | LAS VEGAS, NV
CELEBRATING 10 YEARS OF RE:INVENT
Virtual: Free
In Person: $1799
https://reinvent.awsevents.com/
Postgres Build
Online - Free
Nov 30-Dec 1 2021
https://www.postgresbuild.com/
ITB Latam 2021
December 2-3, 2021
Into the Box LATAM is back and better than ever! Our virtual conference will include speakers from El Salvador and all over the world, who'll present on the latest web and mobile technologies in Latin America.
Registration is completely free so don't miss out!
ITB Latam Schedule Posted
https://latam.intothebox.org/
Adobe ColdFusion Summit 2021
December 7th and 8th - Virtual
Agenda is out!!!
@Adobe @coldfusion #CFSummit2021 keynote we will be featuring @ashleymcnamara! Her talk will focus on the history & future of DevRel how we got here & where we're going.
2 tracks - 1 all CFML - the other a mix of CFML and semi-related topics
Register for Free - https://cfsummit.vconfex.com/site/adobe-cold-fusion-summit-2021/1290
Blog - https://coldfusion.adobe.com/2021/09/adobe-coldfusion-summit-2021-registrations-open/
jConf.dev
Now a free virtual event
December 9th starting at 8:30 am CDT/2:30 pm UTC.
https://2021.jconf.dev/?mc_cid=b62adc151d&mc_eid=8293d6fdb0
VueJS Nation Conference
Online Live Event
January 26th & 27th 2022
Register for Free
Call for Speakers is open until Dec 31 2021
https://vuejsnation.com/
More conferences
Need more conferences, this site has a huge list of conferences for almost any language/community.
https://confs.tech/
Blogs, Tweets and Videos of the Week
Blog - Charlie Arehart - Should you “bother” to file bug reports at tracker.adobe.com? Yes you should
I just wanted to offer a quick plug to get folks to please consider filing bugs (and feature requests) at the Adobe site for tracking them, https://tracker.adobe.com. I’ve blogged before about how it can be used for more than most may realize. What I want to share here is that it’s not a “waste of time to bother”.
Some may wonder first, “why is is worth pointing out Tracker? Doesn’t everyone know about it?” The answer to the second question is “no”: many do NOT know about it. But the more important question may be the first, and it’s the real reason I’m writing this post.
https://coldfusion.adobe.com/2021/11/should-you-bother-to-file-bug-reports/
Blog - Ben Nadel - Phill Nacelli's SQL Tip Is Making My CFQuery Upgrades In ...
View all episodes
By Ortus Solutions
5
77 ratings
2021-11-16 Weekly News - Episode 126
Watch the video version on YouTube at https://youtu.be/83taKaR58xs
Hosts:
Eric Peterson - Senior Developer for Ortus Solutions
Thanks to our Sponsor - Ortus Solutions
The makers of ColdBox, CommandBox, ForgeBox, TestBox and almost every other Box out there.
A few ways to say thanks back to Ortus Solutions:
- Like and subscribe to our videos on YouTube.
- Subscribe to our Podcast on your Podcast Apps and leave us a review
- Sign up for a free or paid account on CFCasts, which is releasing new content every week
- Buy Ortus’s new Book - 102 ColdBox HMVC Quick Tips and Tricks on GumRoad (http://gum.co/coldbox-tips)
Patreon Support
We have 38 patreons providing 98% of the funding for our Modernize or Die Podcasts via our Patreon site: https://www.patreon.com/ortussolutions.
News and Events
Ortus Webinar for November - Javier Quintero - FORGEBOX Business Plan: Introducing Organizations and Teams
November 19th at 11:00 AM Central Time (US and Canada)
In this webinar, Javier Quintero, lead developer of FORGEBOX, will present the new features and the improved UI that is now available on FORGEBOX 6. Moreover, he’ll explore in depth the Business Plan that is directed towards organizations and teams so they can collaborate and support their software building needs. He will show us how to create a new organization, how you can add members to it with specific roles, and how you can control teams, members, packages and publish access.
with Javier Quintero
https://us02web.zoom.us/meeting/register/tZclfuGopjkiG9TIMoC93YbKIcLM1ok_KKlw
ICYMI - Mid Michigan CFUG Meeting - Using AI and machine learning along with ColdFusion to build a smarter call center with Nick Kwiatkowski
Tuesday 11/9/21 at 7 pm eastern
Using AI and machine learning along with ColdFusion to build a smarter call center at the next Mid-Michigan CFUG meeting Tuesday 11/9/21 at 7 pm eastern.
Michigan State University’s, Nick Kwiatkowski, will be showing how to create voice and text-based chat bots that you can deploy to your contact centers (and help desks!) to help automate frequently asked questions.
Recording - check Facebook group
ICYMI - Online CF Meetup - "Avoiding Server-Side Request Forgery (SSRF) Vulns in CFML", with Brian Reilly
Thursday, November 11, 2021 - 9:00 AM to 10:00 AM PST
Server-Side Request Forgery (SSRF) vulnerabilities allow an attacker to make arbitrary web requests (and in some cases, other protocols too) from the application environment. Exploiting these flaws can lead to leaking sensitive data, accessing internal resources, and under certain circumstances, remote command execution.
Several ColdFusion/CFML tags and functions can process URLs as file path arguments -- including some tags and and functions that you might not expect. If these tags and functions process unvalidated user-controlled input, this can lead to SSRF vulnerabilities in your applications. In addition to providing a list of affected tags and functions, I'll cover some approaches for identifying and remediating vulnerable code. My goal for this talk is to raise awareness about what may be a security blindspot for some ColdFusion/CFML developers.
https://www.meetup.com/coldfusionmeetup/events/281850930/
Recording: https://www.youtube.com/watch?v=-wu6cRZcRx0
CFCasts Content Updates
https://www.cfcasts.com
Just Released
- SoapBox - ColdBox Anniversary Edition with Brad Wood
Coming this week
- Youth Trainings - Universidad Don Bosco
A new series of ForgeBox coming very soon
Send your suggestions at https://cfcasts.com/support
Conferences and Training
Deploy by Digital Ocean - THIS WEEK
THE VIRTUAL CONFERENCE FOR GLOBAL DEVELOPMENT TEAMS
November 16-17, 2021
https://deploy.digitalocean.com/home
AWS re:Invent
NOV. 29 – DEC. 3, 2021 | LAS VEGAS, NV
CELEBRATING 10 YEARS OF RE:INVENT
Virtual: Free
In Person: $1799
https://reinvent.awsevents.com/
Postgres Build
Online - Free
Nov 30-Dec 1 2021
https://www.postgresbuild.com/
ITB Latam 2021
December 2-3, 2021
Into the Box LATAM is back and better than ever! Our virtual conference will include speakers from El Salvador and all over the world, who'll present on the latest web and mobile technologies in Latin America.
Registration is completely free so don't miss out!
ITB Latam Schedule Posted
https://latam.intothebox.org/
Adobe ColdFusion Summit 2021
December 7th and 8th - Virtual
Agenda is out!!!
@Adobe @coldfusion #CFSummit2021 keynote we will be featuring @ashleymcnamara! Her talk will focus on the history & future of DevRel how we got here & where we're going.
2 tracks - 1 all CFML - the other a mix of CFML and semi-related topics
Register for Free - https://cfsummit.vconfex.com/site/adobe-cold-fusion-summit-2021/1290
Blog - https://coldfusion.adobe.com/2021/09/adobe-coldfusion-summit-2021-registrations-open/
jConf.dev
Now a free virtual event
December 9th starting at 8:30 am CDT/2:30 pm UTC.
https://2021.jconf.dev/?mc_cid=b62adc151d&mc_eid=8293d6fdb0
VueJS Nation Conference
Online Live Event
January 26th & 27th 2022
Register for Free
Call for Speakers is open until Dec 31 2021
https://vuejsnation.com/
More conferences
Need more conferences, this site has a huge list of conferences for almost any language/community.
https://confs.tech/
Blogs, Tweets and Videos of the Week
Blog - Charlie Arehart - Should you “bother” to file bug reports at tracker.adobe.com? Yes you should
I just wanted to offer a quick plug to get folks to please consider filing bugs (and feature requests) at the Adobe site for tracking them, https://tracker.adobe.com. I’ve blogged before about how it can be used for more than most may realize. What I want to share here is that it’s not a “waste of time to bother”.
Some may wonder first, “why is is worth pointing out Tracker? Doesn’t everyone know about it?” The answer to the second question is “no”: many do NOT know about it. But the more important question may be the first, and it’s the real reason I’m writing this post.
https://coldfusion.adobe.com/2021/11/should-you-bother-to-file-bug-reports/
Blog - Ben Nadel - Phill Nacelli's SQL Tip Is Making My CFQuery Upgrades In ...