Real-Life considerations when working with dependencies in Java:

- How to find & trust the right dependencies?
- How to consistently keep them updated?
- How to protect against vulnerabilities?
- How to handle team backlash against adding new dependencies?

And more :)

► Timestamps

00:00 Intro
01:01 Old-school Dependency Management
02:49 BOM Approach
05:40 How to keep your dependencies up-to-date
08:43 How to find out about dependency vulnerabilities
09:52 How to "trust" dependencies
13:05 How to find dependencies if you don't know yet what you actually need (& native dependencies)
16:27 Outro


► Recommended Watching
Maven Crash Course: https://youtu.be/Xatr8AZLOsE
Gradle Crash Course: https://youtu.be/gKPMKRnnbXU

► FOLLOW ME

https://twitter.com/MarcoBehler
https://www.marcobehler.com

Marco Codes

A practical walkthrough of Java dependency management covering how to find and add dependencies using Maven coordinates or IntelliJ IDEA's Package Search, the Bill of Materials (BOM) approach used by Spring Boot, updating dependencies via CLI or IDE tools, detecting vulnerabilities through IntelliJ's built-in warnings, and evaluating unfamiliar libraries using GitHub metrics and community trust signals. Includes a real-world anecdote about corporate dependency approval processes and a case study on choosing an image metadata extraction library.

How To Approach Dependency Management in Java