Author here. There's some truth to what he's saying. One thing I've been meaning... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		jart on March 2, 2017 \| parent \| context \| favorite \| on: Operation Rosehub – patching thousands of open-sou... Author here. There's some truth to what he's saying. One thing I've been meaning to do is get my hands on all the Maven pom.xml files that exist, so I can load them into a Guava Multimap (my graph database of choice) and figure out every single artifact that will transitively inherit vulnerable collections on the class path.

CydeWeys on March 3, 2017 [–]

Try Neo4j?

jart on March 3, 2017 | [–]

Why use Neo4j for a program you're going to run once and not store the data? Multimap<T, T> works great.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact