Clojure Deref (Aug 27, 2021)

Clojure Deref (Aug 27, 2021)

27 August 2021
Alex Miller

Welcome to the Clojure Deref! This is a weekly link/news roundup for the Clojure ecosystem. (@ClojureDeref RSS)


I’d like to highlight the SciCloj community this week. This recent video is a great overview of what’s going on. They are working on a brand new web page which will be getting improved in the coming weeks.

So many people doing great work in this area and I appreciate the continued time and attention here. This is an area where Clojure can (and does!) shine but people are not as familiar with it as an option. Check it out and get involved if you’re interested.

In the core

This week I made another pass on the patch for lightweight keyword aliases based on Rich’s feedback and updated the patch on CLJ-2123. I’ve also been looking at the idea of providing some wrapper functions in Clojure core for commonly used Java functions and we’re investigating what would be most useful there - early leading candidates are number parsing, math functions, and uuid stuff. As always, this is investigative work that may or may not actually result in something.

Fogus has continued to work on update-keys and update-vals functions, the protocol preference issue in CLJ-1879, and several things for the Cognitect aws-api.

Libraries and Tools

New releases and tools this week:

Video Throwback

Many, many years ago Aaron Bedra did a talk at Clojure/conj highlighting the (at the time) poor default state of web app security in Clojure. Because the Clojure community is awesome, that quickly resulted in a lot of changes to the defaults in Ring, Compojure, etc and fixed many of the problems.

Several years later, Joy Clark did a talk called Simple AND Secure? at EuroClojure 2017. This talk goes through the OWASP Top 10 areas (for 2017) and looks at what Clojure provides for web apps in those areas. I think most of it is still relevant and worth watching (but keep in mind this is 4 years old).

I think now is a good time for an update, both on the threats and the state of Clojure with respect to them. If you’re pitching things to a Clojure conference in the next year, I think this would be a great topic!