JUnit 5 released

5th version of Java module testing framework released 
11 September 2017   1124

5th version of JUnit testing framework released. 

What is JUnit?

JUnit is a unti testing library for Java software.
Created by Kent Beck and Eric Gamma, JUnit belongs to the family of xUnit frameworks for various programming languages originating in the Kent Beck SUnit for Smalltalk. JUnit spawned an ecosystem of extensions - JMock, EasyMock, DbUnit, HttpUnit, and so on.


  • junit.framework.Assert
    • assertEquals
    • assertFalse
    • assertNotNull
    • assertNull
    • assertNotSame
    • assertSame
    • assertTrue
  • junit.framework.TestCase extends junit.framework.Assert
    • run
    • setUp
    • tearDown

What's new in JUnit 5?

Unlike previous versions of JUnit, JUnit 5 is composed of several different modules from three different sub-projects.

JUnit 5 = JUnit Platform + JUnit Jupiter + JUnit Vintage

The JUnit Platform serves as a foundation for launching testing frameworks on the JVM. It also defines the TestEngineAPI for developing a testing framework that runs on the platform. Furthermore, the platform provides a Console Launcher to launch the platform from the command line and build plugins for Gradle and Maven as well as a JUnit 4 based Runner for running any TestEngine on the platform.

JUnit Jupiter is the combination of the new programming model and extension model for writing tests and extensions in JUnit 5. The Jupiter sub-project provides a TestEngine for running Jupiter based tests on the platform.

JUnit Vintage provides a TestEngine for running JUnit 3 and JUnit 4 based tests on the platform.

All changes for all JUnit 5x versions available here

Visit official website for more information.

Sonatype to Create Vulnerability Checker Tool

New tool is called DepShield and available in the "Security" section of the GitHub Marketplace
16 August 2018   110

Sonatype has introduced a tool for developers called DepShield, which checks the code on GitHub for vulnerabilities.

The free version of the service is looking for vulnerabilities in the OSS Index database and gives recommendations on how to fix them. In the commercial version, you can configure automatic fixing of problems. Also in DepShield there are:

  • work with the Apache Maven framework;
  • View a list of known vulnerabilities in GitHub's Issue Tracker;
  • determine the range of versions for each vulnerability.


DepShield is available in the "Security" section of the GitHub Marketplace.

GitHub has introduced two new features that will help improve security and simplify the recovery of accounts. For this, the company recommends setting a strong password and two-factor authentication.