Find JSRs
Submit this Search

Ad Banner

JCP EC Meeting Minutes: April 13, 2021

Executive Committee Meeting Minutes
for April 13, 2021


April 13, 2021




  • PMO Presentation
  • Personnel Changes
  • EC Stats
  • 2020 JCP Annual Summary
  • ISO Report Inquiry
  • Java in Education Update
  • Spec Lead Update, JSR 302 (Doug Locke)
  • Other Business


Tuesday, April 13, 2021
  • Heather VanCura

Executive Committee

  • Alibaba - Tianxiao Gu - present
  • ARM - Stuart Monteith - present
  • Bellsoft - Aleksei Voitylov - present
  • BNY Mellon - Chandra Guntur, Nikhil Nanivadekar, Don Raab - present
  • Marcus Biel - present
  • Eclipse Foundation - Paul Buck, Ivar Grimstad - present
  • Ken Fogel - present
  • Fujitsu - Kenji Kazumura - present
  • IBM - Tim Ellison, Mark Little - present
  • Intel - Steve Dohrmann - present
  • JetBrains - Anna Kozlova - present
  • London Java Community - Martijn Verburg - present
  • MicroDoc - Bruno Caballero - present
  • Oracle - Don Deutsch, Anish Karmarkar - present
  • SAP SE - Martin Doerr, Gotz Lindenmaier - present
  • SouJava - Otavio Santana - present
  • Tomitribe - Amelia Eiras - present
  • Twitter - Tony Printezis - present

Total Attendance: 18 of 18 voting members

Since 75% of the EC's voting members were present, the EC was quorate for this session.


There are no changes in status as a result of attendance at this meeting.

The EC Standing Rules state the following penalties for non-attendance at EC meetings (note that those who participate in face-to-face meetings by phone are officially counted as absent):

  • Missing two meetings in a row results in a loss of voting privileges until two consecutive meetings have been attended.

  • Missing five meetings in a row, or missing two-thirds of the meetings in any consecutive 12-month period results in loss of the EC seat.

There are no changes in voting privileges as a result of this meeting.

Personnel Changes

There are no personnel changes to report.

EC Stats

Heather presented the usual EC stats (see the presentation for details).

JCP Membership & 2020 JCP Summary

Heather presented JCP Membership stats and 2020 Year End Summary (see the presentation for details). Chandra asked about JUG members using an alias for the primary or alternate contact. Amelia asked if Java in Education could be added to the summary.

Java Vulnerabilities Report inquiry from ISO

Heather introduced the inquiry from Stephen Michell from the ISO/IEC JTC1/SC 22 WG: Programming languages, their environments and system software interfaces. Don Deutsch gave a summary of the ISO/IEC WD TR 24772-11 Information technology - Programming languages - Guidance to avoiding vulnerabilities in programming languages - Part 11: Guidance for programming language Java. Don noted that of the 10-15 ISO languages, some but not of those languages have a similar vulnerabilities report. Don also provided a summary of the process typically used in ISO. Heather briefly reviewed the Secure Coding Guidelines document that is delivered and updated for (at least) each Java SE platform release and the OpenJDK Vulnerabilities Group to address immediate security issues. Aleksei expressed that there is a risk to have a report published that is incorrect, and that static reports are problematic. The target audience of the paper and the access to the report is also unclear. Amelia pointed out that it could be dangerous for the EC to be a part of something that is incorrect. Anish pointed out that since Java is overseen by the JCP, a report by ISO could create confusion in the community. Ken added that it is clear the JCP is the place to standardize Java. Gotz shared a link with published drafts. Tim made the distinction that in the OpenJDK Vulnerabilities Group, it is focused on implementations, not the language. He also made the observation that in the Java community, books are published on security topics. Heather summarized the concerns expressed by the EC as follows: Given the current six-month cadence of Java releases, the time and expectations of the community for updates does not match with the ISO timeframes, there is concern about the access, format and content, and the potential for confusion to the developer community. Heather invited interested EC Members to attend a follow up meeting with Stephen Michell to discus, and agreed to provide an update at the next EC Meeting.

Java in Education

Heather reviewed the summary of discussions in the Java in Education. We reviewed that EC Members can use a the social media template to promote the importance and need for Java developers, and to spread the word about Java in Education for JUG leaders. We will be working on materials for JUG leaders focused on how developers are utilizing Java in industry, to be published on the GitHub wiki.

Spec Lead Presentation

Doug Locke presented an update on JSR 302 (see the presentation for details).

Other Business

Heather reviewed the remaining dates for the 2021 calendar. We will plan to meet virtual through 2021. We then adjourned the meeting.

Next Meeting

  • June 8, 2021; 8 AM - 10 AM PDT (second hour is public)