How DevOps Killed the Market for Software Composition Analysis

By Matt Howard on February 28, 2017 Application Security

1 minute read time

SCA tools are waterfall-native by design. It is impossible to integrate SCA security controls into DevOps-native work flows in an automated and scalable way.
Read More...

From a Commodore 64 to DevSecOps

By Derek Weeks on February 27, 2017 Application Security

4 minute read time

He started his enlightenment when his career path led him to a place called DevSecOps - that is, DevOps where security plays a more integral role.
Read More...

Using Sonatype Nexus Repository 3 – Part 1: Maven Artifacts

By Rafael Eyng on February 21, 2017 Maven

4 minute read time

This article is the first in a three part series by one of our community advocates, Rafael Eyng.
Read More...

Achieving CI/CD with Kubernetes

By Ramit Surana on February 17, 2017 JenkinsCI

11 minute read time

This article explores two interesting pieces technology: Jenkins, a popular CI/CD tool, and Kubernetes, a popular orchestration engine for containers.
Read More...

Sonatype Nexus Installation Using Docker

By Rajesh Kumar on February 10, 2017 Docker

1 minute read time

Sonatype Nexus Installation Using Docker
Read More...

Paul Volkman: Why is Sonatype the best solution?

By Matt Howard on February 10, 2017 Nexus

16 second read time

When Paul Volkman was asked "Why is Sonatype the best solution?," he didn't hesitate.
Read More...

DevOps and Opportunities in Software Supply Chain Governance

By Wayne Jackson on February 09, 2017 open source governance

4 minute read time

Governance has been an evil word for software developers but new approaches unlock massive gains in productivity, reductions in cost, improvements in quality.
Read More...

DevSecOps: Better Software, Faster

By Derek Weeks on February 08, 2017 repository health check

3 minute read time

1 in 16 open source and third-party components downloaded last year included a known vulnerability.
Read More...

One Team, 5,000 Jobs: Life in the DevOps Jungle

By Derek Weeks on February 01, 2017 Devops

3 minute read time

This blog series is reviewing sessions from the All Day DevOps conference from November which hosted over 13,500 registered attendees.
Read More...

Step-by-Step: Block and Quarantine Vulnerable Open Source Components and Artifacts with Nexus Firewall

By Mike Hansen on February 01, 2017 Nexus Firewall

1 minute read time

Videos showing how to configure and use Nexus Firewall.
Read More...