<iframe src="//www.googletagmanager.com/ns.html?id=GTM-TT8R4P" height="0" width="0" style="display:none;visibility:hidden">

Sonatype Blog

Stay updated on the latest news from the makers of Nexus

GitHub Integration with Nexus Lifecycle

Sonatype's development team regularly schedules "innovation days" that allow team members time to focus on building projects that we believe will benefit our Nexus community.  In one of the recent innovation days, I built a new integration between GitHub, Jenkins, and Nexus Lifecycle that we are making available to you through our new Nexus Exchange community -- the new home for integrations built by our own development team and the community at large.  

The Open Source Software Index is BOSS!  Here's Why.

Yesterday Dharmesh Thakker and his colleagues at Battery Ventures unveiled the Battery Open-Source Software Index.  The BOSS Index is the result of a significant and thoughtful research effort designed to (a) empirically rank the relative popularity of open-source software projects, and (b) provide perspective on the innovative companies that are built upon open source technologies.

Do You View Your AppSec Tools as an Inhibitor to Innovation or a Safety Measure?

DevOps is all about making better software faster.  It also requires making it more safely while compressing the time between ideation to realisation. I hear IT organisations tell me time and time again of their ambitions to be the innovation power-house for their business - so it’s great news that most of the survey respondents (more than 80% in fact) didn’t see their AppSec tools as an inhibitor to innovation but rather, a safety measure.

DevSecOps: Eat Carrots, Not Cupcakes

You Are What You Eat.  

When it comes to food, we all know what’s considered “good” and what’s “bad”.

DevSecOps: A More Deterministic Approach

Is security an inhibitor to DevOps agility?

To answer this question we would need to take a quick look at differences between DevOps, QA and Security when it comes to automation issues.

DevSecOps: In Time for Security

Changing Mindsets.

Historically developers have prioritized functional requirements over security when building software.  While secure coding practices important, they have often fallen into secondary or tertiary requirements for teams building applications against a deadline.

DevSecOps: Slaying the Myths of Container Security

Containers are clearly appealing for companies and development teams who want to deliver and iterate on their software faster and efficiently. This is achieved through more consistent, simple and repeatable deployments, rapid rollback, and simpler ways of orchestrating and scaling distributed applications.