<iframe src="//www.googletagmanager.com/ns.html?id=GTM-TT8R4P" height="0" width="0" style="display:none;visibility:hidden">

Sonatype Blog

Stay updated on the latest news from the makers of Nexus

AppSec EU 2017 Belfast – What to Expect

In mid-May I’ll be joining the organizing team of AppSec EU 2017 in Belfast for a week of security and DevOps sessions. Listen in as Gary Robinson, Michelle Simpson and Owen Pendlebury talk about what’s planned for the week.

Using Nexus 3 as Your Repository – Part 3: Docker Images

This is the third and last part of a series of posts on Nexus 3 and how to use it as repository for several technologies. (Part 1. Part 2.)

Culture Hacking at RSAC 2017 with Shannon Lietz

On Monday, February 13, Shannon Lietz gave a quick, 20 minute overview of her investigations and implementation of Culture Hacking at Intuit. Below is the extended version of that presentation, including audio and the slide deck. Shannon will continue this discussion at her keynote presentation during AppSec EU 2017 in Belfast.
 

 

CI/CD with OpenShift

Using Nexus 3 as Your Repository – Part 2: npm Packages

This is the second part of a series of posts on Nexus 3 and how to use it as repository for several technologies. Also available is “Part 1, Maven Artifacts” by Rafael Eyng.

How DevOps Killed the Market for Software Composition Analysis

The niche market for Software Composition Analysis (SCA) tools has died.  The culprit: DevOps.

In today's world, developers are king.  Innovation is the throne upon which they sit.  Anything seen as an inhibitor to DevOps agility is the enemy, and therefore, must be terminated.

SCA tools are waterfall-native by design.  Thus, it is impossible to integrate SCA security controls into DevOps-native work flows in an automated and scalable way.  

From a Commodore 64 to DevSecOps

We all know the story: a farm, a kid, a Commodore 64, and a modem maxing out at 300 bps. A few unexpected phone bills later, and young Ian Allison is figuring out how to game the system so he can keep using his newfound  gateway to the world of tech. According to Ian, that is where he began building the foundation of skills for his career in computer security.