<iframe src="//www.googletagmanager.com/ns.html?id=GTM-TT8R4P" height="0" width="0" style="display:none;visibility:hidden">

Sonatype Blog

Stay updated on the latest news from the makers of Nexus

Medical Device Security: A New Look at Open Source Software

We all do it. When we sense something wrong with our health, we often go to the internet, plug in our symptoms and try to diagnose the issue.  

In our ever-connected world, we are not the only ones using the internet.  In order to improve the effectiveness and safety of our healthcare system, hospital infrastructure, medical devices, and doctors are also connected to the internet.  The smarter our healthcare systems are, the better quality of care we’ll receive.  

Embedding Ownership: A DevOps Best Practice

From where I sit in the DevOps community, there is often more focus on dev than on ops. Damon Edwards (@damonedwards) of SimplifyOps sought to change that with his talk, Ops Happens: DevOps Beyond Deployment, at the All Day DevOps conference.

Automating the Automation Tools at Capital One

Listening to his talk, it seems like George Parris and his team at Capital One aren’t keeping “banker’s hours.” George is a Master Software Engineer, Retail Bank DevOps at Capital One. At the All Day DevOps conference, George gave a talk, entitled Meta Infrastructure as Code: How Capital One Automates our Automation Tools with an Immutable Jenkins, describing how they automated the DevOps pipeline for their online account opening project for Capital One, a major bank in the United States. Of course, there is a lot to learn from their experience.

The Trump White House Takes Aim at Cybersecurity

“The executive branch has for too long accepted antiquated and difficult–to-defend IT”, declared President Donald Trump in a new Executive Order released on Thursday, May 11th, 2017.

The Magnitude of Risk and Importance of a Plan

Over the past few years, we have witnessed mega-breaches that have impacted IT systems across our financial services industry, healthcare sector, and government.  The vast majority of these breaches take advantage of weaknesses in software applications, according to the current and recent years of the Verizon Data Breach and Investigations report.  The White House believes it is imperative that the United States modernize its IT infrastructure in order to better defend it.  

They Sent 300 Employees to a DevOps Conference

Last year, I was able to attend 18 DevOps conferences. I saw some awesome presentations, met incredible people, and expanded my knowledge of the latest practices. While my role as the DevOps Advocate for Sonatype enables me to get out to all of these conferences, not everyone has the time, the budget, or the approval to get to even one event a year.

How to use the new Repository Health Check 2.0

This is a quick tutorial on how to get started with Repository Health Check (RHC) 2.0 now available in Nexus Repository Manager 3.3.

Container Considerations on Your DevOps Journey

Containers are things for your things. That is true in the development world too - containers are things for your software, and, like containers for your things, software containers can help you be organized, efficient, and secure.

Chris Morgan (@cmorgan_cloud), the Technical Director, OpenShift Partner Ecosystem at Red Hat, delivered a keynote at the 2016 All Day DevOps conference. Chris lives and breathes containers and recently discussed how they are transforming DevOps pipelines.