<iframe src="//www.googletagmanager.com/ns.html?id=GTM-TT8R4P" height="0" width="0" style="display:none;visibility:hidden">

Sonatype Blog

Stay updated on the latest news from the makers of Nexus

Nexus 3.3 Delivers Free Next-Gen Repository Health Check and Git LFS Support

Sonatype is excited to announce the immediate availability of Nexus Repository 3.3 in OSS and Pro editions.  What’s in this latest release?  We’re glad you asked:

 

Next-Generation Repository Health Check

We first introduced Repository Health Check (RHC) in 2012.  Now, every day we analyze over 80,000 repositories and 50 million components for our Nexus users.

Nexus Firewall Grows with Support for PyPI

All Parts Are Not Created Equal

According to the recent DevSecOps Community survey, 80 - 90% of a modern application is assembled using open source and third party components.  This is true whether you develop in Java, .NET, Ruby, Python or any other language.  While these components dramatically improve the efficiency and velocity of development, they are often consumed without enough knowledge to underlying dependencies, license requirements, or potential security vulnerabilities.

Sonatype Nexus 3 launches into Mesosphere DC/OS



Today we are excited to announce the availability of the incredibly popular repository manager and private container registries, Nexus Repository, on DC/OS.  Among its many benefits, Nexus Repository will deliver the first, free, enterprise-scale private Docker registry to the Mesosphere DC/OS community.

The Nexus Exchange: 30 new integrations from the community

Introducing the Nexus Exchange.

Over the years, members of the Nexus Community have created interesting and useful integrations with our products.  The list of projects has grown to the point where we need a central location to manage them. Today, we launch the Nexus Exchange. You’ll find integrations with Puppet, Chef, GitHub, Jenkins, Docker and many more of your favorite tools. The projects include integrations with Nexus 2, Nexus 3 and Nexus Lifecycle.

Shift Security Practices Left: New Nexus Plugin for Jenkins Pipelines

Shift Security Practices Left: New Nexus Plugin for Jenkins Pipelines

Many organizations are quickly maturing their CI/CD practices in the hopes of winning the innovation battle. But where do security and governance practices fit in? As organizations embrace DevOps, quality and security cannot become an afterthought. The good news is that many DevOps practitioners agree as evidenced by our recent DevSecOps survey. The data shows that mature DevOps organizations are automating security practices earlier in the development process compared to less mature DevOps organizations.

GitHub Integration with Nexus Lifecycle

Sonatype's development team regularly schedules "innovation days" that allow team members time to focus on building projects that we believe will benefit our Nexus community.  In one of the recent innovation days, I built a new integration between GitHub, Jenkins, and Nexus Lifecycle that we are making available to you through our new Nexus Exchange community -- the new home for integrations built by our own development team and the community at large.  

The Open Source Software Index is BOSS!  Here's Why.

Yesterday Dharmesh Thakker and his colleagues at Battery Ventures unveiled the Battery Open-Source Software Index.  The BOSS Index is the result of a significant and thoughtful research effort designed to (a) empirically rank the relative popularity of open-source software projects, and (b) provide perspective on the innovative companies that are built upon open source technologies.