Tag Archives: Component Lifecycle Management

FinSvcs Working Group (FS-ISAC) Takes on Open Source Components

December 2, 2013 By
Derek Weeks
fs-isac thumbnail

Applications are becoming the primary security threat vector. Since applications are constructed from 3rd party components, there continues to be a tremendous amount of industry effort and impetus behind managing open source components effectively. And now we can add the Financial Services / Information Sharing and Analysis Center (FS-ISAC) to the list.

Continue reading...

How Will you Manage the New Addition of A9 to the OWASP Top 10 List?

June 18, 2013 By
Jessica Dodson

It’s fair to say we were excited back in May when the OWASP community proposed A9 “ Using Components with Known Vulnerabilities” as a top 10 open source security risk – so now it’s official, component vulnerabilities are considered a critical web security flaw. But why has this addition warranted its own category, formerly classified […]

Continue reading...

Only 1 Day Left! Webinar: Security At The Speed Of Development featuring Wendy Nather, 451 Research & Ryan Berg, Sonatype

April 29, 2013 By
Emily Blades

We have a problem. Application development has become agile, component-based, and open source dependent. But security approaches haven’t kept up. Every day we’re forced to make the dangerous choice between speed and security, putting Development and Security at odds. There has to be a better way. Join Wendy Nather, Research Director, Security, at 451 Research […]

Continue reading...

When Nexus Alone Is Not Enough – Webinar Recording Now Available!

April 19, 2013 By
Emily Blades

A big thanks goes out to everyone who was able to make it to our webinar yesterday. We appreciated all of your time, attention and great questions. If you weren’t able to make it, no worries — the recording is now available here. Please feel free to share this with your colleagues who are interested […]

Continue reading...

Nexus Bolsters Component Management Capabilities

November 15, 2012 By
Manfred Moser

When Maven Repository Managers (MRM) first appeared on developers’ radar, everyone using them immediately saw the benefits. Right off the bat, MRMs replaced cobbled together solutions like shared drives or local Maven repositories copied and exposed via http. Since its release four years ago, Sonatype Nexus has grown to support many repository formats. And most […]

Continue reading...

New Webinar – Futures: Component Lifecycle Management with Your Apache Maven Infrastructure

June 19, 2012 By
Emily Blades

Over the past ten years, demands for faster and better software have reshaped the way we do our jobs. Software used to be written. Today it’s assembled from components, and built and delivered continuously. Join Jason van Zyl, for 30 minutes on Thursday, June 28 at 2:00PM EDT (GMT-0400) when he will be discussing the […]

Continue reading...