Tag Archives: open source

Wayne Jackson’s Presentation at RSA 2012: An Overview of Insight


April 2, 2012 By
Tim O'Brien

At RSA 2012, Wayne Jackson gave a short presentation focused on the security aspects of Sonatype Insight and the newly released Repository Health Check in Nexus Professional. This five minute overview gives you a sense of the magnitude of the problem we are trying to solve. Here are some of the highlights from Wayne’s presentation […]

Continue reading...

We’re a Java shop, we’re not going to get hacked…


March 27, 2012 By
Tim O'Brien

This article is another in a series of articles associated with our Executive Brief. To access the executive brief, “Addressing Security Concerns in Open-Source Components,” visit www.sonatype.com/securitybrief. You can follow the conversation on Twitter using the hashtag #OSSsecurity. I just wanted to reiterate the key point of yesterday’s security brief which is: “You and everyone […]

Continue reading...

Today’s Security Brief: Application security is widely neglected (by some surprising companies)


March 26, 2012 By
Tim O'Brien

Today we published a paper with Aspect Security, and it’s a shocking look at how few people are paying attention to application security. If you consume dependencies from the Central Repository and you don’t want to get hacked, I’d suggest reading the report and understanding some of the challenges, I’d also check out some of […]

Continue reading...

Study: More Than 50 of Global 500 Use Vulnerable Open Source Components


March 25, 2012 By
The Vigilant Application Owner

March 25, ZDNet – (International) Study: More than 50% of Global 500 use vulnerable open source components. According to a joint research report issued March 25 by Sonatype and Aspect Security, more than 50 percent of the world’s largest corporations have open source applications with security vulnerabilities. That is because more than 80 percent of […]

Continue reading...

The Results Are In: Sonatype 2012 Open Source Development Survey


March 13, 2012 By
Charles Gold

I’m pleased to share the results of this year’s Sonatype Open Source Software Development Survey.  We were blown away by the level of participation — more than 2,550 of you took the survey. Thank you to all of you who contributed your thoughts about your tooling, the components you use, and your organizations’ open source […]

Continue reading...