Featured Article

CVE-2024-3094 The targeted backdoor supply chain attack against XZ and liblzma

By Ilkka Turunen on April 01, 2024 Software Supply Chain

Learn about a new, targeted backdoor supply chain attack against the popular XZ compression utility seen in many Linux distributions such as fedora and debian. Understand its impact, potential risks

Read More

SHARE:

Sonatype_Blog_Logo_White
READ MORE

CVE-2024-3094 The targeted backdoor supply chain attack against XZ and liblzma

By Ilkka Turunen on April 01, 2024 Software Supply Chain

11 minute read time

Learn about a new, targeted backdoor supply chain attack against the popular XZ compression utility seen in many Linux distributions such as fedora and debian. Understand its impact, potential risks
Read More...
READ MORE

Project highlights for World Open Source Day: My open source tools

By Luke Mcbride on February 02, 2023 Everything Open Source

6 minute read time

Sonatype's Luke McBride shares some of his favorite open source tools in celebration of World Open Source Day 2023.
Read More...
image of someone typing at a keyboard
READ MORE

What's new with Java? A discussion with the London Java Community

3 minute read time

What's new with Java? Musings from the recent London Java Community event, Including insight on Java 11 and Java 17 migration, Static Java, UI technology.
Read More...
READ MORE

Wicked Good Development Episode 3: A look at the past, present, and future of Maven Central

By Kadi Grigg on March 24, 2022 Everything Open Source

30 minute read time

If you utilize Java or any other JVM, there’s a good chance you know the Maven Central repository. Hear from experts on its past, present, and future.
Read More...
podcast mic
READ MORE

Wicked Good Development Episode 2: Starting security left

By Kadi Grigg on February 18, 2022 Everything Open Source

24 minute read time

In today's episode of Wicked Good Development we're tackling the ongoing discussion about shifting security left - on how developers can become empowered.
Read More...
Hello image
READ MORE

Meet an open source contributor: Chris Wininger

By Sal Kimmich on February 17, 2022 Everything Open Source

3 minute read time

Chris Wininger discusses how open source contributions are a part of his broader journey as a software engineer.
Read More...
READ MORE

Wicked Good Development Episode 1: Cybersecurity experts talk Log4j, open source and more

By Kadi Grigg on February 04, 2022 Everything Open Source

34 minute read time

3 experts with different views on the world of software talk about the latest in development news. Today's episode: Log4j, White house and Open Source
Read More...
Code fireworks - Sonatype Celebrates World Open Source Day February 3, 2022
READ MORE

Sonatype celebrates February 3, 2022 as World Open Source Day

By Ilkka Turunen on February 03, 2022 Everything Open Source

5 minute read time

We declare February 3rd World Open Source day. Why? Our roots lie firmly in Open Source and we want to celebrate maintainers across the world & give back
Read More...
Image of a neon sign, consisting of a a thought bubble saying hello in script
READ MORE

Meet an open source contributor: Amy Keibler

By Sal Kimmich on February 03, 2022 Everything Open Source

3 minute read time

Meet Amy Keibler, one of the incredible open source contributors at Sonatype. Learn more about her journey and what she loves about open source.
Read More...