Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

Hands On with the Nexus Platform: A Software Supply Chain Demo

By Katie McCaskey on June 14, 2019 Nexus solutions
Sonatype's Ilkka Turunen demonstrates how to use the Nexus Platform. Download the files to try it yourself. You'll see how useful it is for your workflow.
Read More...

Developers, Say Goodbye to Vulnerabilities. Squash Those Bugs!

By Katie McCaskey on June 12, 2019 Nexus Lifecycle
Sonatypers Jerome Gergel and Melanie Latin offer developers a set of four best practices once violations are identified in your software.
Read More...

OSS for Enterprise: Procure Secure Components Faster & Manage Risk Better

By Carlos Schults on June 12, 2019 Nexus Lifecycle
The CI ecosystem is large and complex, especially at a company like Discover. Sheshagiri Rao shared personal insight into how to manage risk at a company where the stakes are high, using Nexus.
Read More...

Tools, Not Rules

By Sylvia Fronczak on June 12, 2019 DevOps Culture
American Express went through a DevOps identity crisis to fully understand how important culture was to making the right tools stick in their organization. Tim Klever shares their lessons learned.
Read More...

Empowering Developers: Security Self Serve and Automated Time-Based Waivers

Tyro recently empowered their developers to build more secure software by instituting time-based waivers. At the Nexus User Conference, they shared how they made it happen.
Read More...

Top 5 Tomcat Vulnerabilities

By Sylvia Fronczak on June 12, 2019 vulnerability
If you spend time monitoring and patching OSS projects, you know Tomcat has some vulnerabilities. Today, Tomitribe walked us through 5 of those vulnerabilities.
Read More...

The Path Forward for the Nexus Platform

By Katie McCaskey on June 12, 2019 Nexus Lifecycle
We’re seeing double and triple digit growth across usage, Nexus Repo instances, Nexus Repo scans, and daily apps under management. What comes next?
Read More...

DevOps Table Stakes: The Minimum Amount Required to Play the Game

By Erik Dietrich on June 12, 2019 Devops
At the 2019 Nexus User Conference Aaron Rinehart talked about DevOps table stakes—what's necessary to even come to the table and play the game these days.
Read More...

Publishing Private NPM Packages to Nexus

By Erik Dietrich on June 12, 2019 How-To
From DRY principle, sharing code within an organization, and keeping code secure, there are many reasons you may want to publish private NPM packages to Nexus. Today, we show you the how.
Read More...