Sonatype Delivers Premium Open Source Controls to GitHub | Press Release

blog-logo Sonatype Blog

How Do Application-Level Package Managers Work?

By Ember DeBoer on January 23, 2020 repository manager
Managing dependencies is a complex task. As Sam Boyer explains, “It’s not the algorithmic side that makes [application-level package managers] hard.”
Read More...

What is a Package Dependency Manager?

By Ember DeBoer on January 22, 2020 Apache Maven
Terms like package manager, dependency management, repository, and repository manager are used in software development. Are we speaking a common language?
Read More...

Nexus Innovator: David Radford-Grant of Achievers

By Katie McCaskey on January 16, 2020 devops best practices
Months of outages. Sure, support was available -- if the boss agreed to pay 10x more. Here's how one man fixed both issues using Nexus Repo Pro.
Read More...

Nexus Intelligence Insights: Sonatype-2020-0003 - npm malicious package 1337qq-js

By Elisa Velarde on January 15, 2020 vulnerabilities
In this month's Nexus Intelligence Insights, we cover Sonatype-2020-0003: npm malicious package 1337qq-js. Here's why it made noise but had no impact.
Read More...

How to Get Started With Nexus Repository Manager OSS

By Omkar Hiremath on January 14, 2020 Nexus Repository
Repository managers play an important role in software development. Learn how to use Nexus Repository Manager OSS to optimize package storage.
Read More...

Four Steps to Get Started with Nexus Repository Using New REST APIs

By Sable Yemane on January 10, 2020 How-To
Nexus Repository Manager supports REST API endpoints for binary management. Use NXRM endpoints to seamlessly integrate with your tools and CI/CD pipeline.
Read More...

How to Use Sonatype OSS Index to Identify Security Vulnerabilities

By Casey Dunham on January 09, 2020 github
OSS Index enables developers to quickly find vulnerabilities in any library with an easy-to-use search feature. Learn more, and how to access the plugins.
Read More...

Shifting Security Left: The Innovation of DevSecOps

By Sylvia Fronczak on January 02, 2020 shift left
DevSecOps is a cultural shift that reinforces the mindset that everyone is responsible for security. Here's why this idea is so innovative and productive.
Read More...

Nexus Platform - 2019 Year in Review

By Michelle Dufty on December 30, 2019 Sonatype Nexus
We look back at features introduced in 2019 across Nexus Repository Manager and Nexus IQ Server (Lifecycle, Lifecycle Foundation, Firewall, and Auditor).
Read More...