Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

Better, Faster, Stronger: Nexus Lifecycle's Improved JIRA Add-on Gives Developers and AppSec Something to High-Five About

By Michelle Dufty on August 14, 2019 JIRA
Nexus Lifecycle's new JIRA add-on with violation reporting eliminates the admin overhead of managing fixes. Component fixes are assigned and tracked with one-click.
Read More...

From Fast Company to Inc, Sonatype Continues Racking Up Notable Awards

By Katie McCaskey on August 14, 2019 awards
Sonatype's racking up an impressive list of awards: Inc.500, Fast Company Innovators, The Washington Post's Best Workplace, CyberTacos, and more.
Read More...

How to Use Gitlab-CI with Nexus

By Sudipt Sharma on August 14, 2019 Nexus Repository
Sudipt Sharma demonstrates how to establish a CI/CD pipeline using gitlab-ci and deploying artifacts to Nexus Repository.
Read More...

Development Velocity Is a Surprisingly Good Thing, Says Researchers

By Katie McCaskey on August 13, 2019 open source governance
Organizations with DevOps culture produce high frequency release schedules and stronger MTTU (mean time to update) response scores, to the benefit of all.
Read More...

Jobs As Code: Selecting the Best Tools and Deconstructing the CI/CD Pipeline

By Derek Weeks on August 12, 2019 devops tools
Jobs-as-Code is an approach that treats application automation management in the SDLC just like any other code components of an application.
Read More...

Activate Your Shield Against Open Source Invasions

By Katie McCaskey on August 09, 2019 open source management
Mike Van Doren, Sonatype Solution Architect, identifies the infinity stones that grant superpowers in the Nexus ecosystem.
Read More...

A Sort of a Homecoming - Why I Joined Sonatype

By DJ Schleen on August 08, 2019 featured
The open source and supply chain problem facing the industry is one of the major reasons why I joined Sonatype. I can make an impact evangelizing DevSecOps.
Read More...

Continuous Authorization with DevSecOps

By Katie McCaskey on August 06, 2019 devsecops
Continuous Authentication is a dynamic process that examines attributes that change and continually validates them. Hasan Yasar explains the DevSecOps fit.
Read More...

What Toyota Unlocked Decades Ago Drives Software Supply Chain Management Today

By Katie McCaskey on August 05, 2019 open source governance
Toyota developed a vehicle production framework, still in use today, that shapes contemporary software supply chain management, too.
Read More...