Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

The Top DevSecOps Resources You Should Be Reading This Weekend

By Janie Gelfond on March 09, 2019 devsecops

Weekends are the perfect time to cozy up, relax, and catch up on reading. Don’t know where to start, or need some new DevSecOps material? Check out our top

Read More...

On International Women’s Day, I Honor My Grandma’s Nudge

By Ankita Lamba on March 08, 2019 women in devops

In honor of International Women's Day, Sonatype is launching a 10 week series on the women who have inspired, educated and mentored us - both directly and

Read More...

DevSecOps, Germs, and Steel: Tales from 5,558 Pros

By Derek Weeks on March 04, 2019 vulnerabilities

"Only with the introduction of trucks and tanks in World War I did horses finally become supplanted as the main assault vehicle and means of fast transport

Read More...

Nexus Firewall Now Supports JFrog Artifactory Customers

By Michelle Dufty on February 28, 2019 artifact repository

Nexus Firewall has always been a key component of our platform, providing Nexus Repository customers with perimeter protection from open source risk.

Read More...

Nexus Intelligence Insights: CVE-2014-3603 — Lack of Hostname Verification in OpenSAML

By Akshay 'Ax' Sharma on February 26, 2019 vulnerability

This month, we will be covering a component that is a little older, but probably to the surprise of many, very widely used across a variety of ecosystems.

Read More...

10 years and 10,000 Hours: Lessons Learned from the FOSS/PLG Journey at Sonatype

By Matt Howard on February 20, 2019 News and Views

At Sonatype, we’ve spent the past 10 years engineering and delivering a variety of tools and services to help the global open source community accelerate

Read More...

Hygiene for Open Source Software Is Now a PCI Requirement

By Matt Howard on February 19, 2019 PCI

As we said last year, the software industry is failing to protect the public from data theft and misuse; motivating government officials, associations and

Read More...

26% Acknowledge a Web Application Breach in 2019

By Derek Weeks on February 12, 2019 OSS governance

Early this morning news broke that 620 million account details stolen from hacked websites were up for sale on the dark web.  The scale of the stolen

Read More...

Enhanced Support for Python in Nexus Lifecycle

By Michelle Dufty on February 06, 2019 Nexus Lifecycle

At Sonatype, we pride ourselves on arming development and security teams with precise and actionable intelligence to build software faster, with less risk.

Read More...