The Shifting Landscape of Open Source Supply Chain Attacks - Part 3

By Brian Fox on January 26, 2023 thought leaders

11 minute read time

Brian Fox shares insights on who’s responsible for the security of software supply chains, and how orgs can minimize impact on efficiency and speed.
Read More...

The Shifting Landscape of Open Source Supply Chain Attacks - Part 2

By Brian Fox on January 25, 2023 thought leaders

11 minute read time

Sonatype's Brian Fox delves into how bad actors and cybercriminals are attacking the software supply chain, and how cyberattacks continue to evolve.
Read More...

The Shifting Landscape of Open Source Supply Chain Attacks - Part 1

By Brian Fox on January 24, 2023 thought leaders

8 minute read time

A deep dive into how modern supply chains manage problems, and how companies looking to secure their software supply chains can learn from their mistakes.
Read More...

A Guide to Deployment Models: On-Premise, Cloud, and Disconnected

9 minute read time

Which deployment option is right for your software supply chain? An analysis of the pros and cons of on-premise, cloud, and disconnected deployment.
Read More...

Going Online With the OWASP Vulnerability Management Guide Working Group

6 minute read time

The OWASP Vulnerability Management Guide (OVMG) project seeks to simplify vulnerability management into repeatable and scalable cycles.
Read More...

Wicked Good Development Episode 25: The Struggle With Open Source Licensing

By Kadi Grigg on January 20, 2023 licensing

25 minute read time

Filipp Kofman and Adam Such talk best practices for handling open source licensing and how beneficial it can be for managing dependencies.
Read More...

Intro to Malware Analysis: Analyzing Python Malware

By Juan Aguirre on January 19, 2023 Nexus Firewall

11 minute read time

Understanding malware analysis and the process of researching security vulnerabilities is the first step toward implementing best practices.
Read More...

Malware Monthly - December 2022

10 minute read time

Sonatype's Malware Monthly brings you the latest information on malicious and suspicious packages discovered in software registries.
Read More...

Dependency Management: Versions Choice and the Software Supply Chain

6 minute read time

The components that software developers rely upon are moving forward, but effective software supply chain management is more than being up to date.
Read More...