One in Six Developers in Healthcare Report Open Source Breaches | Press Release

blog-logo Sonatype Blog

DevOps Meets The Sporting Goods Industry

By Carlos Schults on June 01, 2020 devsecops
Adidas isn't a software company, but it employs advanced techniques in software delivery to build different applications more than 10,000 times a day.

Integrating Infrastructure as Code into a Continuous Delivery Pipeline

By Carlos Schults on May 19, 2020 Continuous Delivery
Infrastructure as code (IaC) takes coding techniques used by software systems and extends them to infrastructure. We cover those techniques.

The Science of Compliance: Early Code to Secure Your Node

By Carlos Schults on April 27, 2020 Compliance
Compliance testing can—and should—be done at all stages of your CI process. Watch your test tool – there can be false positives as well as false negatives.

OSS for Enterprise: Procure Secure Components Faster & Manage Risk Better

By Carlos Schults on June 12, 2019 Nexus Lifecycle
The CI ecosystem is large and complex, especially at a company like Discover. Sheshagiri Rao shared personal insight into how to manage risk at a company where the stakes are high, using Nexus.