Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

Derek Weeks

Derek serves as vice president and DevOps advocate at Sonatype and is the co-founder of All Day DevOps -- an online community of 65,000 IT professionals.

Continuous Compliance and DevOps

By Derek Weeks on June 17, 2019 OSS compliance
Compliance automation is critical to DevOps infrastructure. Christoph Hartmann, lead engineer at Chef and the creator of InSpec, explains the benefits.
Read More...

Managing Infrastructure at Scale with Terraform

By Derek Weeks on June 10, 2019 Open Source
Eighty percent of software outages are due to human error. Jon Brouse shows how Terraform, an open source infrastructure solution, eliminates mistakes.
Read More...

Malicious Code Injection Strikes Again as npm Foils $13M Cryptocurrency Theft

By Derek Weeks on June 07, 2019 vulnerabilities
The latest attempt at a cryptocurrency heist demonstrates how open source software components are used throughout the cryptocurrency ecosystem.
Read More...

10 Ways Kubernetes Enables DevOps

By Derek Weeks on June 03, 2019 devsecops
Siamak Sadeghianfar (@siamaks), DevOps Evangelist at Red Hat, lays out 10 ways Kubernetes enables DevOps.
Read More...

The DevSecOps Equilibrium

By Derek Weeks on May 22, 2019 devsecops
Is their tension in your organization between sec, ops, and dev? In his All Day DevOps chat, Chris Corriere talks about finding the DevSecOps Equilibrium.
Read More...

Implementing DevSecOps with 1,162 Apps

By Derek Weeks on April 22, 2019 devsecops
True DevSecOps includes breaking builds when vulnerable open source is found. But, implementing that level of precision is not an easy task. Hiep Tran from Capital Group, shares the process they wen
Read More...

From 0 to Accredited in 23 Days

By Derek Weeks on April 22, 2019 devops tools
DevSecOps in Government - What if there was a way to go from 0 to accredited in 23 days? Leonel Garciga from the DoD’s Joint Improvised Threat Defeat Organization shares how.
Read More...

Operating Without an OSS License? That Could Be Dangerous!

By Derek Weeks on April 17, 2019 Nexus Lifecycle
The intent of OSS licensing is to to make sure software can remain open source and freely used. But, some licenses contain requirements that could conflict with your business objectives - it's
Read More...

Full Lifecycle Container Security

By Derek Weeks on April 17, 2019 devsecops
As containers become a greater part of the DevOps pipeline, securing them is top of mind. John Morello, Twistlock CTO, shared thoughts at the 2018 Nexus User Conference on how-to secure them across
Read More...