The 2020 State of the Software Supply Chain Report is available!
DOWNLOAD NOW

Study Shows High-Performance Dev Teams Fix OSS Vulns 26x Faster | Press Release
blog-logo Sonatype Blog

RESOURCES

Content

Sonatype Partners

Community

Upcoming Events

The 2020 State of the Software Supply Chain

Ryan Berg

Ryan is the former Chief Security Officer at Sonatype. He is now the Chief Scientist/Director of Research and ML at Barkly.

Follow me on:
READ MORE

Stewing Over Software Ingredients

Just the other day I was planning dinner for my family and thought it would be a great idea to bust out the Dutch oven I had to have, but rarely use, and make a nice stew. I ran to the grocery store

Read More...
READ MORE

Are OpenId and OAuth ‘Bleeding’?

By Ryan Berg on May 07, 2014 openid

Now that Heartbleed has become the new measuring stick for vulnerability disclosures, I have had several people ask me, “Is this OpenId/Oauth thing the next Heartbleed?” The long answer, as Run DMC

Read More...
READ MORE

Like a Good Holiday, the Verizon Breach Report is Here

By Ryan Berg on May 02, 2014 Sonatype Says

Like a good holiday the Verizon 2014 Data Breach Investigation Report (DBIR) is something I look forward to every year. Now that I’ve had some office time to digest this, I figured no better time to

Read More...
READ MORE

Sonatype & HP Partnership Offering a New Breed of Application Security

By Ryan Berg on February 24, 2014 Component Lifecycle Management

Today Sonatype and HP announced Sonatype’s Component Lifecycle Management (CLM) analysis technology has been integrated into HP’s cloud-based software security solution – HP Fortify on Demand.

Read More...
READ MORE

Another Security Breach ... Just in time for the holidays.

By Ryan Berg on December 23, 2013 PCI
Another Security Breach ... Just in time for the holidays.
Read More...
READ MORE

Flaws vs Bugs

By Ryan Berg on September 05, 2013 risk analysis
Flaws vs Bugs
Read More...
READ MORE

Hack Takes a Bite of the Apple

By Ryan Berg on July 23, 2013 Sonatype Says
Hack Takes a Bite of the Apple
Read More...
READ MORE

Soup Anyone?

By Ryan Berg on June 28, 2013 CISO
Soup Anyone?
Read More...
READ MORE

Do Vulnerability Counts Really Matter?

By Ryan Berg on June 20, 2013 Sonatype Says
Do Vulnerability Counts Really Matter?
Read More...
Twitter LinkedIn Facebook Instagram YouTube GitHub
Products
Security Research
Solutions
Resources
About
SON_logo_white@2x copy trimmed

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759
Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102
Australia Office - 5 Martin Place, Sydney, NSW 2000, Australia 
London Office - 168 Shoreditch High Street, E1 6HU London

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service    Privacy Policy