Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

A Sort of a Homecoming - Why I Joined Sonatype

By DJ Schleen on August 08, 2019 featured
The open source and supply chain problem facing the industry is one of the major reasons why I joined Sonatype. I can make an impact evangelizing DevSecOps.
Read More...

Continuous Authorization with DevSecOps

By Katie McCaskey on August 06, 2019 devsecops
Continuous Authentication is a dynamic process that examines attributes that change and continually validates them. Hasan Yasar explains the DevSecOps fit.
Read More...

What Toyota Unlocked Decades Ago Drives Software Supply Chain Management Today

By Katie McCaskey on August 05, 2019 open source governance
Toyota developed a vehicle production framework, still in use today, that shapes contemporary software supply chain management, too.
Read More...

How a Surf Loving Aussie Developed Sonatype’s Most Popular Extension

By Katie McCaskey on August 02, 2019 plugin
The origin story of the Nexus Chrome plugin, which starts with Sonatyper Cameron Townshend on the beaches of Australia. It is now used worldwide.
Read More...

NIST Proposes Standards to Secure Government SDLC

NIST has proposed a set of standards to address the growing need for better software security. Public comment is open until August 5, 2019.
Read More...

Security Organizations Need to Start Thinking Like Developers

By DJ Schleen on July 30, 2019 security
Developers must think more securely, and security teams need to learn more development skills. Cross-discipline awareness strengthens software development.
Read More...

Blue by Default

By Katie McCaskey on July 29, 2019 security
Aubrey Stearn (@auberryberry) explains DevOps security approach Blue by Default. Security practices move prior to testing and delivery to ensure focus.
Read More...

How to Become an OSS Champion

By Katie McCaskey on July 26, 2019 DevOps Culture
Sonatyper Fernando Cremer shows leaders how to champion open source use in modern software production. Here are his recommendations to drive adoption.
Read More...

Free Software, But No Free Lunch

By Katie McCaskey on July 25, 2019 security
Today's threat surface is the software itself. How can Fortune 100 companies and others protect themselves? One security practice is counterintuitive.
Read More...