The 2020 State of the Software Supply Chain Report is available!

Study Shows High-Performance Dev Teams Fix OSS Vulns 26x Faster | Press Release

blog-logo Sonatype Blog

Workflow Automation: Publishing Artifacts to Nexus Repository using Jenkins Pipelines

By Dmitriy Akulov on June 12, 2020 AppSec
Use Nexus Repo to create an automated workflow to build, store, organize, and monitor the compiled Maven artifacts through a CI server.
Read More...

DevSecOps Delivered: Automated GitHub Pull Requests

By Amir Shahmiri on May 08, 2020 github
This episode is a quick demonstration of GitHub automated pull requests in Nexus Lifecycle, and why you would want to use them.
Read More...

Keep Applications Secure in Atlassian Bitbucket with Automated Pull Requests

By Kevin Miller on April 22, 2020 atlassian
The Nexus Lifecycle/Atlassian Bitbucket integration automates pull requests, fixing security vulnerabilities and maintaining the quality of dependencies.
Read More...

How to Upskill Your DevOps

By Mark Henke on April 08, 2020 automation
Become T-shaped. No matter what role we're in—whether it's security, operations, or software delivery—we must understand the breadth of skills needed.
Read More...

Developers Gain Contextual Feedback with Automated Pull Request Commenting

By Kevin Miller on March 31, 2020 github
Pull request comments provide contextual information about the individual branch a developer is working on, and changes that they may have introduced.
Read More...

Why Manual Verification Still Matters

By Peter Morlion on March 10, 2020 AppSec
We continuously hear the benefits of automation. Jeroen Willemsen explains why we still need to perform manual checks.
Read More...

Keep GitHub Dependencies Secure with Nexus Lifecycle's Automated Pull Requests

By Michelle Dufty on November 12, 2019 new features
Sonatype has long been the world’s premier provider of open source health and hygiene data. Now, it's bringing that data to GitHub with six new Nexus integrations.
Read More...

Salesforce and Nexus: The Real Results of Automation [Video]

By Mark Miller on November 14, 2018 Nexus Firewall
Mary Lee from Salesforce explains how automating the open source component approval process for 800 jar files went from 25 days of manual evaluation down to 5 minutes of automation with the Nexus
Read More...

Faster, Smarter DevOps

By Derek Weeks on March 04, 2016 Software Supply Chain
If you are concerned about releasing more code faster and at higher quality, the software delivery chain and process will look and smell like DevOps.
Read More...