Sonatype Selected by Equifax to Support OS Governance Press Release
SON_logo_blog_2

Featured Article

26% Acknowledge a Web Application Breach in 2019

By Derek Weeks on February 12, 2019 Post security/devsecops

Early this morning news broke that 620 million account details stolen from hacked websites were up for sale on the dark web.  The scale of the stolen

Read More...

SHARE:

Filter by:
READ MORE

How a Software Bill of Materials Uncovers Known Vulnerabilities

In two minutes, we can show you a full software bill of materials for your application. We can also identify any known vulnerabilities in the open source

Read More...
READ MORE

Integrating with SonarQube

By Brian Fox on August 27, 2014 Sonatype Says

Many development organizations we work with have turned to SonarQube as a dashboard to visualize and measure their code quality.

Read More...
READ MORE

Outnumbered, Again

Read More...
READ MORE

Are You Choosing the "Right" Component?

In our recent open source developer survey we asked, what are the TOP FOUR characteristics considered when selecting a component? And since components are

Read More...
READ MORE

4 Open Source Components You Need to Update Right Now

Heartbleed has put the security community on notice: it is time to take a harder look at the security status of open source components and frameworks. After

Read More...
READ MORE

The Sonatype 2014 Engineering Summit

By Mark Miller on April 28, 2014 Nexus Repo Reel

Last week, I joined the Sonatype engineering team at the yearly summit where we got together and discussed the future roadmap for Nexus and CLM, talk with

Read More...
READ MORE

FinSvcs Working Group (FS-ISAC) Takes on Open Source Components

Applications are becoming the primary security threat vector. Since applications are constructed from 3rd party components, there continues to be a tremendous

Read More...
READ MORE

Should your devops pipeline consider component intelligence?

By Manfred Moser on October 31, 2013 Nexus Repo Reel

Last week I was a host of October Nexus Live and attended DevOpsDays Vancouver. In both events Sonatype Nexus and CLM were present as part of a devops pipeline

Read More...
READ MORE

Yes, Policies Can Actually Speed Development

By Derek Weeks on October 31, 2013 Nexus Repo Reel

CONTROL, ENFORCEMENT, APPROVALS, POLICIES

Read More...
Products
Customers
Resources
About
Social
Twitter LinkedIn Facebook Instagram YouTube
SON_logo_white@2x copy trimmed

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759
Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102
Australia Office - 5 Martin Place, Level 14, Sydney 2000, NSW, Australia 
London Office - 1 Primrose St, London EC2A 2EX

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service    Privacy Policy