Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

Nexus Firewall: Quality at Velocity

By Mike Hansen on November 17, 2015 nexus pro
Nexus Firewall: Quality at Velocity
Read More...

The Cost to DevOps: 27 Mufflers

By Derek Weeks on July 16, 2015 Known Vulnerabilities

Imagine that you are designing the 2016 Range Rover line of sport utility vehicles. Like all gas powered vehicles, each one needs an exhaust muffler. Range Rover likely has narrowed in on a preferred

Read More...

Better and Fewer Suppliers (2015 Software Supply Chain Report)

By Derek Weeks on June 17, 2015 governance

Today I want to focus on the huge ecosystem of open source projects (“suppliers”) that feed a steady stream of innovative components into our software supply chains. In the Java ecosystem alone,

Read More...

DevOps Leadership Series: Gov Does DevOps (Part 2)

By Derek Weeks on June 02, 2015 Software Supply Chain

During my second day at DevOpsDays DC, I had the opportunity to catch up with a couple more industry thought leaders. First up, John Willis, DevOps Days core organizer and co-author the upcoming

Read More...

DevOps Leadership Series: Gov Does DevOps

By Derek Weeks on May 27, 2015 rugged

This past week, I had the opportunity to catch up with some more industry thought leaders at the DevOpsDays DC event in our nation’s capital. This was the first major DevOps Days event to feature a

Read More...

3 Reasons Manual Policies Just Don’t Work

Over the past four years, Sonatype has surveyed open source development organizations and year after year, we find that developers have the best intentions. They strive to build good quality code,

Read More...

PCI 3.0 - Secure Payment Requires Secure Components

By Derek Weeks on November 14, 2013 PCI
PCI 3.0 - Secure Payment Requires Secure Components
Read More...