How to Use Sonatype OSS Index to Identify Security Vulnerabilities

By Casey Dunham on January 09, 2020 github

8 minute read time

OSS Index enables developers to quickly find vulnerabilities in any library with an easy-to-use search feature. Learn more, and how to access the plugins.
Read More...

The Rise of Dependency Scanners

By Curtis Yanko on November 26, 2018 devsecops

2 minute read time

Software composition analysis has seen a spike in growth from developers on Github to help with their devsecops journey.
Read More...

Sonatype DepShield Now Protects NPM Projects

By Justin Young on November 20, 2018 NPM support

2 minute read time

Sonatype DepShield now supports npm.
Read More...

Introducing Sonatype DepShield: Free for GitHub Developers

By Michelle Dufty on August 14, 2018 github

2 minute read time

Today, Sonatype announced Sonatype DepShield, a new GitHub application that enables developers to experience basic open source governance, free of charge.
Read More...