Sonatype Selected by Equifax to Support OS Governance Press Release


The Path of DevOps Enlightenment for Infosec

By Derek Weeks on November 20, 2018 Nexus User Conference

Security is in crisis.  Can security, as an industry, rise to the demands of DevOps? Is the DevOps culture able to handle security and all of its baggage?


How-to Roll Out Nexus in a Large Organization

By Derek Weeks on August 22, 2018 Nexus User Conference

With over 80,000 employees, 150 million customers a year, and 800 aircraft with service to 57 countries, there is no denying the size and reach of Delta Air


I Am A Serial Cryptominer: An Open Letter to Software Developers

Gluttony: (Latin: gula, derived from the Latin gluttire meaning "to gulp down or swallow") means over-indulgence and over-consumption of food, drink, or


DevSecOps: Secrets in the Cloud

By Derek Weeks on May 21, 2018 Devops

You know that feeling when you tell someone a secret and then wonder if it is going to get out? (I mean, I have heard some people worry about that.)



Ann Winblad Reflects: The Rise of Software

By Derek Weeks on January 04, 2018 Software Supply Chain

Ann Winblad started her own software business when most people didn’t know what software was. It was 1976, and she borrowed $500 from her brother. Six years


Want to Understand Software Supply Chains? Ask Red Hat

By Matt Howard on September 01, 2017 Red Hat

At Sonatype we've spent a lot of time over the past few years researching and writing about software supply chains.  I mean A LOT.

Red Hat is another


2017 State of the Software Supply Chain Report

By Wayne Jackson on July 17, 2017 Devops

We live in an application economy where software has shifted from being a driver of nominal efficiency gains to an enabler of new customer experiences and


Walmart Integrates Nexus, OneOps, Jenkins, Kubernetes into Distribution Center Management System

By Janie Gelfond on June 16, 2017 Nexus

Walmart Logistics is integrating Nexus, Jenkins, Kubernetes, and OneOps open source software components into its management system for 200 plus of its


Medical Device Security: A New Look at Open Source Software

By Derek Weeks on June 04, 2017 Medical Device Security

We all do it. When we sense something wrong with our health, we often go to the internet, plug in our symptoms and try to diagnose the issue.  

In our