Sonatype Introduces Next Generation Dependency Management | Press Release

blog-logo Sonatype Blog

NIST: Adopt a Secure Software Development Framework (SSDF) to Mitigate Risk of Software Vulnerabilities

NIST recommends a SSDF framework to assess open source component cybersecurity risks, including an SBOM and automated security controls in the SDLC.
Read More...

Anatomy of a Continuous Delivery Pipeline

By Peter Morlion on February 04, 2020 continuous deployment
Kamalika Majumder explains the anatomy of a continuous delivery pipeline, its benefits, and five key principles to shape and refine it.
Read More...

Why Does Security Matter For DevOps?

By Derek Weeks on October 01, 2019 security
Caroline Wong (@CarolineWMWong) explains why organizations that use DevOps are 2X more likely to succeed than peers.
Read More...

CALMS: A Principle-based DevOps Framework

By Ember DeBoer on September 23, 2019 devops best practices
The CALMS framework for devops consists of Culture, Automation, Lean, Measurement, and Sharing.
Read More...

Accelerate: A Principle-based DevOps Framework

By Ember DeBoer on September 18, 2019 devops best practices
The devops framework proposed by the Accelerate authors is focused on three key areas: Continuous Delivery, Architecture, and Product Process.
Read More...

Three Ways: A Principle-based DevOps Framework

By Ember DeBoer on September 16, 2019 devops best practices
Three Ways is a principle-based devops framework. The Three Ways framework includes: first, Flow, second, Feedback, third, Continuous Learning.
Read More...