Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

Accelerate: A Principle-based DevOps Framework

By Ember DeBoer on September 18, 2019 devops best practices
The devops framework proposed by the Accelerate authors is focused on three key areas: Continuous Delivery, Architecture, and Product Process.
Read More...

Three Ways: A Principle-based DevOps Framework

By Ember DeBoer on September 16, 2019 devops best practices
Three Ways is a principle-based devops framework. The Three Ways framework includes: first, Flow, second, Feedback, third, Continuous Learning.
Read More...

New Micro Focus, Sonatype Partnership Provides 360 Degree View of AppSec

By Michelle Dufty on September 11, 2019 AppSec
The need to understand both custom and open source code, in a holistic way, is exactly why Micro Focus and Sonatype have come together in partnership.
Read More...

The Three R’s of Software Supply Chains: Reject, Replace, and Respond

By Curtis Yanko on September 09, 2019 devops best practices
OWASP A9 has been around for over 6 years now. These three R's helps enterprise security manage their software supply chains: Reject, Replace, Respond.
Read More...

Security Should Stop Being a Drag

By DJ Schleen on September 06, 2019 deployment
An application should withstand automated, manual, or user testing. Security vulnerabilities, although extremely important, are in reality non-functional.
Read More...

Improving DevSecOps at the GSA

By Derek Weeks on September 05, 2019 government
The General Service Administration shares how it adopted devops practices interagency in this presentation, Getting There: The Journey to Government DevOps.
Read More...

DevSecOps & Chaos Engineering: Knowing the Unknown

By Derek Weeks on September 04, 2019 software testing
Aaron Rinehart (@aaronrinehart) dives into chaos engineering: what it is, why you need it, and how you can implement it in your organization.
Read More...

DevOps-as-a-Service: Overcoming Challenges in Large Organizations

By Derek Weeks on September 03, 2019 devops tools
DevOp-as-a-Service involves a team and a platform that share the goal of continuously increasing self-service capabilities.
Read More...

Take This Interactive DevSecOps Reference Architecture For a Test Drive

By Katie McCaskey on August 30, 2019 reference architecture
An interactive DevSecOps reference architecture illustrates manual and automated processes, plus interactions between systems, stakeholders, and security.
Read More...