Skip Navigation

How DevOps evolved into DevSecOps: Embracing security in software development

By Aaron Linskens on February 09, 2024 devsecops

3 minute read time

Understand how DevOps and DevSecOps are crucial to optimize software development and ensure security is not an afterthought in an SDLC.
Read More...

DevSecOps maturity model: A beginner's guide

By Aaron Linskens on January 26, 2024 devsecops

6 minute read time

Explore the concept of a maturity model within the context of DevSecOps which serves as a guide to fortify security practices within software development.
Read More...

DevSecOps tools: A beginner's guide

By Aaron Linskens on January 05, 2024 Open Source

6 minute read time

Explore categories of DevSecOps tools and their distinct use cases and roles in reshaping modern software development practices
Read More...

How to navigate DevOps principles: Analyzing Shift Left and Secure Right

By Aaron Linskens on September 06, 2023 shift left

5 minute read time

Explore Shift Left and Secure Right, what are their core principles to achieve high-quality, secure software and how they align with DevOps and DevSecOps
Read More...

DevSecOps Leadership Forum: Revolutionizing financial services

By Sonatype on May 30, 2023 devsecops

2 minute read time

Sonatype's DevSecOps Leadership Forum gathered Financial Services experts to discuss revolutionizing the industry through DevSecOps automation.
Read More...

How to convert your SBOM between SPDX and CycloneDX formats

7 minute read time

A step-by-step guide on how to convert between SBOM formats using tooling from the official repositories of SPDX and CycloneDX.
Read More...

Post-conference tech spec: Why building your ship (application) with raw materials is a bad idea

10 minute read time

Get all the details of the presentation that Jamie Coleman, Developer Advocate on Sonatype’s Developer Relations team, gave at Voxxed Days Zurich 2023.
Read More...

Best practices in dependency management: Cooking a meal of gourmet code

5 minute read time

Close to 85% of every application is open source software. Better understanding your software supply chain starts with understanding dependency management.
Read More...

SCA and SAST: What do they do and how can they help developers like you?

By Theresa Mammarella on January 03, 2023 AppSec

5 minute read time

SCA and SAST tools help DevSecOps teams and application developers work together to identify vulnerabilities and improve security.
Read More...