Sonatype Delivers Premium Open Source Controls to GitHub | Press Release

blog-logo Sonatype Blog

Improving DevSecOps at the GSA

By Derek Weeks on September 05, 2019 government
The General Service Administration shares how it adopted devops practices interagency in this presentation, Getting There: The Journey to Government DevOps.
Read More...

DevSecOps & Chaos Engineering: Knowing the Unknown

By Derek Weeks on September 04, 2019 software testing
Aaron Rinehart (@aaronrinehart) dives into chaos engineering: what it is, why you need it, and how you can implement it in your organization.
Read More...

DevOps-as-a-Service: Overcoming Challenges in Large Organizations

By Derek Weeks on September 03, 2019 devops tools
DevOp-as-a-Service involves a team and a platform that share the goal of continuously increasing self-service capabilities.
Read More...

Take This Interactive DevSecOps Reference Architecture For a Test Drive

By Katie McCaskey on August 30, 2019 reference architecture
An interactive DevSecOps reference architecture illustrates manual and automated processes, plus interactions between systems, stakeholders, and security.
Read More...

KubeSecOps: Kubernetes Security Practices You Should Follow

By Derek Weeks on August 29, 2019 governance
Karthik Gaekwad, (@iteration1), a developer and cloud native evangelist at Oracle, shares tips and tools to ensure your Kubernetes containers are secure.
Read More...

Sonatype Users Reveal the Benefits of Automated DevSecOps

By IT Central Station on August 28, 2019 devsecops
IT Central Station gathered unbiased reviews for Sonatype Nexus Lifecycle and Nexus Repository to find out what users had to say about these DevSecOps products.
Read More...

Anatomy of the RubyGems ‘rest-client’ hack, and getting creative about open source security

By Brian Fox on August 23, 2019 open source security
Last month, the RubyGems strong_password component was breached and injected with malicious code. This is only the latest example of bad actors attacking developers at the source.
Read More...

Success Requires Reflection on DevSecOps Failures

By DJ Schleen on August 23, 2019 DevOps Culture
There are so many books on how to succeed, but none about the major challenges and headaches that will ultimately occur when beginning a DevSecOps journey.
Read More...

Building Microservice Architecture on Kubernetes

By Derek Weeks on August 22, 2019 open source goveranance
Namespace-level isolation is helpful for managing Kubernetes architecture. Also, do not put all things in the default namespace. Keep it simple.
Read More...