Massive Data Breaches are Catalysts for DevSecOps Investments Press Release

The Latest in DevSecOps

Get Blog Updates

How a Software Bill of Materials Uncovers Known Vulnerabilities
by Derek Weeks, on April 30, 2015

Tags: Cyber Supply Chain Management and Transparency Act, H.R. 5793, Lynn Jenkins (R-KS), government open source software (GOSS), Software Supply Chain, bill of materials, application healthcheck, open source governance, open source components, open source governance policy, Ed Royce (R-CA), Cyber Chain Integrity Act, application supply chain management, open source software supply chain, Open Source, Cyber Supply Chain, Application Security, bill of materials (of 3rd party and open source co, clm, cyber supply chain management, Software supply chain management

[Part 3] Code, Cars, and Congress: A Time for Cyber Supply Chain Management
by Wayne Jackson, on December 16, 2014

Tags: Cyber Supply Chain Management and Transparency Act, H.R. 5793, Lynn Jenkins (R-KS), government open source software (GOSS), Sonatype Says, open source components, Ed Royce (R-CA), Cyber Chain Integrity Act, application supply chain management, Everything Open Source, Wayne Jackson, open source application scan, open source software supply chain, Cyber Supply Chain, bill of materials (of 3rd party and open source co, cyber supply chain management, Software supply chain management, AppSec Spotlight

[Part 2] Code, Cars, and Congress: A Time for Cyber Supply Chain Management
by Wayne Jackson, on December 08, 2014

Tags: Cyber Supply Chain Management and Transparency Act, H.R. 5793, Lynn Jenkins (R-KS), government open source software (GOSS), Sonatype Says, open source components, Ed Royce (R-CA), Cyber Chain Integrity Act, application supply chain management, Everything Open Source, Wayne Jackson, open source application scan, open source software supply chain, Cyber Supply Chain, bill of materials (of 3rd party and open source co, cyber supply chain management, Software supply chain management, AppSec Spotlight

Code, Cars, and Congress: A Time for Cyber Supply Chain Management
by Wayne Jackson, on December 05, 2014

Tags: Cyber Supply Chain Management and Transparency Act, H.R. 5793, Lynn Jenkins (R-KS), government open source software (GOSS), Sonatype Says, open source components, Ed Royce (R-CA), Cyber Chain Integrity Act, application supply chain management, Everything Open Source, Wayne Jackson, open source application scan, open source software supply chain, Cyber Supply Chain, bill of materials (of 3rd party and open source co, cyber supply chain management, Software supply chain management, AppSec Spotlight

Talking Turkey in Texas: Open Source Governance Lags
by Derek Weeks, on November 25, 2014

Tags: Cyber Supply Chain Management and Transparency Act, H.R. 5793, Lynn Jenkins (R-KS), government open source software (GOSS), Sonatype Says, bill of materials, open source governance, open source components, open source governance policy, Ed Royce (R-CA), application supply chain management, Everything Open Source, Application Security, cyber supply chain management, Software supply chain management, AppSec Spotlight

CIO.com: Helping Developers Reduce Open Source Risk
by Derek Weeks, on November 17, 2014

Tags: Cyber Supply Chain Management and Transparency Act, H.R. 5793, Lynn Jenkins (R-KS), government open source software (GOSS), Sonatype Says, bill of materials, open source governance, open source components, open source governance policy, Ed Royce (R-CA), application supply chain management, Application Security, cyber supply chain management, Software supply chain management, AppSec Spotlight

Bash 2014 - This Is Not a Party
by Derek Weeks, on September 25, 2014

Tags: Cyber Supply Chain Management and Transparency Act, H.R. 5793, Lynn Jenkins (R-KS), government open source software (GOSS), Sonatype Says, bill of materials, open source governance, security, open source components, open source governance policy, Ed Royce (R-CA), Cyber Chain Integrity Act, application supply chain management, component vulnerabilities, open source software supply chain, Open Source, Cyber Supply Chain, Application Security, bill of materials (of 3rd party and open source co, cyber supply chain management, Software supply chain management, AppSec Spotlight

ALL POSTS

Recent Posts

Posts by Topic

see all
Products
Customers
Resources
About
Social
Twitter LinkedIn Facebook Google+ YouTube

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759
Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102
Australia Office - 5 Martin Place, Level 14, Sydney 2000, NSW, Australia 
London Office - 1 Primrose St, London EC2A 2EX

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service    Privacy Policy