One in Six Developers in Healthcare Report Open Source Breaches | Press Release

blog-logo Sonatype Blog

Trust and Courage are Essential to a Strong Team Culture

By Keith Sprochi on July 02, 2020 leadership
A healthy work culture is invaluable. I think that the Sonatype culture has two main ingredients: trust and courage.
Read More...

The Latest DevSecOps Podcast Playlist

By Katie McCaskey on July 01, 2020 devsecops
The latest playlist of DevSecOps podcast episodes discuss open source vulnerabilities, security, culture, and more.
Read More...

Money Doesn’t Buy Happiness, But Happy Developers Protect Money

By Derek Weeks on June 26, 2020 devsecops
Developers in mature DevOps practices are 1.2x happier than their grumpy peers in the financial sector. This impacts software security, and your wallet.
Read More...

Considering Nexus Auditor? You Should, But Know These Things First

By Kadi Grigg on June 25, 2020 JIRA
Nexus Auditor, in the right use case, is a solid, cost-effective solution. Is Nexus Auditor the solution for you? Maybe, maybe not. Here's how to find out.
Read More...

Continuously Improve CI/CD with Nexus Lifecycle and Bitbucket Code Insights

By Kevin Miller on June 18, 2020 atlassian
Developers using the Nexus platform integrated with Code Insights know when a change introduces risk, with contextual feedback for the individual branch.
Read More...

New in Nexus Repository 3.24: Storage Optimization at Scale and NuGet V3 Hosted

By Brent Kostak on June 09, 2020 Product Release
Nexus Repository 3.24 offers enterprise admin capabilities and frictionless ecosystem support with new storage at scale and NuGet V3 hosting capabilities.
Read More...

Octopus Scanner Compromises 26 OSS Projects on GitHub

By Brian Fox on May 31, 2020 #OSSsecurity
The Octopus Scanner malware compromised 26 open source projects hosted on GitHub in a new form of software supply chain attack targeting NetBeans projects.
Read More...

Tanya Janca is "Big Fan of SCA" [VIDEO]

By Zack Conord on May 15, 2020 devsecops
Zack Conord interviews Tanya Janca of SheHacksPurple about her new business and why she's eager to teach software composition analysis.
Read More...

DevSecOps Leadership Forum: 500 Innovators Learning from Shared Experiences

By Matt Howard on May 14, 2020 Community
This is a recap of experiences and insights shared at the 2020 DevSecOps Leadership Forum. On demand recordings of the event are now available for free.
Read More...