Sonatype Named in the 2023 Gartner® Magic Quadrant™ for Application Security Testing
4 minute read time
Sonatype is named to the 2023 Gartner Magic Quadrant for Application Security Testing (AST).
Read More...
Your Guide to AppSec Tools: SAST or SCA?
4 minute read time
Software composition analysis speeds time to innovation by automating manual open source governance processes that are prone to errors.
Read More...
Gartner: You Must Assess Overall Software Health and Welfare
4 minute read time
Gartner reports that mature organizations are expanding open-source management to include health assessment by default.
Read More...
Gartner: The Crucial Role of OSS License Compliance
4 minute read time
Gartner's SCA recommendations include deep understanding of OSS licensing. Operating without license compliance, intentionally or not, invites peril.
Read More...
Gartner: Mitigate Risk by Hardening the Software Supply Chain
5 minute read time
As Gartner explains, key to mitigating open source risk, is a hardened software supply chain. But, where do you start?
Read More...
Why You Need a Software Bill of Materials More Than Ever
5 minute read time
Enterprises need to know what open source components are in their software at all times. If you don't have a software bill of materials, you're already behind.
Read More...
Gartner Goes Development-Centric
1 minute read time
Recently, Gartner published a new research report that says by 2016, “the vast majority of mainstream IT organizations will leverage nontrivial elements of open source software (directly or
What's Happening in the Land of Open Source Components
2 minute read time
We continue to see exponential growth in requests from the Central Repository. In fact, there were 8 Billion requests in 2012 - and it is looking like this year will total up to 13 Billion
12 Takeaways from Gartner Security & Risk Management Summit
5 minute read time
12 Takeaways from Gartner Security & Risk Management Summit
Read More...