Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

Kubernetes in 10 Seconds

By Katie McCaskey on September 12, 2019 developers
Sonatype's DJ Schleen (@djschleen) explains Kubernetes in less than 10 seconds in this video. Ready? 10...9...8...
Read More...

Top 5 Tomcat Vulnerabilities

By Sylvia Fronczak on June 12, 2019 vulnerability
If you spend time monitoring and patching OSS projects, you know Tomcat has some vulnerabilities. Today, Tomitribe walked us through 5 of those vulnerabilities.
Read More...

What is the Definition of DevSecOps?

By Ember DeBoer on June 11, 2019 devsecops
DevSecOps protects the software supply chain, from initial open source component selection to building, staging, and releasing an application. What is it?
Read More...

What is the Definition of DevOps?

By Ember DeBoer on June 06, 2019 devops best practices
DevOps is more than a combination of two words. But what is it, exactly? This post dispels some of the common misconceptions around DevOps.
Read More...

Deploying DevOps in Government - the Second Time is the Charm

By Derek Weeks on April 15, 2019 devsecops
Getting buy-in from a government agency to change anything, is not an easy task. Mieke Deene walks us through the 6 challenges she overcame to convince the Dutch Government to adopt DevOps practices.
Read More...

Kubernetes Recipe: Sonatype Nexus 3 as a Private Docker Registry

By Oleg Smetanin on December 14, 2017 Sonatype Nexus
With Sonatype Nexus 3 we can easily get private docker registry for Kubernetes cluster, npm and maven registry for applications.
Read More...

DevSecOps in Government: How to Deploy It and Own It

By Derek Weeks on November 29, 2017 Continuous Delivery
DevSecOps requirements that need to be met by any specific implementation before it can be considered a Standard GSA DevSecOps Platform to used in conjunction with the CTO, Deputy CIO, and CISO to
Read More...