Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

Continuous Compliance and DevOps

By Derek Weeks on June 17, 2019 OSS compliance
Compliance automation is critical to DevOps infrastructure. Christoph Hartmann, lead engineer at Chef and the creator of InSpec, explains the benefits.
Read More...

DevOps Table Stakes: The Minimum Amount Required to Play the Game

By Erik Dietrich on June 12, 2019 Devops
At the 2019 Nexus User Conference Aaron Rinehart talked about DevOps table stakes—what's necessary to even come to the table and play the game these days.
Read More...

DevOps in the 3rd Inning, DevSecOps in the 1st, says Sonatype CEO

By Katie McCaskey on June 12, 2019 devsecops
The global software supply chain is keeping the hitter honest, to use a baseball analogy. The state of open source is moving to anticipate growing speed.
Read More...

Why Diversity Shouldn’t be a Vanity Project

By Katie McCaskey on June 04, 2019 podcast
Lani Rosales makes an overt call for more women speakers in technology. What motivated her, and why is this important? She explains in a recent podcast.
Read More...

10 Ways Kubernetes Enables DevOps

By Derek Weeks on June 03, 2019 devsecops
Siamak Sadeghianfar (@siamaks), DevOps Evangelist at Red Hat, lays out 10 ways Kubernetes enables DevOps.
Read More...

Disrupt Yourself or Be Disrupted

You must continuously innovate to remain competitive. Researcher David Robinson has some tips to guide your experiments and harness new ideas.
Read More...

Hygiene for Open Source Software Is Now a PCI Requirement

By Matt Howard on February 19, 2019 PCI
PCI’s new Secure SLC outlines security requirements to ensure payment software adequately protects the integrity and confidentiality of payment transactions and data. Try Sonatype's free Nexus
Read More...

You Can't Manage What You Can't See: Open Source Governance Starts with Visibility

By Derek Weeks on December 17, 2018 open source goveranance
During the interview, Richard Spires, former CIO at the Internal Revenue Service and now CEO of Learning Tree International, said one of the biggest takeaways from the report is “you can’t protect
Read More...

Equifax was 100% preventable -- But 18,000 others at risk

By Derek Weeks on December 17, 2018 vulnerabilities
Karpovich reflected on findings from the House report that the breach at Equifax was 100% preventable -- as the vulnerability at the root of the breach was one that had been publicly disclosed days
Read More...