Sonatype Delivers Premium Open Source Controls to GitHub | Press Release

blog-logo Sonatype Blog

Managing Nexus API Using Jenkins X

By Steve Boardwell on March 13, 2020 jenkins
Steve Boardwell demonstrates how to create custom repositories in your Jenkins X managed Nexus server, and what is possible with the Nexus scripting API.
Read More...

Nexus Intelligence Insights CVE-2020-2100: Jenkins - UDP Amplification Reflection Attack Leading to Distributed Denial of Service (DDoS)

By Akshay 'Ax' Sharma on February 12, 2020 vulnerabilities
CVE-2020-2100 takes advantage of the fact that, by default, both UDP multicast/broadcast and DNS multicast traffic is enabled on Jenkins. Here's what to do.
Read More...

How to Publish Java Artifacts to Nexus Using Jenkins and Maven

By Daniel Hernández on February 07, 2020 Nexus Repository
In this article we are going to explore how you can publish Java artifacts (.ear, .jar, .war) to Nexus 3 using Jenkins and Maven.
Read More...

Identifying Security Vulnerabilities Inside a Jenkins Pipeline

By Katie McCaskey on October 16, 2019 JenkinsCI
Justin Young (@whyjustin) demonstrates how a malicious component can access your connected network - and how to identify that component inside Jenkins.
Read More...

How to Deploy a Jenkins Cluster on AWS as Part of a Fully Automate CI/CD Platform

By Mohamed Labouardy on November 05, 2018 jenkins
Following his Nexus User Conference talk on how to build a fully automated CI/CD platform on AWS, using Terraform, Packer & Ansible, Mohamed Labouardy goes even deeper, discussing how to deploy a
Read More...

The Power of Data in DevSecOps

By Derek Weeks on January 28, 2018 OSS governance
Better data improves mean times to repair in DevSecOps pipelines.
Read More...

Cancer Sucks. DevOps Helps.

By Derek Weeks on January 17, 2018 github
Sara Elkins tells the story of how they are applying DevOps practices at the National Cancer Institute.
Read More...

Continuous Integration in Pipeline as Code Environment with Jenkins, JaCoCo, Nexus and SonarQube

By Rahul Vishwakarma on January 17, 2018 github
The setup for a Continuous integration pipeline... this is for mavenized Spring boot build with JaCoCo coverage reports and Sonar metrics.
Read More...

Nexus Repo Containers with Persistent Storage in Azure Container Instances

By Daniel Scott-Raynsford on January 05, 2018 Nexus
With a bit of automation, this could turn out to be a cost effective way to quickly and easily run some common services.
Read More...