Featured Article

Devs flood npm with 15,000 packages to reward themselves with Tea 'tokens'

By Ax Sharma on April 16, 2024 vulnerabilities

The Sonatype Security Research team has identified over 15,000 npm packages that flood npm registry in a new trend where devs involved in the blockchain and cryptocurrency communities are leveraging

Read More

Identifying Security Vulnerabilities Inside a Jenkins Pipeline

By Katie McCaskey on October 16, 2019 JenkinsCI

2 minute read time

Justin Young (@whyjustin) demonstrates how a malicious component can access your connected network - and how to identify that component inside Jenkins.

Read More...

Achieving CI/CD with Kubernetes

By Ramit Surana on February 17, 2017 JenkinsCI

11 minute read time

This article explores two interesting pieces technology: Jenkins, a popular CI/CD tool, and Kubernetes, a popular orchestration engine for containers.

Read More...

Nexus, Continuous Delivery and DevOps: Slideshow Gallery

By Mark Miller on January 16, 2015 JIRA

1 minute read time

Nexus, Continuous Delivery and DevOps: Slideshow Gallery

Read More...

Devs flood npm with 15,000 packages to reward themselves with Tea 'tokens'

Identifying Security Vulnerabilities Inside a Jenkins Pipeline

Achieving CI/CD with Kubernetes

Nexus, Continuous Delivery and DevOps: Slideshow Gallery

Secure your software supply chain

Subscribe for all the latest software security news and events