Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

Struts2 Vulnerabilities: Who Is Responsible? (Video and Podcast)

By Mark Miller on September 14, 2017 Known Vulnerabilities
With the acknowledgement by Equifax this morning, we talk about who is responsible for this, the creators of the open source solutions or people who use them.
Read More...

The Nexus Firewall – Perimeter Defense for Software Development

By Mike Hansen on January 25, 2017 Known Vulnerabilities
We now have a revolutionary way to improve speed and reduce risk through the quarantine of components with known vulnerabilities using Nexus Firewall.
Read More...

An Insider's View: Analyzing Software Supply Chains

2016 state of the software supply chain report reveals the volume of open source component usage and quantifies the presence of known vulnerabilities.
Read More...

Automated Nexus Reports on Licenses, Security, and More

By Derek Weeks on August 05, 2015 nexus pro
Automated Nexus Reports on Licenses, Security, and More
Read More...

The Cost to DevOps: 27 Mufflers

By Derek Weeks on July 16, 2015 Known Vulnerabilities

Imagine that you are designing the 2016 Range Rover line of sport utility vehicles. Like all gas powered vehicles, each one needs an exhaust muffler. Range Rover likely has narrowed in on a preferred

Read More...