Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

A World of Infinite Choice in Open Source Software

The 2019 Software Supply Chain Report explains the development environment we're all living in and what we can learn from exemplar dev teams.
Read More...

GDPR Gets Teeth: British Airways and Marriott Fined

By Ilkka Turunen on July 09, 2019 devsecops
Fines levied at British Airways and Marriott International under GDPR show why data protection must be a central part of the software supply chain.
Read More...

Anonymous Access In Nexus Repository is Not A Zero-Day Vulnerability

By Brian Fox on July 02, 2019 Nexus Repository
A researcher contacted us about an issue in Nexus Repository, stemming from user access settings. This was not a zero day, but a product feature UX change, to make it easier to be more secure - we
Read More...

Developers: We Must Evolve

By Derek Weeks on June 28, 2019 Devops
Chris Roberts of Attivo Networks sees many trends colliding that will require developers to adopt DevSecOps practices - now!
Read More...

What 36,000 OSS Projects and 12,000 Commercial Dev Teams Taught Us About Secure Coding Practices

By Derek Weeks on June 25, 2019 Software Supply Chain
Our 2019 State of the Software Supply Chain Report Reveals Best Practices From 36,000 OSS Dev Teams and 12,000 commercial software engineering teams.
Read More...

DevOps Culture: The Neuroscience of Behavior

By Katie McCaskey on June 18, 2019 devsecops
Helen Beal of Ranger4 takes a look at how the brain works, and what that means for cultural transformation. This is your brain on DevOps.
Read More...

Continuous Compliance and DevOps

By Derek Weeks on June 17, 2019 OSS compliance
Compliance automation is critical to DevOps infrastructure. Christoph Hartmann, lead engineer at Chef and the creator of InSpec, explains the benefits.
Read More...

The 2019 Nexus User Conference is Almost Here

By Janie Gelfond on June 07, 2019 devsecops
The "un-conference" of the year is here. On June 12, learn from Sonatype leadership about the future of The Nexus Platform and hear DevSecOps transformation stories from TD Bank, American Express,
Read More...

What is the Definition of DevOps?

By Ember DeBoer on June 06, 2019 devops best practices
DevOps is more than a combination of two words. But what is it, exactly? This post dispels some of the common misconceptions around DevOps.
Read More...