Secure Software Development Attestation Form: Sonatype helps you comply

6 minute read time

The CISA Secure Software Development Attestation Form sets cybersecurity standards for US Federal agency software purchases. Learn how Sonatype helps you comply with SSDF guidelines.
Read More...

What are SBOM standards and formats?

6 minute read time

Explore the nuances of SBOM standards and formats, charting a course through the complexities that shape software transparency and security today
Read More...

Women in cybersecurity: On the shoulders of giants

By Ankita Lamba on March 07, 2024 women in devops

5 minute read time

For Women's History Month, learn about ten women who are experts in their fields and shaping the future of the cybersecurity landscape
Read More...

Embracing the AI revolution: Navigating the impact on developers

By Aaron Linskens on March 04, 2024 Software Supply Chain

4 minute read time

Explore Sonatype's whitepaper, The Effects of AI on Developers, highlighting the challenges, opportunities, and transformative effects generative AI.
Read More...

A demand for real consequences: Sonatype's response to CISA's Secure by Design

By Brian Fox on February 23, 2024 thought leaders

7 minute read time

Sonatype's founder and CTO Brian Fox discusses more stringent enforcement mechanisms to encourage wider adoption of secure development practices
Read More...

How the SEC charges against SolarWinds highlight the cybersecurity liability of software companies

By Jeff Wayman on October 31, 2023 Cybersecurity

5 minute read time

Read about how the Securities and Exchange Commission charged SolarWinds and its chief information security officer for violating federal securities laws
Read More...

How manufacturing best practices can improve open source consumption and software supply chains

By Jeff Wayman on October 12, 2023 thought leaders

5 minute read time

Explore Sonatype's research paper developed in partnership with the Atlantic Council on software supply chain best practices for open source consumption
Read More...

Introducing our 9th annual State of the Software Supply Chain report

By Aaron Linskens on October 03, 2023 open source security

5 minute read time

Sonatype announces the arrival of our 9th annual State of the Software Supply Chain report that explores open source security, industry trends, and more.
Read More...

Unlocking the power of generative AI in software development: Insights from Sonatype's survey

By Aaron Linskens on September 12, 2023 Software Supply Chain

4 minute read time

Explore the influence of generative AI in software development via the results of Sonatype's recent survey involving 400 DevOps and 400 SecOps leaders
Read More...