Featured Article

Devs flood npm with 15,000 packages to reward themselves with Tea 'tokens'

By Ax Sharma on April 16, 2024 vulnerabilities

The Sonatype Security Research team has identified over 15,000 npm packages that flood npm registry in a new trend where devs involved in the blockchain and cryptocurrency communities are leveraging

Read More

Nexus Intelligence Insights - CVE-2017-5662 - Cross-Site Scripting (XSS)

By Elisa Velarde on January 25, 2019 vulnerabilities

4 minute read time

Nexus Intelligence Insights - CVE-2017-5662 - Cross-Site Scripting (XSS)

Read More...

Introducing Nexus Intelligence Insights

By Elisa Velarde on October 12, 2018 vulnerabilities

2 minute read time

Nexus Intelligence Insights

Read More...

New JavaScript intelligence now available in the Nexus Platform

By Michelle Dufty on August 29, 2018 Nexus Lifecycle

2 minute read time

Nexus Intelligence now includes expanded coverage for JavaScript to identify hidden JS files not found in other solutions and a new user experience to identify.

Read More...

Software Composition Analysis: Precision Definitely Matters (Just Ask Our Competitors)

By Matt Howard on July 24, 2018 Software composition analysis

3 minute read time

Just two years ago, SCA was more about helping traditional security professionals identify suspects across a broad spectrum of open source ecosystems.

Read More...

Devs flood npm with 15,000 packages to reward themselves with Tea 'tokens'

Nexus Intelligence Insights - CVE-2017-5662 - Cross-Site Scripting (XSS)

Introducing Nexus Intelligence Insights

New JavaScript intelligence now available in the Nexus Platform

Software Composition Analysis: Precision Definitely Matters (Just Ask Our Competitors)

Secure your software supply chain

Subscribe for all the latest software security news and events