What We Learned from Studying 36,000 OSS Projects | Press Release

blog-logo Sonatype Blog

Nexus Lifecycle Now Integrates with Azure DevOps to Secure Software Supply Chains in the Cloud

By Michelle Dufty on October 11, 2019 Nexus Lifecycle
The Nexus IQ Extension for Azure DevOps scans builds to identify open source security, license, or quality policy violations.
Read More...

Better, Faster, Stronger: Nexus Lifecycle's Improved JIRA Add-on Gives Developers and AppSec Something to High-Five About

By Michelle Dufty on August 14, 2019 JIRA
Nexus Lifecycle's new JIRA add-on with violation reporting eliminates the admin overhead of managing fixes. Component fixes are assigned and tracked with one-click.
Read More...

Developers, Rejoice: Auto-Remediation Now Available in Eclipse, IntelliJ, and Visual Studio

By Sonal Thawani on July 08, 2019 Nexus Lifecycle
Auto-remediation makes it even easier to choose the best component right within an IDE. The CIP now automatically suggests the compliant version.
Read More...

Hands On with the Nexus Platform: A Software Supply Chain Demo

By Katie McCaskey on June 14, 2019 Nexus solutions
Sonatype's Ilkka Turunen demonstrates how to use the Nexus Platform. Download the files to try it yourself. You'll see how useful it is for your workflow.
Read More...

Developers, Say Goodbye to Vulnerabilities. Squash Those Bugs!

By Katie McCaskey on June 12, 2019 Nexus Lifecycle
Sonatypers Jerome Gergel and Melanie Latin offer developers a set of four best practices once violations are identified in your software.
Read More...

OSS for Enterprise: Procure Secure Components Faster & Manage Risk Better

By Carlos Schults on June 12, 2019 Nexus Lifecycle
The CI ecosystem is large and complex, especially at a company like Discover. Sheshagiri Rao shared personal insight into how to manage risk at a company where the stakes are high, using Nexus.
Read More...

The Path Forward for the Nexus Platform

By Katie McCaskey on June 12, 2019 Nexus Lifecycle
We’re seeing double and triple digit growth across usage, Nexus Repo instances, Nexus Repo scans, and daily apps under management. What comes next?
Read More...

New with Nexus: Policy-Oriented Reporting with Lifecycle

By Sonal Thawani on May 10, 2019 Nexus Lifecycle
The new version our Application Composition Report now includes policy violations at the center of the report, allowing you to quickly identify and act on remediation opportunities.
Read More...

Operating Without an OSS License? That Could Be Dangerous!

By Derek Weeks on April 17, 2019 Nexus Lifecycle
The intent of OSS licensing is to to make sure software can remain open source and freely used. But, some licenses contain requirements that could conflict with your business objectives - it's
Read More...