Featured Article

New Design, New Features: Maven Central Improvements for Developers

By Amanda Yeo on March 28, 2023 open source security

Hosted by Sonatype, Maven Central has a refreshed interface and new features to improve the developer experience.

Read More

SHARE:

Sonatype_Blog_Logo_White
READ MORE

Make Sure Your Company is Prepared for Evolving Software Liability Regulations

By Brian Fox on February 09, 2023 thought leaders

13 minute read time

Organizations should understand changes to liability and government regulation, and have the proper tools in place to protect their software supply chains.
Read More...
READ MORE

Are Unnecessary Vulnerabilities Polluting Your Software Supply Chain?

8 minute read time

As malicious software supply chain attacks continue to evolve, so do the ways that bad actors exploit vulnerable libraries.
Read More...
READ MORE

Sonatype Celebrates World Open Source Day 2023

By Jeff Wayman on February 01, 2023 Nexus Platform

8 minute read time

February 3rd is World Open Source Day and Sonatype is celebrating all the ways to engage with the software that powers our world.
Read More...
READ MORE

Sonatype Lifecycle and Firewall Now Available in the Cloud

By Crystal Derakhshan on February 01, 2023 Product Release

4 minute read time

Sonatype’s new cloud offer means customers looking to scale and secure their software development lifecycle can do so with less maintenance and infrastructure.
Read More...
READ MORE

Sonatype Nexus Lifecycle Boosts Open Source Security and Dependency Management

By Audra Davis-Hurst on January 13, 2023 Nexus Lifecycle

10 minute read time

Nexus Lifecycle is designed to monitor for problems at every stage of the software development life cycle (SDLC) and automatically address them.
Read More...
READ MORE

Developers Need Two Things: The Nexus Platform and a Full Pot of Coffee

By Austin Bradley on December 13, 2022 Nexus Lifecycle

5 minute read time

Waiting too long to invest in security is too common. Sonatype's Nexus platform helps orgs protect themselves from known and unknown vulnerabilities.
Read More...
READ MORE

U.S. Government’s Guidelines for Securing Software: Suppliers

By Sonatype on November 23, 2022 secure software supply chain

7 minute read time

Sonatype breaks down the software supply chain best practices for suppliers that were recently released by the ESF Software Supply Chain Working Panel.
Read More...
READ MORE

Weaponizing Open Source Through Job Recruiting

By Ilkka Turunen on October 03, 2022 News

7 minute read time

There have been troubling new reports of threat actors weaponizing open source to target employee machines at technology companies, governments, and more.
Read More...
READ MORE

How You Can Manage and Eliminate Technical Debt

7 minute read time

Understanding technical debt is critical to better understanding, and securing, your software supply chain.
Read More...