Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

CocoaPods and Conda in Nexus Repository 3.19

By Brent Kostak on October 02, 2019 Sonatype Nexus
Nexus Repository Manager, the most widely used universal binary repository manager, now features native format support for CocoaPods and Conda.
Read More...

Announcing GoNexus

By Joseph Stephens on August 21, 2019 Nexus Repository
GoNexus helps developers run reliable and reproducible builds. It follows our tools, Nancy, Goalie, NXRM OSS, and DepShield used in the Go community.
Read More...

Nexus Repository Now Supports APT

By Sable Yemane on August 19, 2019 Docker
Nexus Repository Manager 3.17 supports Advanced Package Tool repositories. Use APT to search, install, manage packages on Debian, Ubuntu, and Linux.
Read More...

How to Use Gitlab-CI with Nexus

By Sudipt Sharma on August 14, 2019 Nexus Repository
Sudipt Sharma demonstrates how to establish a CI/CD pipeline using gitlab-ci and deploying artifacts to Nexus Repository.
Read More...

Repository Management: An Easy Way to Minimize Risk

By Katie McCaskey on July 05, 2019 repository manager
Mykel Alvis (@mykelalvis) of Array Consulting urges developers to use a caching, and preferably security-scanning, artifact repository. Here's why.
Read More...

Anonymous Access In Nexus Repository is Not A Zero-Day Vulnerability

By Brian Fox on July 02, 2019 Nexus Repository
A researcher contacted us about an issue in Nexus Repository, stemming from user access settings. This was not a zero day, but a product feature UX change, to make it easier to be more secure - we
Read More...

DevSecOps Without Compromise

By Katie McCaskey on June 26, 2019 oss
Oliver Milke of Cloudogu provides tips to strengthen your DevSecOps toolchain. He also points out two potential weaknesses that might lurk inside, too.
Read More...

New in Repo - Repository Routing Helps Protect Against Dependency Hijacking Attacks

By Sable Yemane on June 26, 2019 Nexus Repository
How to create a repository routing rule to prevent developers from pulling a private package from a public repository. Company Pied Piper as an example.
Read More...

Hands On with the Nexus Platform: A Software Supply Chain Demo

By Katie McCaskey on June 14, 2019 Nexus solutions
Sonatype's Ilkka Turunen demonstrates how to use the Nexus Platform. Download the files to try it yourself. You'll see how useful it is for your workflow.
Read More...