Featured Article

Devs flood npm with 15,000 packages to reward themselves with Tea 'tokens'

By Ax Sharma on April 16, 2024 vulnerabilities

The Sonatype Security Research team has identified over 15,000 npm packages that flood npm registry in a new trend where devs involved in the blockchain and cryptocurrency communities are leveraging

Read More

Screen Shot 2017-07-17 at 8.07.25 AM.png

2017 State of the Software Supply Chain Report

By Wayne Jackson on July 17, 2017 Docker

2 minute read time

Today, Sonatype introduces its third annual State of the Software Supply Chain report.

Read More...

Make Nexus Part of the DevOps Dozen

By Zach Peretti on August 06, 2015 DevOps Dozen

1 minute read time

Make Nexus Part of the DevOps Dozen

Read More...

We're bringing sexy back, Sonatype hits the catwalk

By Derek Weeks on June 24, 2014 Cyber Supply Chain Management and Transparency Act

2 minute read time

Enthusiasm for securing the software supply chain is growing in both conversation and practice.

Read More...

What Enterprise Architects and Time Travelers have in Common

By Tim OBrien on September 21, 2012 repository manager

5 minute read time

What Enterprise Architects and Time Travelers have in Common

Read More...

Devs flood npm with 15,000 packages to reward themselves with Tea 'tokens'

2017 State of the Software Supply Chain Report

Make Nexus Part of the DevOps Dozen

We're bringing sexy back, Sonatype hits the catwalk

What Enterprise Architects and Time Travelers have in Common

Secure your software supply chain

Subscribe for all the latest software security news and events