Struts2 Exploited Again. Did Anyone Bother to Tell You?
5 minute read time
This week I woke up to find several emails from Nexus Lifecycle indicating that the products in my portfolio were potentially vulnerable due to their.
Read More...
DevSecOps: Better Software, Faster
3 minute read time
1 in 16 open source and third-party components downloaded last year included a known vulnerability.
Read More...
LEGO, Death Stars, and Millennium Falcons, Oh My
5 minute read time
Why do you need Nexus Firewall? Because 1 in 15 open source components you download include known security vulnerabilities.
Read More...
How to Video Training: Open Source Component Management and Intelligence
2 minute read time
As a long-time trainer for Apache Maven and Sonatype Nexus Repository Manager, I’ve spent considerable time recording and editing numerous short tutorial.
Read More...
Nexus Repository 3.0: Most Frequently Asked Questions - Answered
8 minute read time
Nexus Repository 3.0 has hit the streets and is now available to all for free. What's changed? Check out the most frequently asked questions and see.
Read More...
Sonatype Releases Nexus Repository 3.0
4 minute read time
Sonatype’s Nexus Repository now offers the first, completely free, repository manager supporting the world’s most popular component formats.
Read More...
Intuit’s DevSecOps: War Games, Gamification, and Culture Hacking
17 minute read time
Sit down with Shannon Lietz, Ian Allison, and Scott Kennedy from Intuit to learn about Rugged DevOps (some call in DevSecOps).
Read More...
Lessons Learned Again #npmgate
6 minute read time
Find out more around the kik package, the trademark threats, the unpublishing of the left-pad package and the results, check out this recap.
Read More...
Can you imagine a large manufacturer like Toyota, Samsung or General Electric managing all their parts without one or numerous warehouses? Probably not,.
Read More...