Featured Article

New Design, New Features: Maven Central Improvements for Developers

By Amanda Yeo on March 28, 2023 open source security

Hosted by Sonatype, Maven Central has a refreshed interface and new features to improve the developer experience.

Read More

SHARE:

Sonatype_Blog_Logo_White
Software supply chain
READ MORE

Sonatype CEO on The Future of the Software Supply Chain

5 minute read time

Sonatype's CEO Wayne Jackson talked about Maven, the software supply chain, and speed vs. security no longer being at odds, at the 2020 Nexus User Conference.
Read More...
GettyImages-966263184
READ MORE

Repository Management: An Easy Way to Minimize Risk

By Katie McCaskey on July 05, 2019 repository manager

2 minute read time

Mykel Alvis (@mykelalvis) of Array Consulting urges developers to use a caching, and preferably security-scanning, artifact repository. Here's why.
Read More...
GettyImages-1045890176
READ MORE

New Cloud-Native CI/CD Projects OpenShift Pipelines and Tekton

By Katie McCaskey on July 01, 2019 devsecops

3 minute read time

Siamak Sadeghianfar of RedHat explains how the open source projects Tekton and OpenShift support cloud-native CI/CD projects.
Read More...
GettyImages-969147718
READ MORE

DevOps Culture: The Neuroscience of Behavior

By Katie McCaskey on June 18, 2019 devsecops

3 minute read time

Helen Beal of Ranger4 takes a look at how the brain works, and what that means for cultural transformation. This is your brain on DevOps.
Read More...
GettyImages-922215158
READ MORE

OSS for Enterprise: Procure Secure Components Faster & Manage Risk Better

By Carlos Schults on June 12, 2019 Nexus Lifecycle

3 minute read time

The CI ecosystem is large and complex, especially at a company like Discover. Sheshagiri Rao shared personal insight into how to manage risk at a company where the stakes are high, using Nexus.
Read More...
GettyImages-1025252462
READ MORE

Tools, Not Rules

By Sylvia Fronczak on June 12, 2019 DevOps Culture

3 minute read time

American Express went through a DevOps identity crisis to fully understand how important culture was to making the right tools stick in their organization. Tim Klever shares their lessons learned.
Read More...
GettyImages-937749836
READ MORE

Empowering Developers: Security Self Serve and Automated Time-Based Waivers

4 minute read time

Tyro recently empowered their developers to build more secure software by instituting time-based waivers. At the Nexus User Conference, they shared how they made it happen.
Read More...
GettyImages-1058176702
READ MORE

The Path Forward for the Nexus Platform

By Katie McCaskey on June 12, 2019 Nexus Lifecycle

3 minute read time

We’re seeing double and triple digit growth across usage, Nexus Repo instances, Nexus Repo scans, and daily apps under management. What comes next?
Read More...
GettyImages-912129754
READ MORE

Publishing Private NPM Packages to Nexus

By Erik Dietrich on June 12, 2019 How-To

4 minute read time

From DRY principle, sharing code within an organization, and keeping code secure, there are many reasons you may want to publish private NPM packages to Nexus. Today, we show you the how.
Read More...