Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

Publishing Private NPM Packages to Nexus

By Erik Dietrich on June 12, 2019 How-To
From DRY principle, sharing code within an organization, and keeping code secure, there are many reasons you may want to publish private NPM packages to Nexus. Today, we show you the how.
Read More...

Corrupting the Software Supply Chain: Lessons from the Bootstrap-sass Hack

By Elisa Velarde on April 09, 2019 vulnerability
The boldness of bad actors is escalating in the world of open source software. From the event-stream / NPM incident in November of 2018, to the recent bootstrap-sass / Ruby Gems hack, bad actors are
Read More...

Open Source Software Is Under Attack; New Event-Stream Hack Is Latest Proof

By Brian Fox on November 27, 2018 vulnerabilities
Open source software is under attack, and the malicious attack on the popular npm event-stream 3 package, is just the latest proof.
Read More...

3 steps to deal with the aftermath of the highjacked eslint-scope package

By Ilkka Turunen on July 13, 2018 npm
Yesterday at noon BST a new github issue was opened in the popular eslint repository on github. Someone had highjacked this package which stole user's credentials. Here's how to react to the
Read More...

Open Sourcing npm in Nexus Repository Manager 3

By Joseph Stephens on April 02, 2018 npm
Open Sourcing npm in Nexus Repository Manager 3
Read More...

Using Nexus IQ Server with the webpack Plugin

By Ross Pokorny on December 15, 2017 npm
We realize that these challenges are not unique to our own development. For that reason, we released the webpack plugin to our FOSS community repo.
Read More...

NPM Search Changes

By Joseph Stephens on November 17, 2017 npm
NPM Search in Nexus Repo
Read More...

Nexus Repository 3.0: Most Frequently Asked Questions - Answered

By Jeffry Hesse on July 08, 2016 Nuget
Nexus Repository 3.0 has hit the streets and is now available to all for free. What's changed? Check out the most frequently asked questions and see.
Read More...

Ground Control To Nexus Users: Nexus Repository Manager 3 Milestone 7 Release

By Jeffry Hesse on January 21, 2016 repository health check

The final milestone is here, and we are pleased to announce Nexus Repository Manager 3 Milestone 7 has “made the grade” and it’s ready to release! It’s time to engage your engines and blast off with

Read More...