Sonatype Selected by Equifax to Support OS Governance Press Release


You Can't Manage What You Can't See: Open Source Governance Starts with Visibility

By Derek Weeks on December 17, 2018 open source goveranance

The former CIO for the IRS appeared on television this past weekend to discuss the recent House report on the Equifax breach published by the Energy and


Doctor, Doctor, Can't You See?  Congress Calls for Cybersecurity.

By Derek Weeks on November 17, 2017 software bill of materials

Prescribing a Software Bill of Materials

On November 16th, U.S. Congressman Greg Walden (R-OR) sent a letter to the U.S. Department of Health and Human


Internet of Things Cybersecurity Improvement Act of 2017

By Derek Weeks on August 01, 2017 IoT

The United States Senate is making moves to protect consumer interests, data, and privacy with regard to the Internet of Things (IoT).  Today, U.S.


The Trump White House Takes Aim at Cybersecurity

By Derek Weeks on May 12, 2017 Cybersecurity

“The executive branch has for too long accepted antiquated and difficult–to-defend IT”, declared President Donald Trump in a new Executive Order released on


The Open Source Software Index is BOSS!  Here's Why.

By Matt Howard on April 09, 2017 DecSecOps

Yesterday Dharmesh Thakker and his colleagues at Battery Ventures unveiled the Battery Open-Source Software Index.  The BOSS Index is the result of a


Rework is Choking Software (2015 State of the Software Supply Chain Report)

By Derek Weeks on June 23, 2015 lean enterprise

Rework is Hell

“Software may be eating the world, but rework is choking software”, tweeted John Jeremiah (@j_jeremiah). To shed more light on what is