Sonatype Selected by Equifax to Support OS Governance Press Release
SON_logo_blog_2

Featured Article

26% Acknowledge a Web Application Breach in 2019

By Derek Weeks on February 12, 2019 Post security/devsecops

Early this morning news broke that 620 million account details stolen from hacked websites were up for sale on the dark web.  The scale of the stolen

Read More...

SHARE:

Filter by:
Screen Shot 2018-05-07 at 12.00.54 PM
READ MORE

Eight More Struts Breaches

Earlier today, Robert Hackett at Fortune published an eye opening report on the number of organizations who continue to download known vulnerable open

Read More...
Screen Shot 2018-05-02 at 8.00.49 PM
READ MORE

Struts One-Two Punch Knocks Out India

By Derek Weeks on May 02, 2018 struts breach

The social security system of India, AADHAAR, was just breached due to a Struts related vulnerability exploited on their website.   If you are not familiar

Read More...
GettyImages-157189322
READ MORE

Open Source Governance Hits the C-Suite

By Derek Weeks on April 11, 2018 open source management

Earlier today, the Wall Street Journal’s Adam Janofsky wrote an article entitled,How Companies Can Manage Risks Tied to Open-Source Software*. Coverage of

Read More...
Screen Shot 2018-03-16 at 2.12.39 PM
READ MORE

Nexus User Conference: Online, Free, June 6 - 7

By Derek Weeks on March 16, 2018 Nexus Repository OSS

 

Read More...
GettyImages-896676620-1
READ MORE

Nexus Repository 3.9 Released with a new Upload UI and Firewall Support

By Daniel Sauble on March 01, 2018 Nexus Repository OSS

We are pleased to announce the release of Nexus Repository 3.9. This release adds two major features:

Read More...
27-SonatypesData.png
READ MORE

DevSecOps and GDPR:  Why Open Source Risk Management Has Never Been More Important

By Matt Howard on October 29, 2017 gdpr

We live in an application economy.

Read More...
READ MORE

How a Software Bill of Materials Uncovers Known Vulnerabilities

In two minutes, we can show you a full software bill of materials for your application. We can also identify any known vulnerabilities in the open source

Read More...
READ MORE

Evaluating OSS logistics solutions? Consider these 9 tips.

By Derek Weeks on February 24, 2015 Sonatype vs. Black Duck

With well over 17 billion open source components downloaded from public repositories in 2014, it is clear that more software development organizations are

Read More...
READ MORE

Talking Turkey in Texas: Open Source Governance Lags

Deep in the heart of Texas, I was leading a panel discussion at the Lone Star Application Security Conference (LASCON) a few weeks ago. The panel was “

Read More...
Products
Customers
Resources
About
Social
Twitter LinkedIn Facebook Instagram YouTube
SON_logo_white@2x copy trimmed

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759
Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102
Australia Office - 5 Martin Place, Level 14, Sydney 2000, NSW, Australia 
London Office - 1 Primrose St, London EC2A 2EX

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service    Privacy Policy