Featured Article

New Design, New Features: Maven Central Improvements for Developers

By Amanda Yeo on March 28, 2023 open source security

Hosted by Sonatype, Maven Central has a refreshed interface and new features to improve the developer experience.

Read More

SHARE:

Sonatype_Blog_Logo_White
Open doors image
READ MORE

What to Consider When Crafting Your OSS Policy

By Filipp Kofman on July 15, 2021 legal

4 minute read time

Building a plan for using open source software in your company means less confusion and risk. A look at some of the necessities and ideals in handling freely available code.
Read More...
GettyImages-843706524
READ MORE

Gartner: The Crucial Role of OSS License Compliance

4 minute read time

Gartner's SCA recommendations include deep understanding of OSS licensing. Operating without license compliance, intentionally or not, invites peril.
Read More...
Screen Shot 2018-05-07 at 12.00.54 PM
READ MORE

Eight More Struts Breaches

3 minute read time

When using vulnerable versions of the framework, organizations are breached. Everyone knows the Equifax story, but for folks like me who have been paying closer attention, the story also includes the
Read More...
Screen Shot 2018-05-02 at 8.00.49 PM
READ MORE

Struts One-Two Punch Knocks Out India

2 minute read time

The social security system of India, AADHAAR, was just breached due to a Struts related vulnerability exploited on their website. If you are not familiar with AADHAAR, it offers a 12-digital personal
Read More...
GettyImages-157189322
READ MORE

Open Source Governance Hits the C-Suite

By Derek Weeks on April 11, 2018 open source management

2 minute read time

The Wall Street Journal’s Adam Janofsky wrote an article entitled, How Companies Can Manage Risks Tied to Open-Source Software*. Coverage of this topic sheds light on a topic for executives, that has
Read More...
Screen Shot 2018-03-16 at 2.12.39 PM
READ MORE

Nexus User Conference: Online, Free, June 6 - 7

By Derek Weeks on March 16, 2018 Nexus Lifecycle

1 minute read time

The first annual Nexus User Conference is online, June 6 - 7, 2018.
Read More...
GettyImages-896676620-1
READ MORE

Nexus Repository 3.9 Released with a new Upload UI and Firewall Support

2 minute read time

e are pleased to announce the release of Nexus Repository 3.9. This release adds two major features: (1) Components can now be uploaded directly from the UI and (2) Nexus Repository Pro is no longer
Read More...
27-SonatypesData.png
READ MORE

DevSecOps and GDPR:  Why Open Source Risk Management Has Never Been More Important

2 minute read time

Modern IT teams must: 1. accelerate innovation by harnessing the power of open source and 2. minimize risk by creating flexible controls to automate compliance.
Read More...
READ MORE

How a Software Bill of Materials Uncovers Known Vulnerabilities

3 minute read time

How a Software Bill of Materials Uncovers Known Vulnerabilities
Read More...