Sonatype Introduces Next Generation Dependency Management | Press Release
blog-logo Sonatype Blog

RESOURCES

Content

Sonatype Partners

Community

Upcoming Events

The 2020 State of the Software Supply Chain

Featured Article

CursedGrabber strikes again: Sonatype spots new malware campaign against Software Supply Chains

By Sonatype Security Research Team on January 20, 2021 vulnerabilities

Sonatype has determined those behind the CursedGrabber Discord malware family, have published a new malware campaign against software supply chains

Read More...

SHARE:

Filter by:
GettyImages-843706524
READ MORE

Gartner: The Crucial Role of OSS License Compliance

Gartner's SCA recommendations include deep understanding of OSS licensing. Operating without license compliance, intentionally or not, invites peril.
Read More...
Screen Shot 2018-05-07 at 12.00.54 PM
READ MORE

Eight More Struts Breaches

When using vulnerable versions of the framework, organizations are breached. Everyone knows the Equifax story, but for folks like me who have been paying closer attention, the story also includes the
Read More...
Screen Shot 2018-05-02 at 8.00.49 PM
READ MORE

Struts One-Two Punch Knocks Out India

The social security system of India, AADHAAR, was just breached due to a Struts related vulnerability exploited on their website. If you are not familiar with AADHAAR, it offers a 12-digital personal
Read More...
GettyImages-157189322
READ MORE

Open Source Governance Hits the C-Suite

By Derek Weeks on April 11, 2018 open source management
The Wall Street Journal’s Adam Janofsky wrote an article entitled, How Companies Can Manage Risks Tied to Open-Source Software*. Coverage of this topic sheds light on a topic for executives, that has
Read More...
Screen Shot 2018-03-16 at 2.12.39 PM
READ MORE

Nexus User Conference: Online, Free, June 6 - 7

By Derek Weeks on March 16, 2018 Nexus Lifecycle
The first annual Nexus User Conference is online, June 6 - 7, 2018.
Read More...
GettyImages-896676620-1
READ MORE

Nexus Repository 3.9 Released with a new Upload UI and Firewall Support

e are pleased to announce the release of Nexus Repository 3.9. This release adds two major features: (1) Components can now be uploaded directly from the UI and (2) Nexus Repository Pro is no longer
Read More...
27-SonatypesData.png
READ MORE

DevSecOps and GDPR:  Why Open Source Risk Management Has Never Been More Important

Modern IT teams must: 1. accelerate innovation by harnessing the power of open source and 2. minimize risk by creating flexible controls to automate compliance.
Read More...
READ MORE

How a Software Bill of Materials Uncovers Known Vulnerabilities

How a Software Bill of Materials Uncovers Known Vulnerabilities
Read More...
READ MORE

Evaluating OSS Logistics Solutions? Consider These 9 Tips.

By Derek Weeks on February 24, 2015 Sonatype vs. Black Duck
The massive reliance on open source components has created new challenges for managing the speed, cost, and risks of continuous delivery in today's software development.
Read More...
Twitter LinkedIn Facebook Instagram YouTube GitHub
Products
Security Research
Solutions
Resources
Company
SON_logo_white@2x copy trimmed

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759
Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102
Australia Office - 60 Martin Place Level 1, Sydney, NSW 2000, Australia 
London Office - 168 Shoreditch High Street, E1 6HU London

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service    Privacy Policy    Event Terms and Conditions