Skip Navigation

Cyber Resilience Act: The future of software in the European Union

6 minute read time

Discover what the EU Cyber Resilience Act entails and what the consequences might be for open source and software development overall

Can the open source community save Europe from the Cyber Resilience Act?

By Jeff Wayman on April 27, 2023 thought leaders

7 minute read time

Examine the open source community's response to the EU Cyber Resilience Act, and its potential consequences for the future of innovation & collaboration.

EU Cyber Resilience Act: Good for Software Supply Chain Security, Bad for Open Source?

By Brian Fox on December 22, 2022 secure software supply chain

10 minute read time

The Cyber Resilience Act is the European Union's proposed regulation to combat threats affecting any digital entity. What does that mean for open source?

Inevitable:  Earthquakes and Exploits

By Mike Hansen on November 15, 2018 AppSec

3 minute read time

Earthquakes and open source vulnerabilities are both inevitable, unpredictable, and can be catastrophic. Sonatype's Mike Hansen talks about what earthquake preparedness can teach us about open source

What the TPG-led $80M Investment Means for the Future of Sonatype and the DevSecOps Movement

By Wayne Jackson on September 07, 2018 Sonatype

2 minute read time

Sonatype has raised an $80 million round of growth financing led by TPG Capital to fuel global growth requirements as automated open source governance goes mainstream.

Deja Vu All Over Again - Another New Apache Struts Vulnerability (CVE-2018-11776)

By Brian Fox on August 23, 2018 Nexus Lifecycle

2 minute read time

Another remote code execution vulnerability in Apache’s Struts2 Framework was disclosed on August 22, 2018. Everything you need to know and how to find out if you're affected.

Learning in the Modern Enterprise – going to DevOps Enterprise Summit London with an open mindset

By Mirco Hering on June 19, 2018 devops

2 minute read time

DevOps Enterprise Summit (DOES) London is taking place next week. Join Sonatype and Mirco Hering to learn more about DevOps in the Modern Enterprise,on Monday June 25th.

I Am A Serial Cryptominer: An Open Letter to Software Developers

By Hack Overflow on June 14, 2018 Devops

5 minute read time

An open letter to the DevOps community from a cryptocurrency miner.

Secure By Design: Preparing for GDPR Should Begin With Software

By Brian Fox on May 10, 2018 data protection

4 minute read time

To ensure GDPR compliance, appropriate safeguards must be put in place across the entire software lifecycle.