News and Notes from the Makers of Nexus | Sonatype Blog

Introducing Our 8th Annual State of the Software Supply Chain Report

By Stephen Magill on October 18, 2022 State of the Software Supply Chain

Announcing the arrival of our 8th Annual State of the Software Supply Chain Report looking at managing open source security, industry trends, and more.

Read More

Gartner Goes Development-Centric

By Derek Weeks on September 11, 2014 Sonatype Says

1 minute read time

Recently, Gartner published a new research report that says by 2016, “the vast majority of mainstream IT organizations will leverage nontrivial elements of open source software (directly or

Read More...

Trusting Third-Party Code That Can't Be Trusted

By Derek Weeks on July 22, 2014 Component Lifecycle Management

2 minute read time

Paul Roberts (@paulfroberts) at InfoWorld recently shared his perspective on “5 big security mistakes coders make”. First on his list was trusting third-party code that can’t be trusted. Paul shares:

Read More...

Lessons of Youth: A License to Use

By Jeffrey Wayman on July 11, 2014 Component Lifecycle Management

4 minute read time

I can still recall (it actually pains me to count the years, so I refuse to) with perfect clarity the sound of my 1200 baud modem handshaking with my neighborhood’s local BBS. It’s a sound that so

Read More...

Software composition analysis

Container Security

CODE QUALITY ANALYSIS

Repository MANAGEMENT

Complete Platform

Book a Demo

For Professionals

For Industries

Content

CUSTOMER Portal

Integrations & Free Tools

About us

Contact Us

Sonatype Blog

Introducing Our 8th Annual State of the Software Supply Chain Report

Gartner Goes Development-Centric

Trusting Third-Party Code That Can't Be Trusted

Lessons of Youth: A License to Use

Products

Free Tools

Solutions

Resources

Customer Portal

Company