Featured Article

New Design, New Features: Maven Central Improvements for Developers

By Amanda Yeo on March 28, 2023 open source security

Hosted by Sonatype, Maven Central has a refreshed interface and new features to improve the developer experience.

Read More

SHARE:

Sonatype_Blog_Logo_White
DevSecOps_without_compromise
READ MORE

DevSecOps Without Compromise

By Katie McCaskey on June 26, 2019 oss

2 minute read time

Oliver Milke of Cloudogu provides tips to strengthen your DevSecOps toolchain. He also points out two potential weaknesses that might lurk inside, too.
Read More...
iStock-175197685.jpg
READ MORE

Struts2 Exploited Again.  Did Anyone Bother to Tell You?

By Brian Fox on March 10, 2017 oss

5 minute read time

This week I woke up to find several emails from Nexus Lifecycle indicating that the products in my portfolio were potentially vulnerable due to their inclusion of Apache commons-collection. If you

Read More...
READ MORE

Did You Wake Up to an Alert About the Java Deserialization Vulnerability?

By Brian Fox on November 13, 2015 oss

4 minute read time

This week I woke up to find several emails from Nexus Lifecycle indicating that the products in my portfolio were potentially vulnerable due to their inclusion of Apache commons-collection. If you

Read More...
phone
READ MORE

Nigel’s Wake-up Call: Scaling Open Source Governance

3 minute read time

Nigel’s Wake-up Call: Scaling Open Source Governance
Read More...
READ MORE

Partitioning Nexus Repositories: Video Overview and Demonstration

By Tim OBrien on February 09, 2010 oss

1 minute read time

Partitioning Nexus Repositories: Video Overview and Demonstration
Read More...
READ MORE

How to Partition Nexus Repositories: Targets, Privileges, and Roles

By Juven Xu on February 09, 2010 oss

4 minute read time

How to Partition Nexus Repositories: Targets, Privileges, and Roles
Read More...