What We Learned from Studying 36,000 OSS Projects | Press Release

blog-logo Sonatype Blog

DevSecOps Without Compromise

By Katie McCaskey on June 26, 2019 oss
Oliver Milke of Cloudogu provides tips to strengthen your DevSecOps toolchain. He also points out two potential weaknesses that might lurk inside, too.
Read More...

Struts2 Exploited Again.  Did Anyone Bother to Tell You?

By Brian Fox on March 10, 2017 oss

This week I woke up to find several emails from Nexus Lifecycle indicating that the products in my portfolio were potentially vulnerable due to their inclusion of Apache commons-collection. If you

Read More...

Did you wake up to an alert about the Java Deserialization vulnerability?

By Brian Fox on November 13, 2015 oss

This week I woke up to find several emails from Nexus Lifecycle indicating that the products in my portfolio were potentially vulnerable due to their inclusion of Apache commons-collection. If you

Read More...

Partitioning Nexus Repositories: Video Overview and Demonstration

By Tim OBrien on February 09, 2010 oss
Partitioning Nexus Repositories: Video Overview and Demonstration
Read More...

How to Partition Nexus Repositories: Targets, Privileges, and Roles

By Juven Xu on February 09, 2010 oss
How to Partition Nexus Repositories: Targets, Privileges, and Roles
Read More...