Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

GDPR and OSS. How are they linked and why should you care?

By Ryan Sheldrake on November 29, 2017 #OSSsecurity
GDPR and OSS. How are they linked and why should you care?
Read More...

Cybersecurity Improvement Act of 2017:  The Ghost of Congress Past

A steady breeze is blowing from Washington DC that is nudging the software industry toward a future in which vendors will no longer be immune to liability.
Read More...

Vor Security brings OSS Index to Sonatype

By Brian Fox on June 29, 2017 vulnerability
Vor Security acquisition, extended language coverage, ossindex.net
Read More...

Heartbleed: The Open Source Vulnerability that Keeps on Giving (and Taking)

By Matt Howard on June 12, 2017 #OSSsecurity
Heartbleed: The Open Source Vulnerability that Keeps on Giving (and Taking)
Read More...

We're a Java shop, we're not going to get hacked...

By Tim OBrien on March 27, 2012 Nexus Repo Reel
We're a Java shop, we're not going to get hacked...
Read More...

Today's Security Brief: Application security is widely neglected (by some surprising companies)

By Tim OBrien on March 26, 2012 Nexus Repo Reel
Today's Security Brief: Application security is widely neglected (by some surprising companies)
Read More...