Sonatype Selected by Equifax to Support OS Governance Press Release
blog-logo Sonatype Blog

Featured Article

Malicious Attacks On Open Source Are Going to Get Worse; Developers Need to Take Notice

By Sonal Thawani on April 19, 2019 vulnerability

Bad actors have recognized the power of open source and are now beginning to create their own attack opportunities. This new form of assault, allowing hackers to poison the well, is going to get

Read More...

SHARE:

Filter by:
Kevin Green - Featured Image
READ MORE

HackNYC 2018: Preview with Kevin E. Greene [Podcast]

By Mark Miller on February 07, 2018 OWASP
Kevin Greene is on the organizing committee for HackNYC, helping to organize talks and sessions around protecting and securing our national infrastructure.
Read More...
Bill Curtis - Featured Image - v02
READ MORE

HackNYC 2018: Preview with Dr. Bill Curtis [Podcast]

By Mark Miller on February 01, 2018 OWASP
In May, at HackNYC 2018 in New York City, Dr. Bill Curtis' team of Tracie Gerardi and Lev Lesokhin will deliver a presentation on putting an end to "Technical Debt".
Read More...
Thoughts on Security
READ MORE

Thoughts on Security in the Modern Software Supply Chain [Podcast Interview]

By Mark Miller on January 15, 2018 OWASP
A conversations about government vs public software security, the OWASP Top 10 and common security patterns in large scale projects.
Read More...
The Open Chain Project
READ MORE

The OpenChain Project with Shane Coughlan [Podcast Interview]

By Mark Miller on January 12, 2018 OWASP
In this broadcast, I speak with Shane Coughlan, project director, about the purpose of the OpenChain project and what his team hopes to accomplish in 2018.
Read More...
READ MORE

Nexus Firewall: Quality at Velocity

By Mike Hansen on November 17, 2015 nexus pro
Nexus Firewall: Quality at Velocity
Read More...
READ MORE

DevOps Leadership Series: Security at Velocity [Video]

By Derek Weeks on May 12, 2015 Software Supply Chain

If it does not fit, it does not get done. For many DevOps practices, application security falls into the “does not get done” bucket. That’s because for many DevOps-centric organizations, application

Read More...
READ MORE

What Happened Sept 16th?

We led an invasion last week armed with a flying drone, glowing lightsabers, and the latest knowledge on open source security vulnerabilities. Our mission? Lead, share, educate, moderate, and have

Read More...
READ MORE

"Wait! Wait! Don't pwn me!" from Black Hat 2014

By Mark Miller on August 14, 2014 OWASP
"Wait! Wait! Don't pwn me!" from Black Hat 2014
Read More...
READ MORE

FinSvcs Working Group (FS-ISAC) Takes on Open Source Components

Applications are becoming the primary security threat vector. Since applications are constructed from 3rd party components, there continues to be a tremendous amount of industry effort and impetus

Read More...
Products
Customers
Resources
About
Social
Twitter LinkedIn Facebook Instagram YouTube GitHub
SON_logo_white@2x copy trimmed

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759
Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102
Australia Office - 5 Martin Place, Level 14, Sydney 2000, NSW, Australia 
London Office - 1 Primrose St, London EC2A 2EX

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service    Privacy Policy