Sonatype Delivers Premium Open Source Controls to GitHub | Press Release
blog-logo Sonatype Blog

Featured Article

How to Easily Identify Conda Vulnerabilities Using Sonatype Jake

By Aditya Khanduri on February 20, 2020 Everything Open Source

Jake, a free tool, identifies vulnerabilities in a Conda environment. It's simple to use, saves time, and empowers you to develop Python projects faster.

Read More...

SHARE:

Filter by:
GettyImages-1075234744-1
READ MORE

DevSecOps for a Dollar or Less

By Derek Weeks on October 07, 2019 OWASP
The DevSecOps Maturity Model (DSOMM) helps you analyze your organization's development pipeline to see where you need to improve.
Read More...
Kevin Green - Featured Image
READ MORE

HackNYC 2018: Preview with Kevin E. Greene [Podcast]

By Mark Miller on February 07, 2018 OWASP
Kevin Greene is on the organizing committee for HackNYC, helping to organize talks and sessions around protecting and securing our national infrastructure.
Read More...
Bill Curtis - Featured Image - v02
READ MORE

HackNYC 2018: Preview with Dr. Bill Curtis [Podcast]

By Mark Miller on February 01, 2018 OWASP
In May, at HackNYC 2018 in New York City, Dr. Bill Curtis' team of Tracie Gerardi and Lev Lesokhin will deliver a presentation on putting an end to "Technical Debt".
Read More...
Thoughts on Security
READ MORE

Thoughts on Security in the Modern Software Supply Chain [Podcast Interview]

By Mark Miller on January 15, 2018 OWASP
A conversations about government vs public software security, the OWASP Top 10 and common security patterns in large scale projects.
Read More...
The Open Chain Project
READ MORE

The OpenChain Project with Shane Coughlan [Podcast Interview]

By Mark Miller on January 12, 2018 OWASP
In this broadcast, I speak with Shane Coughlan, project director, about the purpose of the OpenChain project and what his team hopes to accomplish in 2018.
Read More...
READ MORE

Nexus Firewall: Quality at Velocity

By Mike Hansen on November 17, 2015 nexus pro
Nexus Firewall: Quality at Velocity
Read More...
READ MORE

DevOps Leadership Series: Security at Velocity [Video]

By Derek Weeks on May 12, 2015 Software Supply Chain

If it does not fit, it does not get done. For many DevOps practices, application security falls into the “does not get done” bucket. That’s because for many DevOps-centric organizations, application

Read More...
READ MORE

What Happened Sept 16th?

We led an invasion last week armed with a flying drone, glowing lightsabers, and the latest knowledge on open source security vulnerabilities. Our mission? Lead, share, educate, moderate, and have

Read More...
READ MORE

"Wait! Wait! Don't pwn me!" from Black Hat 2014

By Mark Miller on August 14, 2014 OWASP
"Wait! Wait! Don't pwn me!" from Black Hat 2014
Read More...
Twitter LinkedIn Facebook Instagram YouTube GitHub
Products
Security Research
Solutions
Resources
About
SON_logo_white@2x copy trimmed

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759
Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102
Australia Office - 5 Martin Place, Sydney, NSW 2000, Australia 
London Office - 199 Bishopsgate, London EC2M 3TY

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service    Privacy Policy