Featured Article

Devs flood npm with 15,000 packages to reward themselves with Tea 'tokens'

By Ax Sharma on April 16, 2024 vulnerabilities

The Sonatype Security Research team has identified over 15,000 npm packages that flood npm registry in a new trend where devs involved in the blockchain and cryptocurrency communities are leveraging

Read More

PHP and netmask software supply chain attacks

Netmask flaw leaves millions vulnerable while a PHP Git server is hacked in software supply chain attack

By Ax Sharma on March 29, 2021 vulnerabilities

4 minute read time

2 critical software supply chain attacks were uncovered today.

Read More...

We Speak Your Language - New Ecosystems Available in Nexus Lifecycle

By Alyssa Shames on March 12, 2020 Nexus Lifecycle

2 minute read time

Create and contextually enforce custom security, license, and architectural policies across the SDLC. Nexus Lifecycle now includes C/C++, PHP, and Ruby.

Read More...

Devs flood npm with 15,000 packages to reward themselves with Tea 'tokens'

Netmask flaw leaves millions vulnerable while a PHP Git server is hacked in software supply chain attack

We Speak Your Language - New Ecosystems Available in Nexus Lifecycle

Secure your software supply chain

Subscribe for all the latest software security news and events