Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

Nancy, on a Boat! (Announcing Nancy for Docker)

By DJ Schleen on October 17, 2019 Docker
Nancy checks for vulnerabilities in your Golang dependencies, powered by Sonatype OSS Index. docker-nancy wraps the nancy executable in a Docker image.
Read More...

Identifying Security Vulnerabilities Inside a Jenkins Pipeline

By Katie McCaskey on October 16, 2019 JenkinsCI
Justin Young (@whyjustin) demonstrates how a malicious component can access your connected network - and how to identify that component inside Jenkins.
Read More...

DevSecOps for a Dollar or Less

By Derek Weeks on October 07, 2019 OWASP
The DevSecOps Maturity Model (DSOMM) helps you analyze your organization's development pipeline to see where you need to improve.
Read More...

CocoaPods and Conda in Nexus Repository 3.19

By Brent Kostak on October 02, 2019 Sonatype Nexus
Nexus Repository Manager, the most widely used universal binary repository manager, now features native format support for CocoaPods and Conda.
Read More...

Why Does Security Matter For DevOps?

By Derek Weeks on October 01, 2019 security
Caroline Wong (@CarolineWMWong) explains why organizations that use DevOps are 2X more likely to succeed than peers.
Read More...

CALMS: A Principle-based DevOps Framework

By Ember DeBoer on September 23, 2019 devops best practices
The CALMS framework for devops consists of Culture, Automation, Lean, Measurement, and Sharing.
Read More...

Accelerate: A Principle-based DevOps Framework

By Ember DeBoer on September 18, 2019 devops best practices
The devops framework proposed by the Accelerate authors is focused on three key areas: Continuous Delivery, Architecture, and Product Process.
Read More...

Three Ways: A Principle-based DevOps Framework

By Ember DeBoer on September 16, 2019 devops best practices
Three Ways is a principle-based devops framework. The Three Ways framework includes: first, Flow, second, Feedback, third, Continuous Learning.
Read More...

Kubernetes in 10 Seconds

By Katie McCaskey on September 12, 2019 developers
Sonatype's DJ Schleen (@djschleen) explains Kubernetes in less than 10 seconds in this video. Ready? 10...9...8...
Read More...