Can Kubernetes keep a secret?

By Daniel Longest on June 10, 2020 AppSec

4 minute read time

Kubernetes Secrets store usernames and passwords as base-64 encoded strings. They are obscured from casual browsing, but this is the same as plaintext.
Read More...

DevOps assurance with OWASP SAMM

By Guillermo Salazar on June 02, 2020 OWASP

4 minute read time

SAMM v2 follows three levels of maturity. Maturity levels 1 through 3 are similar to what, in other models, are known as crawling, walking, and running.
Read More...

DevOps meets the sporting goods industry

By Carlos Schults on June 01, 2020 devsecops

4 minute read time

Adidas isn't a software company, but it employs advanced techniques in software delivery to build different applications more than 10,000 times a day.
Read More...

DevSecOps Delivered: Nexus IQ Google Chrome Extension

By Amir Shahmiri on May 22, 2020 devsecops

1 minute read time

See the Nexus IQ Google Chrome extension, a handy tool to research open source components in your browser.
Read More...

DevOps Metrics: Measuring What Matters

By Aditya Khanduri on April 21, 2020 maturity model

4 minute read time

Achieving high levels of collaboration between teams is challenging. So, you need to address the issue in a systematic manner.
Read More...

How to Use Nancy to Improve Your Go Application Security

By Jonathan Hall on April 17, 2020 AppSec

9 minute read time

Nancy, as you may know by reputation, is a detective. She uses Sonatype's OSS Index to check for vulnerabilities in your Go dependencies.
Read More...

How to Use Nexus Repository and Helm for CI/CD

By Gaurav Agarwal on April 13, 2020 Nexus Repository

14 minute read time

Helm is the first and the most popular package manager for Kubernetes. Here's how to combine it with Nexus Repository to secure your CI/CD pipeline.
Read More...

Sonatype Nexus Repository 3.20 Installation, Admin Login, and Port Change [VIDEO]

By Awkash Agrawal on March 27, 2020 Nexus Repository

2 minute read time

This five minute Nexus Repository installation video covers all the tidbits, from login via admin to changing the port.
Read More...

Access npm Packages After Securing Sonatype Nexus Repository Manager

By Daniel Pacurici on March 20, 2020 npm

3 minute read time

Here are the steps necessary to secure packages, like npm, on the Sonatype Nexus Repository Manager.
Read More...