Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

Advancing Application Delivery

By Derek Weeks on September 17, 2019 AppSec
Swati Shah of US Bank describes the steps required to implement Continuous Delivery in a regulated environment.
Read More...

New Micro Focus, Sonatype Partnership Provides 360 Degree View of AppSec

By Michelle Dufty on September 11, 2019 AppSec
The need to understand both custom and open source code, in a holistic way, is exactly why Micro Focus and Sonatype have come together in partnership.
Read More...

The Three R’s of Software Supply Chains: Reject, Replace, and Respond

By Curtis Yanko on September 09, 2019 devops best practices
OWASP A9 has been around for over 6 years now. These three R's helps enterprise security manage their software supply chains: Reject, Replace, Respond.
Read More...

Security Should Stop Being a Drag

By DJ Schleen on September 06, 2019 deployment
An application should withstand automated, manual, or user testing. Security vulnerabilities, although extremely important, are in reality non-functional.
Read More...

DevSecOps & Chaos Engineering: Knowing the Unknown

By Derek Weeks on September 04, 2019 software testing
Aaron Rinehart (@aaronrinehart) dives into chaos engineering: what it is, why you need it, and how you can implement it in your organization.
Read More...

Take This Interactive DevSecOps Reference Architecture For a Test Drive

By Katie McCaskey on August 30, 2019 reference architecture
An interactive DevSecOps reference architecture illustrates manual and automated processes, plus interactions between systems, stakeholders, and security.
Read More...

Sonatype Users Reveal the Benefits of Automated DevSecOps

By IT Central Station on August 28, 2019 devsecops
IT Central Station gathered unbiased reviews for Sonatype Nexus Lifecycle and Nexus Repository to find out what users had to say about these DevSecOps products.
Read More...

Success Requires Reflection on DevSecOps Failures

By DJ Schleen on August 23, 2019 DevOps Culture
There are so many books on how to succeed, but none about the major challenges and headaches that will ultimately occur when beginning a DevSecOps journey.
Read More...

Continuous Authorization with DevSecOps

By Katie McCaskey on August 06, 2019 devsecops
Continuous Authentication is a dynamic process that examines attributes that change and continually validates them. Hasan Yasar explains the DevSecOps fit.
Read More...