Sonatype Introduces Next Generation Dependency Management | Press Release

blog-logo Sonatype Blog

Discord squashes critical Electron bugs: open source attacks continue to grow

By Ax Sharma on October 21, 2020 Nexus Lifecycle
Discord recently patched a set of critical vulns that could allow a skilled attacker to gain Remote Code Execution privileges on the users’ Desktop app.
Read More...

Making Developer’s Lives Easier as We Enter The New Frontier of Dependency Management

By Brian Fox on October 07, 2020 Nexus Lifecycle
Sonatype's Advanced Development Pack will fundamentally change how teams manage code dependencies.
Read More...

Storage Management Best Practices: Part 2 - Expand Storage with Ease

By Kam Lau on October 02, 2020 Nexus Repository
In part 2 of Storage Management Best Practices, we explore the benefits of using Group Blob Store.
Read More...

GitLab: instant, inline, indispensable developer insights

By Kevin Miller on October 01, 2020 Nexus Lifecycle
Nexus Lifecycle now gives you instant, inline, indispensable insights on your GitLab MRs to speed development, shift security left, and improve innovation.
Read More...

Sonatype finds malicious npm packages which broadcast your IP, username, and device fingerprint info on the web

By Ax Sharma on September 30, 2020 vulnerability
Initially found by Sonatype's malicious code detection bots, our researchers have discovered and confirmed the presence of two new vulnerable npm packages, electorn and loadyaml.
Read More...

New on Sonatype Learn: Outcome-based Training, New Courses, and a New Look!

By Dan Fletcher on September 24, 2020 Product
Sonatype's popular Learn Site, which hosts customer-focused, on-demand training, has new courses and a new look. Check it out today!
Read More...

Nexus on the Ascent

By Brent Kostak on September 23, 2020 Nexus vs. Artifactory
Preferred 2:1 over JFrog Artifactory, Nexus Repository is stronger and more forward-thinking than ever.
Read More...

Announcing the NeuVector & Sonatype Nexus Lifecycle Integration: Securing Containers Across the SDLC

By Alyssa Shames on September 16, 2020 Nexus Lifecycle
Sonatypes new integration between NeuVector and Nexus Lifecycle combines NeuVector’s open source detection and mitigation capabilities at the container application, operating system, and runtime
Read More...

Nexus as a Container Registry

By Brent Kostak on September 09, 2020 Nexus Repository
Say hello to Nexus as a Container Registry! Built on enterprise storage capabilities, Nexus Repository is a robust package registry for all of your Docker images and Helm Chart repositories.
Read More...