Sonatype Selected by Equifax to Support OS Governance Press Release
blog-logo Sonatype Blog

Featured Article

Malicious Attacks On Open Source Are Going to Get Worse; Developers Need to Take Notice

By Sonal Thawani on April 19, 2019 vulnerability

Bad actors have recognized the power of open source and are now beginning to create their own attack opportunities. This new form of assault, allowing hackers to poison the well, is going to get

Read More...

SHARE:

Filter by:
READ MORE

DevSecOps: Better Software, Faster

By Derek Weeks on February 08, 2017 repository health check
1 in 16 open source and third-party components downloaded last year included a known vulnerability. That may not seem like too many until you realize the average company downloads well over 200,000
Read More...
READ MORE

Rugged DevOps: Less Capture the Flag, More Teamwork

By Derek Weeks on February 22, 2016 governance
I caught up with Chris Corriere at DEVNEXUS -- DevOps Engineer at AutoTrader -- to talk about his experiences in the realm of Rugged DevOps.
Read More...
READ MORE

Rugged DevOps: Survival is Not Mandatory

By Derek Weeks on January 25, 2016 Nexus solutions

Deming, the patron saint of DevOps once advised, “It is not necessary to change. Survival is not mandatory.” To survive, application development teams are constantly pressured to deliver software

Read More...
READ MORE

Getting Rugged DevOps Right

By Derek Weeks on December 03, 2015 Nexus Lifecycle
Getting Rugged DevOps Right
Read More...
READ MORE

We Lack Building Codes for Building Software Code [VIDEO]

By Mark Miller on June 15, 2015 Software Supply Chain

At Josh Corman’s presentation during AppSecEU 2015, he brought up the analogy of buildings codes, those laws and regulations that mandate how architectural buildings are built. It’s the reason

Read More...
READ MORE

DevOps Leadership Series: Security at Velocity [Video]

By Derek Weeks on May 12, 2015 Software Supply Chain

If it does not fit, it does not get done. For many DevOps practices, application security falls into the “does not get done” bucket. That’s because for many DevOps-centric organizations, application

Read More...
READ MORE

DevOps Leadership Series: Software Supply Chains [Video]

By Derek Weeks on May 05, 2015 RSA Conference

Another theme that arose often during our recent “DevOps: Wine-ing, Not Whining” event was the importance of software supply chains. Every software development organization has a software supply

Read More...
READ MORE

DevOps Leadership Series 2015

By Derek Weeks on May 01, 2015 RSA Conference

We recently hosted the 2nd annual “DevOps: Wine-ing, Not Whining” event in San Francisco to bring together a number of thought leaders and leading practitioners in the DevOps field. We traded stories

Read More...
Products
Customers
Resources
About
Social
Twitter LinkedIn Facebook Instagram YouTube GitHub
SON_logo_white@2x copy trimmed

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759
Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102
Australia Office - 5 Martin Place, Level 14, Sydney 2000, NSW, Australia 
London Office - 1 Primrose St, London EC2A 2EX

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service    Privacy Policy