Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

DevSecOps: Better Software, Faster

By Derek Weeks on February 08, 2017 repository health check
1 in 16 open source and third-party components downloaded last year included a known vulnerability. That may not seem like too many until you realize the average company downloads well over 200,000
Read More...

Rugged DevOps: Less Capture the Flag, More Teamwork

By Derek Weeks on February 22, 2016 governance
I caught up with Chris Corriere at DEVNEXUS -- DevOps Engineer at AutoTrader -- to talk about his experiences in the realm of Rugged DevOps.
Read More...

Rugged DevOps: Survival is Not Mandatory

By Derek Weeks on January 25, 2016 Nexus solutions

Deming, the patron saint of DevOps once advised, “It is not necessary to change. Survival is not mandatory.” To survive, application development teams are constantly pressured to deliver software

Read More...

Getting Rugged DevOps Right

By Derek Weeks on December 03, 2015 Nexus Lifecycle
Getting Rugged DevOps Right
Read More...

We Lack Building Codes for Building Software Code [VIDEO]

By Mark Miller on June 15, 2015 Software Supply Chain

At Josh Corman’s presentation during AppSecEU 2015, he brought up the analogy of buildings codes, those laws and regulations that mandate how architectural buildings are built. It’s the reason

Read More...

DevOps Leadership Series: Security at Velocity [Video]

By Derek Weeks on May 12, 2015 Software Supply Chain

If it does not fit, it does not get done. For many DevOps practices, application security falls into the “does not get done” bucket. That’s because for many DevOps-centric organizations, application

Read More...

DevOps Leadership Series: Software Supply Chains [Video]

By Derek Weeks on May 05, 2015 RSA Conference

Another theme that arose often during our recent “DevOps: Wine-ing, Not Whining” event was the importance of software supply chains. Every software development organization has a software supply

Read More...

DevOps Leadership Series 2015

By Derek Weeks on May 01, 2015 RSA Conference

We recently hosted the 2nd annual “DevOps: Wine-ing, Not Whining” event in San Francisco to bring together a number of thought leaders and leading practitioners in the DevOps field. We traded stories

Read More...