The 2020 State of the Software Supply Chain Report is available!
DOWNLOAD NOW

Study Shows High-Performance Dev Teams Fix OSS Vulns 26x Faster | Press Release
blog-logo Sonatype Blog

RESOURCES

Content

Sonatype Partners

Community

Upcoming Events

The 2020 State of the Software Supply Chain

Featured Article

Nexus on the Ascent

By Brent Kostak on September 23, 2020 Nexus vs. Artifactory

Preferred 2:1 over JFrog Artifactory, Nexus Repository is stronger and more forward-thinking than ever.

Read More...

SHARE:

Filter by:
READ MORE

DevSecOps: Better Software, Faster

By Derek Weeks on February 08, 2017 repository health check
1 in 16 open source and third-party components downloaded last year included a known vulnerability. That may not seem like too many until you realize the average company downloads well over 200,000
Read More...
READ MORE

Rugged DevOps: Less Capture the Flag, More Teamwork

By Derek Weeks on February 22, 2016 governance
I caught up with Chris Corriere at DEVNEXUS -- DevOps Engineer at AutoTrader -- to talk about his experiences in the realm of Rugged DevOps.
Read More...
READ MORE

Rugged DevOps: Survival is Not Mandatory

By Derek Weeks on January 25, 2016 Nexus solutions

Deming, the patron saint of DevOps once advised, “It is not necessary to change. Survival is not mandatory.” To survive, application development teams are constantly pressured to deliver software

Read More...
READ MORE

Getting Rugged DevOps Right

By Derek Weeks on December 03, 2015 Nexus Lifecycle
Getting Rugged DevOps Right
Read More...
READ MORE

We Lack Building Codes for Building Software Code [VIDEO]

By Mark Miller on June 15, 2015 Software Supply Chain

At Josh Corman’s presentation during AppSecEU 2015, he brought up the analogy of buildings codes, those laws and regulations that mandate how architectural buildings are built. It’s the reason

Read More...
READ MORE

DevOps Leadership Series: Security at Velocity [Video]

By Derek Weeks on May 12, 2015 Software Supply Chain

If it does not fit, it does not get done. For many DevOps practices, application security falls into the “does not get done” bucket. That’s because for many DevOps-centric organizations, application

Read More...
READ MORE

DevOps Leadership Series: Software Supply Chains [Video]

By Derek Weeks on May 05, 2015 RSA Conference

Another theme that arose often during our recent “DevOps: Wine-ing, Not Whining” event was the importance of software supply chains. Every software development organization has a software supply

Read More...
READ MORE

DevOps Leadership Series 2015

By Derek Weeks on May 01, 2015 RSA Conference

We recently hosted the 2nd annual “DevOps: Wine-ing, Not Whining” event in San Francisco to bring together a number of thought leaders and leading practitioners in the DevOps field. We traded stories

Read More...
Twitter LinkedIn Facebook Instagram YouTube GitHub
Products
Security Research
Solutions
Resources
About
SON_logo_white@2x copy trimmed

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759
Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102
Australia Office - 5 Martin Place, Sydney, NSW 2000, Australia 
London Office - 168 Shoreditch High Street, E1 6HU London

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service    Privacy Policy