Sonatype Selected by Equifax to Support OS Governance Press Release


How are Federal Agencies Implementing DevOps & System Modernization

By Derek Weeks on November 29, 2016 Devops

As government agencies seek to become more innovative and agile, they’re embracing DevOps practices and open source software to rapidly and efficiently


Intuit’s DevSecOps: War Games, Gamification, and Culture Hacking

By Derek Weeks on April 11, 2016 operations

Wow, if you ever wanted to learn about Rugged DevOps (some call in DevSecOps), sit down for a spell with Shannon Lietz, Ian Allison, and Scott Kennedy from


Josh Corman on Keeping up with Hackers [CNBC VIDEO]

By Derek Weeks on August 11, 2015 blackhat

Josh Corman had a busy week at BlackHat last week. During the chaos, CNBC news caught up with him to talk about recent cyber attacks and what can be expected


Bash 2014 - This Is Not a Party

I can honestly say that although referred to by the media as Shellshocked, I am neither shocked nor awed.

I can’t say that I am a fan of the latest


TED Talks Security: 3 Provoking Discussions

By Derek Weeks on March 27, 2014 Sonatype Says

I love watching TED Talks. To me, they are 15 well-spent minutes watching experts around the world provide great insights into things I thought I knew well.


Move Left and Be More Secure

By Jessica Dodson on September 16, 2013 SDLC

Author Attribution: This post was written by a guest blogger: Mark Miller, Founder and Curator of Trusted Software Alliance.


A Brief and Incomplete History of DevOps

By Jessica Dodson on July 29, 2013 thought leaders

The use of DevOps methodology and a structured process for integrating security into the development process is becoming more prevalent as large enterprises


New security fix from Apple

By VAO on March 19, 2013 security

Apple fixes OS X flaw that allowed Java apps to run with plugin disabled. Apple released several security updates for its OS X operating system, as well as a


Check your routers, new backdoor found in TP-Link routers

By VAO on March 19, 2013 security

Researchers have discovered a backdoor in some TP-Link routers that has the router download and execute a file when a specific URL is called.