Sonatype Selected by Equifax to Support OS Governance Press Release
blog-logo Sonatype Blog

Featured Article

Nexus Lifecycle Now Integrates with Azure DevOps to Secure Software Supply Chains in the Cloud

By Michelle Dufty on October 11, 2019 Nexus Lifecycle

The Nexus IQ Extension for Azure DevOps scans builds to identify open source security, license, or quality policy violations.

Read More...

SHARE:

Filter by:
GettyImages-1075234744-1
READ MORE

Why Does Security Matter For DevOps?

By Derek Weeks on October 01, 2019 security
Caroline Wong (@CarolineWMWong) explains why organizations that use DevOps are 2X more likely to succeed than peers.
Read More...
GettyImages-1138004657-1
READ MORE

A More Secure Web Needs Developers, Defenders, Advocates, and OSS

By Katie McCaskey on September 13, 2019 security
The largest gathering of Infosec professionals met in Washington, D.C. to discuss the future of web security. Open source software is at the core of it.
Read More...
GettyImages-1075234744
READ MORE

Security Organizations Need to Start Thinking Like Developers

By DJ Schleen on July 30, 2019 security
Developers must think more securely, and security teams need to learn more development skills. Cross-discipline awareness strengthens software development.
Read More...
GettyImages-1061671834
READ MORE

Blue by Default

By Katie McCaskey on July 29, 2019 security
Aubrey Stearn (@auberryberry) explains DevOps security approach Blue by Default. Security practices move prior to testing and delivery to ensure focus.
Read More...
no-free-lunch
READ MORE

Free Software, But No Free Lunch

By Katie McCaskey on July 25, 2019 security
Today's threat surface is the software itself. How can Fortune 100 companies and others protect themselves? One security practice is counterintuitive.
Read More...
READ MORE

How are Federal Agencies Implementing DevOps & System Modernization

By Derek Weeks on November 29, 2016 security
Learn how the Department of Homeland Security (DHS) is leading the DevOps charge with a recent project to modernize mission-critical systems at USCIS.
Read More...
READ MORE

Intuit’s DevSecOps: War Games, Gamification, and Culture Hacking

By Derek Weeks on April 11, 2016 operations
Sit down with Shannon Lietz, Ian Allison, and Scott Kennedy from Intuit to learn about Rugged DevOps (some call in DevSecOps).
Read More...
READ MORE

Josh Corman on Keeping up with Hackers [CNBC VIDEO]

By Derek Weeks on August 11, 2015 blackhat

Josh Corman had a busy week at BlackHat last week. During the chaos, CNBC news caught up with him to talk about recent cyber attacks and what can be expected in the future.

Read More...
READ MORE

Bash 2014 - This Is Not a Party

I can honestly say that although referred to by the media as Shellshocked, I am neither shocked nor awed. I can’t say that I am a fan of the latest glorification of bugs like Heartbleed and

Read More...
Twitter LinkedIn Facebook Instagram YouTube GitHub
Products
Security Research
Solutions
Resources
About
SON_logo_white@2x copy trimmed

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759
Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102
Australia Office - 5 Martin Place, Sydney, NSW 2000, Australia 
London Office - 199 Bishopsgate, London EC2M 3TY

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service    Privacy Policy