Featured Article

The Shifting Landscape of Open Source Supply Chain Attacks - Part 3

By Brian Fox on January 26, 2023 thought leaders

Brian Fox shares insights on who’s responsible for the security of software supply chains, and how orgs can minimize impact on efficiency and speed.

Read More

SHARE:

Sonatype_Blog_Logo_White
no-free-lunch
READ MORE

Free Software, But No Free Lunch

By Katie McCaskey on July 25, 2019 security

2 minute read time

Today's threat surface is the software itself. How can Fortune 100 companies and others protect themselves? One security practice is counterintuitive.
Read More...
READ MORE

How are Federal Agencies Implementing DevOps & System Modernization

By Derek Weeks on November 29, 2016 security

2 minute read time

Learn how the Department of Homeland Security (DHS) is leading the DevOps charge with a recent project to modernize mission-critical systems at USCIS.
Read More...
READ MORE

Intuit’s DevSecOps: War Games, Gamification, and Culture Hacking

By Derek Weeks on April 11, 2016 operations

17 minute read time

Sit down with Shannon Lietz, Ian Allison, and Scott Kennedy from Intuit to learn about Rugged DevOps (some call in DevSecOps).
Read More...
READ MORE

Josh Corman on Keeping up With Hackers [CNBC VIDEO]

By Derek Weeks on August 11, 2015 blackhat

7 second read time

Josh Corman had a busy week at BlackHat last week. During the chaos, CNBC news caught up with him to talk about recent cyber attacks and what can be expected in the future.

Read More...
READ MORE

Bash 2014 - This Is Not a Party

2 minute read time

I can honestly say that although referred to by the media as Shellshocked, I am neither shocked nor awed. I can’t say that I am a fan of the latest glorification of bugs like Heartbleed and

Read More...
READ MORE

TED Talks Security: 3 Provoking Discussions

By Derek Weeks on March 27, 2014 Sonatype Says

2 minute read time

I love watching TED Talks. To me, they are 15 well-spent minutes watching experts around the world provide great insights into things I thought I knew well. Some I had never imagined or topics on

Read More...
READ MORE

Move Left and Be More Secure

By Jessica Dodson on September 16, 2013 SDLC

2 minute read time

Move Left and Be More Secure
Read More...
READ MORE

A Brief and Incomplete History of DevOps

By Jessica Dodson on July 29, 2013 thought leaders

2 minute read time

A Brief and Incomplete History of DevOps
Read More...
READ MORE

New security fix from Apple

By VAO on March 19, 2013 security

15 second read time

New security fix from Apple
Read More...
Twitter LinkedIn Facebook YouTube GitHub
Products
Free Tools
Solutions
Resources
Customer Portal
Company
SON_logo_white@2x copy trimmed

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759

Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102

Australia Office - 60 Martin Place Level 1, Sydney, NSW 2000, Australia

London Office -168 Shoreditch High Street, E1 6HU London

Subscribe for all the latest software security news and events

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service    Privacy Policy    Modern Slavery Statement    Event Terms and Conditions   Do Not Sell My Personal Information