Featured Article

New Design, New Features: Maven Central Improvements for Developers

By Amanda Yeo on March 28, 2023 open source security

Hosted by Sonatype, Maven Central has a refreshed interface and new features to improve the developer experience.

Read More

SHARE:

Sonatype_Blog_Logo_White
READ MORE

Sonatype's SBOM Generation Capabilities Outpace the Competition

By Audra Davis-Hurst on March 22, 2023 Nexus Lifecycle

9 minute read time

Better data, a dedicated security team, and the analytical capabilities of BOM Doctor are all part of what makes Sonatype's SBOM capabilities superior.
Read More...
Apple held up next to an orange
READ MORE

Comparing SBOM Standards: SPDX vs. CycloneDX

By Luke Mcbride on February 17, 2023 software bill of materials

5 minute read time

Do you know which format for generating a software bill of materials (SBOM) is the best option for your organization? A look at the two leading standards.
Read More...
Collection of various chrome parts
READ MORE

What is a Software Bill of Materials (SBOM)?

By Sonatype on September 27, 2021 software bill of materials

6 minute read time

A deep dive into a Software Bill of Materials with top use cases, benefits, and ways to manage.
Read More...
image of notebook with checkmarks representing software bill of materials
READ MORE

SBOM – From the Idea of Transparency to the Reality of Code

4 minute read time

Allan Friedman from the NTIA has been working on SBOM standards in government and industry, for years. He spoke at ELEVATE 2021 about their status and future.
Read More...
Biden Cybersecurity Executive Order
READ MORE

Biden Executive Order on Cybersecurity Calls for Enhanced Software Supply Chain Security

2 minute read time

Biden's Cybersecurity Executive Order mandates software supply chain security and secure development practices, including creating a software bill of materials for all applications.
Read More...
documentation
READ MORE

Using a Software Bill of Materials (SBOM) is Going Mainstream

2 minute read time

Crazy: OWASP A9 is about to turn seven and the DevSecOps Community Survey shows less than half of organizations can produce a Software Bill of Materials.
Read More...
GettyImages-1092924294
READ MORE

Why You Need a Software Bill of Materials More Than Ever

By Katie McCaskey on December 05, 2019 software bill of materials

5 minute read time

Enterprises need to know what open source components are in their software at all times. If you don't have a software bill of materials, you're already behind.
Read More...
command
READ MORE

US Energy and Commerce Committee: 6 Strategies for Modern Cybersecurity Risks

By Ilkka Turunen on December 18, 2018 software bill of materials

5 minute read time

On the 12th of December the Subcommittee on oversight and investigations released an additional report identifying the core strategies organisations can take to address modern cybersecurity risks.
Read More...
SON_Survey2018_13
READ MORE

WSJ on Struts: Companies Still Downloading Flaw Linked to Equifax Breach

2 minute read time

The Wall Street Journal discusses open-source governance, Struts and how companies are still downloading the flaw that led to the Equifax Breach
Read More...