Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

Steps to Responsible Disclosure with Bas van Schaik, Man Yue Mo and Brian Fox

By Mark Miller on March 20, 2018 struts2

On March 1, 2018, the team at Semmle announced a critical vulnerability in the Pivotal Spring framework. The vulnerability was found by security researcher

Read More...

HackNYC 2018: Preview with Dr. Bill Curtis [Podcast]

By Mark Miller on February 01, 2018 HackNYC

In May, at HackNYC 2018 in New York City, Dr. Bill Curtis' team of Tracie Berardi and Lev Lesokhin will deliver a presentation on putting an end to

Read More...

Thoughts on Security in the Modern Software Supply Chain [Podcast Interview]

By Mark Miller on January 15, 2018 owasp top 10

Caroline Wong, Paula Thrasher and I were having lunch at DevOps Enterprise Summit when the conversation took an interesting turn. Paula and Caroline had

Read More...