Skip Navigation

What are the elements of an SBOM?

By Aaron Linskens on February 29, 2024 software bill of materials

7 minute read time

Discover what exactly makes up an SBOM and why generating and managing SBOMs helps level up your cybersecurity and better secure your software
Read More...

The curious case of 'csrf-magic': A case study in supply chain poisoning

By Ax Sharma on February 27, 2024 vulnerability

5 minute read time

Learn how a so-called code injection vulnerability was in fact a backdoor in an open source component, csrf-magic, to help secure your application against Cross-Site Request Forgery attacks.
Read More...

Sonatype unveils state-of-the-art Artificial Intelligence Component Detection

By Crystal Derakhshan on February 22, 2024 Software Supply Chain

3 minute read time

Learn how Sonatype's AI/ML Component Detection transforms software development in an AI-driven world for top security, innovation and an easily managed software supply chain.
Read More...

Why SBOMs are essential for every organization

By Aaron Linskens on February 21, 2024 Cybersecurity

6 minute read time

Explore the big role of software bills of materials (SBOMs) in enhancing cybersecurity, managing vulnerabilities, and ensuring compliance with regulations
Read More...

Mastering SBOMs: Demonstrations

By Keiana King on February 20, 2024 Development strategy

3 minute read time

Sonatype's webinar highlighted real-world applications of software bills of materials (SBOMs) and provided uses cases for SBOM optimization
Read More...

What is the OWASP Top 10?

By Aaron Linskens on January 12, 2024 vulnerabilities

7 minute read time

Discover the significance of OWASP in cybersecurity – What is OWASP and why it is vital for developers and organizations? Dive deeper with Sonatype.
Read More...

OpenSSF responds to CISA, advocates for a multifaceted approach to software identification

By Aaron Linskens on December 18, 2023 government

5 minute read time

OpenSSF published a response to CISA's request for comment on their white paper about software identification
Read More...

What goes great with SLSA? Sonatype.

By Jeff Wayman on December 06, 2023 Software Supply Chain

6 minute read time

Learn about seamless compatibility between SLSA and Sonatype products, highlighting the powerful synergy that can enhance your software security efforts
Read More...

How can SLSA help secure your software supply chain?

By Jeff Wayman on December 05, 2023 Software Supply Chain

5 minute read time

Learn how Supply-chain Levels for Software Artifacts (SLSA) can help secure your software supply chain and provide a safer software development environment
Read More...