Sonatype Delivers Premium Open Source Controls to GitHub | Press Release

blog-logo Sonatype Blog

LEGO, Death Stars, and Millennium Falcons, Oh My

By Jeffrey Wayman on January 18, 2017 legos
Why do you need Nexus Firewall? Because 1 in 15 open source components you download include known security vulnerabilities.
Read More...

Mapping the JavaScript Genome for DevOps

By Sonatype on October 18, 2016 Software Supply Chain
High performing organizations are using DevOps principles to boost productivity, streamline software supply chains, and improve quality.
Read More...

Nexus Repository Rising: Say Hello to the New Pro

By Derek Weeks on September 13, 2016 software bill of materials
Upgrade to Nexus Repository Pro 3, now with active-active high availability. Build the best software using precise component intelligence.
Read More...

Government Asks: What’s in Your Software?

Top performing development organizations embrace supply chain management best practices, including use of a Software Bill of Materials (BOM).
Read More...

An Insider's View: Analyzing Software Supply Chains

2016 state of the software supply chain report reveals the volume of open source component usage and quantifies the presence of known vulnerabilities.
Read More...

The 2016 State of Software Supply Chain Report

By Derek Weeks on July 11, 2016 Software Supply Chain
Sonatype’s 2nd Annual Report on Accelerating Software Innovation and Security
Read More...

Lessons Learned Again #npmgate

By Manfred Moser on March 28, 2016 Software Supply Chain
Find out more around the kik package, the trademark threats, the unpublishing of the left-pad package and the results, check out this recap.
Read More...

Continuous Delivery: The Atlassian Way

By Derek Weeks on March 11, 2016 JIRA

At the recent DEVNEXUS conference in Atlanta, Sonatype’s Mark Miller caught up with Ian Buchanan for our 2016 DevOps Leadership Series. Ian discussed his experiences at Atlassian, including

Read More...

Faster, Smarter DevOps

By Derek Weeks on March 04, 2016 Software Supply Chain
If you are concerned about releasing more code faster and at higher quality, the software delivery chain and process will look and smell like DevOps.
Read More...