Skip Navigation
Book a Demo
Book a Demo

Featured Article

Unlocking the power of generative AI in software development: Insights from Sonatype's survey

By Aaron Linskens on September 12, 2023 Software Supply Chain

Explore the influence of generative AI in software development via the results of Sonatype's recent survey involving 400 DevOps and 400 SecOps leaders

Read More

SHARE:

Sonatype_Blog_Logo_White
READ MORE

Sonatype Repository Firewall is an easy solution for a big problem

6 minute read time

Discover Sonatype Repository Firewall's AI-driven protection for SDLCs, blocking malicious components and ensuring a more secure software supply chain.
Read More...
READ MORE

Sonatype Lifecycle enhancements boost speed, security, and productivity

6 minute read time

Sonatype Lifecycle’s new feature enhancements elevate security posture, developer productivity, and operational excellence. Read on for the full details.
Read More...
READ MORE

Make sure your company is prepared for evolving software liability regulations

By Brian Fox on February 09, 2023 thought leaders

13 minute read time

Organizations should understand changes to liability and government regulation, and have the proper tools in place to protect their software supply chains.
Read More...
READ MORE

Sonatype celebrates World Open Source Day 2023

By Jeff Wayman on February 01, 2023 News and Views

8 minute read time

February 3rd is World Open Source Day and Sonatype is celebrating all the ways to engage with the software that powers our world.
Read More...
READ MORE

Sonatype Lifecycle and Firewall now available in the cloud

By Crystal Derakhshan on February 01, 2023 Product Release

4 minute read time

Sonatype’s new cloud offer means customers looking to scale and secure their software development lifecycle can do so with less maintenance and infrastructure.
Read More...
READ MORE

Sonatype Lifecycle boosts open source security and dependency management

10 minute read time

Nexus Lifecycle is designed to monitor for problems at every stage of the software development life cycle (SDLC) and automatically address them.
Read More...
READ MORE

npm Libraries ‘colors’ and ‘faker’ Sabotaged in Protest by their Maintainer—What to do Now?

By Ax Sharma on January 10, 2022 vulnerabilities

7 minute read time

Popular npm open source libraries, colors.js, and faker.js were sabotaged by their own maintainer. What does that mean for open source sustainability?
Read More...
Stylized drawing of a large reptile
READ MORE

Log4j 2.17.1 Fixes Another Code Execution Bug, but Should You Worry?

By Ax Sharma on December 29, 2021 vulnerabilities

7 minute read time

News of another possible open source vulnerability connected to Log4j raised eyebrows. A look at the issue, it's disclosure, and our response.
Read More...
READ MORE

Nexus Innovator: Bryan Batty of Bloomberg Industry Group, Part 4

4 minute read time

Bryan Batty of Bloomberg Industry Group explains why he selected the Sonatype Platform and how it has dramatically improved open source governance.
Read More...