Featured Article

The Shifting Landscape of Open Source Supply Chain Attacks - Part 3

By Brian Fox on January 26, 2023 thought leaders

Brian Fox shares insights on who’s responsible for the security of software supply chains, and how orgs can minimize impact on efficiency and speed.

Read More

SHARE:

Sonatype_Blog_Logo_White
a developer looks at a monitor displaying the Spring logo
READ MORE

Spring4Shell – By the Numbers

By Ilkka Turunen on April 04, 2022 component vulnerability

6 minute read time

Spring4Shell, a new 0-day RCE, is not quite as bad as Log4shell but has a wide blast radius. We dive into the numbers on how the world is fixing the issue.
Read More...
Continuoius Integration with Other Products
READ MORE

Continuous Integration in Pipeline as Code Environment with Jenkins, JaCoCo, Nexus and SonarQube

By Rahul Vishwakarma on January 17, 2018 github

5 minute read time

The setup for a Continuous integration pipeline... this is for mavenized Spring boot build with JaCoCo coverage reports and Sonar metrics.
Read More...
GettyImages-961035690
READ MORE

How to Deploy the Artifacts of a Project to Nexus, with Maven

By Eugen Paraschiv on January 03, 2018 spring

13 minute read time

How to deploy the artifacts of a project to Nexus, with Maven. By default, Maven handles the deployment mechanism via the maven-deploy-plugin.
Read More...
READ MORE

The 2014 Survey: Marked by an Industry Shock Wave

2 minute read time

Wow! What an amazing turnout we had for our 4th annual survey: 3,353 participants this year brings us to over 11,000 participants in the four years we’ve run this survey. I would like to extend a BIG

Read More...
Twitter LinkedIn Facebook YouTube GitHub
Products
Free Tools
Solutions
Resources
Customer Portal
Company
SON_logo_white@2x copy trimmed

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759

Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102

Australia Office - 60 Martin Place Level 1, Sydney, NSW 2000, Australia

London Office -168 Shoreditch High Street, E1 6HU London

Subscribe for all the latest software security news and events

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service    Privacy Policy    Modern Slavery Statement    Event Terms and Conditions   Do Not Sell My Personal Information