Featured Article

Devs flood npm with 15,000 packages to reward themselves with Tea 'tokens'

By Ax Sharma on April 16, 2024 vulnerabilities

The Sonatype Security Research team has identified over 15,000 npm packages that flood npm registry in a new trend where devs involved in the blockchain and cryptocurrency communities are leveraging

Read More

DevOps: The Blue Ocean Tide is Rising

By Wayne Jackson on October 04, 2018 open source security

2 minute read time

The market for DevOps and DevSecOps automation is super hot. Here's why.

Read More...

Three Days of DevSecOps: Lessons from Equifax

By Derek Weeks on September 25, 2018 open source governance

2 minute read time

In 2017, one might have considered "three days" to be the new normal for lead time for changes in DevSecOps. In 2018, that window closed to "one second".

Read More...

Devs flood npm with 15,000 packages to reward themselves with Tea 'tokens'

DevOps: The Blue Ocean Tide is Rising

Three Days of DevSecOps: Lessons from Equifax

Secure your software supply chain

Subscribe for all the latest software security news and events