Skip Navigation

Introducing our 9th annual State of the Software Supply Chain report

By Aaron Linskens on October 03, 2023 open source security

5 minute read time

Sonatype announces the arrival of our 9th annual State of the Software Supply Chain report that explores open source security, industry trends, and more.
Read More...

How does developer morale affect my software supply chain?

By Luke Mcbride on January 03, 2023 survey

4 minute read time

Your place in the software supply chain has a lot to do with your development staff. A look at Sonatype data on developer state-of-mind and performance.
Read More...

Wicked Good Development: Key takeaways from the State of the Software Supply Chain

By Kadi Grigg on November 17, 2022 Software Supply Chain

3 minute read time

Jump into to these four bonus episodes to find highlights and critical takeaway's from Sonatype's 8th Annual State of the Software Supply Chain Report.
Read More...

The no-fix mediums? Not having a high priority doesn’t mean low danger

By Luke Mcbride on October 31, 2022 vulnerabilities

5 minute read time

An ongoing weak link in the software supply chain is vulnerable software – are you being proactive or just putting out fires?
Read More...

Introducing our 8th annual State of the Software Supply Chain

2 minute read time

Announcing the arrival of our 8th Annual State of the Software Supply Chain Report looking at managing open source security, industry trends, and more.
Read More...

2021 State of the Software Supply Chain: Open source software security and dependency management take center stage

By Matt Howard on September 15, 2021 Open Source

3 minute read time

As Open Source Continues to Fuel Digital Transformation, Sonatype's 2021 Software Supply Chain Report Reveals Important Trends
Read More...

Sonatype CEO on the future of the software supply chain

5 minute read time

Sonatype's CEO Wayne Jackson talked about Maven, the software supply chain, and speed vs. security no longer being at odds, at the 2020 Nexus User Conference.
Read More...

Introducing our 2020 State of the Software Supply Chain report

2 minute read time

Sonatype's 2020 State of the Software Supply Chain Report shows that faster innovation and better risk management do not have to be mutually exclusive.
Read More...

What 36,000 OSS Projects and 12,000 Commercial Dev Teams Taught Us About Secure Coding Practices

By Derek Weeks on June 25, 2019 devsecops

2 minute read time

Our 2019 State of the Software Supply Chain Report Reveals Best Practices From 36,000 OSS Dev Teams and 12,000 commercial software engineering teams.
Read More...