Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

Struts2 Breach at Equifax was 100% Preventable. Here's how.

By Ilkka Turunen on September 20, 2017 Nexus Lifecycle

The breach at Equifax is a siren call. It's time for organizations to approach the problem of managing open source software by using automated technology,


Struts2 Vulnerability Cracks Equifax

By Derek Weeks on September 09, 2017 Software Supply Chain

Four days ago, we saw a critical vulnerability in Struts2 that would leave web applications vulnerable to remote execution of code and enable direct access