Skip Navigation
Book a Demo
Book a Demo

Featured Article

Top 10 open source projects hit by HTTP/2 'Rapid Reset' zero-day

By Ax Sharma on October 12, 2023 vulnerability

Discover ten open source packages affected by the HTTP/2 Rapid Reset vulnerability, disclosed by Cloudflare this week

Read More

SHARE:

Sonatype_Blog_Logo_White
READ MORE

Wicked Good Development Episode 3: A Look at the Past, Present, and Future of Maven Central

By Kadi Grigg on March 24, 2022 Everything Open Source

30 minute read time

If you utilize Java or any other JVM, there’s a good chance you know the Maven Central repository. Hear from long-time maintainers and contributors on its past, present, and future.
Read More...
The importance of Namespacing in Public Open Source Repositories
READ MORE

Why Namespacing Matters in Public Open Source Repositories

By Brian Fox on February 10, 2021 The Central Repository

8 minute read time

Sonatype's CTO explains why the Central Repository has always required namespacing and why all public open source repositories should too.
Read More...
READ MORE

The Central Repository Stands to Support Sailors from Bintray - 3 steps to take now to protect your builds from failing

By Ilkka Turunen on February 08, 2021 The Central Repository

8 minute read time

We've created a practical guide for Bintray users migrating to the Central Repository to follow and ensure that use and distribution of open source components continues smoothly.
Read More...
Migrating from Bintray to the Central Repository
READ MORE

What Publishers Need to Know About Migrating from JCenter / Bintray to The Central Repository

By Ilkka Turunen on February 08, 2021 The Central Repository

10 minute read time

A step-by-step guide publishers can follow to easily migrate from Bintray/JCenter to The Central Repository
Read More...
Moving Java components into The Central Repository, following JFrog sunsetting Bintray and JCenter
READ MORE

Dear Bintray and JCenter Users - Here’s What You Need to Know About The Central Repository

By Brian Fox on February 04, 2021 The Central Repository

3 minute read time

If you're freaking out about moving Java components into The Central Repository, following JFrog sunsetting Bintray, don’t worry. We’re here for you.
Read More...
software supply chain attack on Java developer community thwarted
READ MORE

Sonatype Stops Software Supply Chain Attack Aimed at the Java Developer Community

9 minute read time

Sonatype removed 3 malicious open-source Java components from Maven Central targeting popular software releases, stopping a software supply chain attack.
Read More...
merger
READ MORE

Microsoft Acquires npm: A Healthy Move for Critical Public Infrastructure

By Brian Fox on March 16, 2020 github

3 minute read time

Today, news broke that GitHub and its parent company Microsoft, acquired npm and its public repository of open source JavaScript packages.
Read More...
turbojet engine
READ MORE

Helm & Nexus: Steering Towards Faster Deployments in Nexus 3.21

By Brent Kostak on February 19, 2020 The Central Repository

3 minute read time

Nexus Repository 3.21 now supports Helm, P2, and NuGet V3 proxy repositories to enhance container automation and provide faster deployments.
Read More...
GettyImages-638966228
READ MORE

The Central Repository is moving to HTTPS

By Terry Yanko on December 20, 2019 central maven repository

3 minute read time

Beginning January 15, 2020 The Central Repository will no longer support communication over HTTP. We are moving to HTTPS to ensure greater security.
Read More...