News and notes from the makers of Nexus

Get Blog Updates

by Brian Fox, on June 05, 2018

Tags: security research, Publishing to the Central Repository, The Central Repository, zip-slip, open source vulnerability, help

by Derek Weeks, on November 10, 2014

Tags: Cyber Supply Chain Management and Transparency Act, H.R. 5793, repository health check, government open source software (GOSS), Sonatype Says, Nexus OSS, Nexus, open source components, Nuget, Cyber Chain Integrity Act, npm, application supply chain management, open source nexus, The Central Repository, RubyGems, open source software supply chain, Open Source, Cyber Supply Chain, Maven, bill of materials (of 3rd party and open source co, java, cyber supply chain management, Software supply chain management, application health

by Jessica Dodson, on June 18, 2013

Tags: Component Lifecycle Management, Nexus Repo Reel, Sonatype Says, OWASP, Everything Open Source, A9, The Central Repository, repository management, Nexus CLM, AppSec Spotlight

by Tim OBrien, on March 26, 2012

Tags: Nexus Repo Reel, Sonatype Says, security, The Central Repository, Open Source, #OSSsecurity

by Tim OBrien, on March 22, 2012

Tags: Nexus Repo Reel, Sonatype Says, The Central Repository, Maven, repository management, chariot solutions

Recent Posts

Posts by Topic

see all