A demand for real consequences: Sonatype's response to CISA's Secure by Design

By Brian Fox on February 23, 2024 thought leaders

7 minute read time

Sonatype's founder and CTO Brian Fox discusses more stringent enforcement mechanisms to encourage wider adoption of secure development practices
Read More...

How manufacturing best practices can improve open source consumption and software supply chains

By Jeff Wayman on October 12, 2023 thought leaders

5 minute read time

Explore Sonatype's research paper developed in partnership with the Atlantic Council on software supply chain best practices for open source consumption
Read More...

Can the open source community save Europe from the Cyber Resilience Act?

By Jeff Wayman on April 27, 2023 thought leaders

7 minute read time

Examine the open source community's response to the EU Cyber Resilience Act, and its potential consequences for the future of innovation & collaboration.
Read More...

Wicked Good Development Episode 30: JUG, AKA the JAVA User Group

By Kadi Grigg on March 28, 2023 thought leaders

28 minute read time

Kadi Grigg sits down with Frank Greco, Sharat Chander, and Steve Poole to discuss the value, history, and future of Java User Groups (JUGs).
Read More...

Wicked Good Development Episode 29: White House unveils National Cybersecurity Strategy

By Kadi Grigg on March 14, 2023 thought leaders

22 minute read time

Sonatype's Jeff Wayman sits down with Co-founder and CTO, Brian Fox, to discuss the details of the 2023 Biden-Harris National Cybersecurity Strategy.
Read More...

Make sure your company is prepared for evolving software liability regulations

By Brian Fox on February 09, 2023 thought leaders

13 minute read time

Organizations should understand changes to liability and government regulation, and have the proper tools in place to protect their software supply chains.
Read More...

The shifting landscape of open source supply chain attacks - Part 3

By Brian Fox on January 26, 2023 thought leaders

12 minute read time

Brian Fox shares insights on who’s responsible for the security of software supply chains, and how orgs can minimize impact on efficiency and speed.
Read More...

The shifting landscape of open source supply chain attacks - Part 2

By Brian Fox on January 25, 2023 thought leaders

11 minute read time

Sonatype's Brian Fox delves into how bad actors and cybercriminals are attacking the software supply chain, and how cyberattacks continue to evolve.
Read More...

The shifting landscape of open source supply chain attacks - Part 1

By Brian Fox on January 24, 2023 thought leaders

8 minute read time

A deep dive into how modern supply chains manage problems, and how companies looking to secure their software supply chains can learn from their mistakes.
Read More...