Aaron Linskens
2024 Sonatype Blog

What a Year of DORA Reveals About Cyber Resilience

| | Compliance, EU Cyber Resilience Act, Liability Regulation, OSS compliance, risk management, SBOM, security risks
It's now been a full calendar year since the European Union's Digital Operational Resilience Act (DORA) became enforceable in January 2025, marking a clear shift in how regulators expect organizations to manage digital risk ... Read More
2024 Sonatype Blog

Building Trusted AI Development With Antigravity and Sonatype Guide

| | AI, Artificial Intelligence, dependencies, google, MCP, MCP server, Model Context Protocol, Sonatype Guide
AI development workflows are evolving quickly. Agent managers need to coordinate tasks and tools to share artifacts, and AI agents need to make decisions quickly ... Read More
2024 Sonatype Blog

Guardrails Make AI-Assisted Development Safer By Design

| | AI, Artificial Intelligence, dependencies, Events and Webinars, MCP, MCP server, Model Context Protocol, Software Security
AI coding assistants are rapidly becoming part of everyday software development. From generating boilerplate code to suggesting entire dependency stacks, these tools promise faster delivery and higher productivity ... Read More
2024 Sonatype Blog
Outpace Malware, Build Faster, and Secure Software With Real-Time Protection

Outpace Malware, Build Faster, and Secure Software With Real-Time Protection

| | CVE, Malware, open source, open-source malware, Security Vulnerabilities, Sonatype Repository Firewall
Modern software teams are under pressure to move fast, innovate faster, and deliver continuously. At the same time, attackers are evolving just as quickly, and in many cases, faster than the tools meant to stop them ... Read More
2024 Sonatype Blog

Sonatype Guide: Giving AI the Context It Needs

| | AI, Artificial Intelligence, dependencies, MCP, MCP server, sonatype intelligence
AI coding assistants promised to transform software development. And in many ways, they have: coding tasks that once took hours now take minutes, boilerplate nearly writes itself, and entire teams have leveled up their velocity ... Read More
2024 Sonatype Blog

CRA and AI Regulation: What’s Next for Software Compliance?

| | Compliance, Events and Webinars, Federal, government, Liability Regulation
The days of postponing cyber regulations are over ... Read More
2024 Sonatype Blog

Why the World’s Vulnerability Index Cannot Keep Up

| | CVE, nvd, Report/Survey/Whitepaper releases, Security Research, sonatype intelligence, Vulnerabilities
The Common Vulnerabilities and Exposures (CVE) system has been called the backbone of modern cybersecurity. For decades, it's been the shared language connecting scanners, advisories, compliance frameworks, and government policy ... Read More
2024 Sonatype Blog
The Shift Toward Unified Platforms in Application Security

The Shift Toward Unified Platforms in Application Security

| | Artificial Intelligence, Gartner, generative AI, Secure Coding, Software Security
Modern software delivery has never been more complex, or more interconnected ... Read More
2024 Sonatype Blog
Stop Open Source Malware at the Gate with Repository Firewall

Stop Open Source Malware at the Gate with Repository Firewall

| | Best Practices, Malware, malware prevention, open source, open-source malware, Software Security, Sonatype Repository Firewall
Open source components form the backbone of innovation, but they also introduce significant security risks ... Read More
2024 Sonatype Blog
Transforming Software Compliance with AI SBOM Management

Transforming Software Compliance with AI SBOM Management

| | Artificial Intelligence, Compliance, Federal, generative AI, risk, SBOM, SBOM Manager, software bill of materials
If your software serves federal missions, you face twin pressures to move faster and prove exactly what's in your software ... Read More
2024 Sonatype Blog