SBOM Manager New Features Accelerate Compliance and Security at Scale
Effective management of software bills of materials (SBOMs) is now crucial for ensuring security, achieving compliance, and optimizing operational efficiency ... Read More
Celebrating the 2025 Sonatype Elevate Awards Finalists
At Sonatype, we believe innovation happens when secure development practices and bold ideas come together. That's why we created the Sonatype Elevate Awards to shine a light on organizations and teams setting new standards in software supply chain management, DevSecOps excellence, and collaborative transformation ... Read More
SBOM Best Practices: What Global Leaders Are Asking and Doing
The software bill of materials (SBOM) drives the shift from compliance checkbox to cornerstone of modern software security, equipping organizations to navigate supply chain threats, evolving regulations, and the complexity of AI-generated code ... Read More
Future-Proofing Your Software Supply Chain with SCA Best Practices
Open source software (OSS) is the backbone of modern software development, empowering industries from finance and healthcare to government and technology to innovate faster and reduce costs. However, this widespread adoption brings a growing and complex web of security challenges ... Read More
Building Resilience and DORA Compliance: Lessons, Gaps, What’s Next
Operational resilience is more than a nice-to-have. It's a business imperative. For financial institutions, this principle has been codified by the European Union's Digital Operational Resilience Act (DORA), which aims to ensure that the financial sector can withstand and recover from ICT-related disruptions ... Read More
DoD-Ready Software: Embracing the SWFT Initiative with Confidence
The Department of Defense's (DoD) new Software Fast Track (SWFT) Initiative is more than a policy shift — it's a transformation in how software is evaluated, acquired, and deployed across defense agencies ... Read More
Governing open source and AI in mitigating modern risks in software development
The explosion in generative AI has dominated conversations from the server room to the boardroom. As organizations race to build the next wave of intelligent applications, technology leaders are increasingly turning to AI models to gain an edge ... Read More
Securing and scaling InnerSource with automation
As organizations strive for greater collaboration and innovation in their software development processes, practices like "InnerSource" are taking center stage ... Read More
Insecure LLM output handling and how to build safe defenses
As large language models (LLMs) increasingly shape how modern software is built and used, organizations must heed new categories of risk ... Read More
How Sonatype leads in AI component analysis for supply chain security
From generative AI tools to pre-trained machine learning models, AI is rapidly transforming how software is developed ... Read More
