From Fast Company to Inc, Sonatype Continues Racking Up Notable Awards
Being a new employee is a lot like being the new kid at school. One of the first things you suss out is the difference between expectations and reality. Sometimes the gap is pretty disappointing. Other times, there isn't a gap at all -- in fact, reality exceeds your expectations! ... Read More
Activate Your Shield Against Open Source Invasions
What are infinity stones, and where are they located in the Nexus platform? ... Read More
Continuous Authorization with DevSecOps
Software development within the federal government often begins with an alignment to the Authorizations to Operate (ATO) and related, required security processes. Sometimes, these are an impediment to DevSecOps. So how can teams implement sound DevSecOps into an environment with strict controls and processes? ... Read More
What Toyota Unlocked Decades Ago Drives Software Supply Chain Management Today
What secrets did Toyota unlock decades ago that drive the success of today’s software supply chain? Sonatype’s Matt Howard explained during a chat with Dave Bittner on an episode of The CyberWire Daily podcast ... Read More
How a Surf Loving Aussie Developed Sonatype’s Most Popular Extension
The first thing you need to know about Sonatype is this: the rumors are true ... Read More
NIST Proposes Standards to Secure Government SDLC
Earlier this Summer, the National Institute of Standards and Technology (NIST), a part of the U.S. Chamber of Commerce, proposed a set of standards to address software supply chain attacks - and the growing need for better software security ... Read More
Blue by Default
How do you build an organization so security is the default, not the afterthought? The rise of attacks demonstrates an ever increasing need to protect ourselves because critical, interconnected systems are controlled by software. Security must "shift left" and be embedded into the software supply chain from the start. As ... Read More
How to Become an OSS Champion
Open source software components yield a competitive marketplace advantage. So why do some development teams resist and rebel? ... Read More
Free Software, But No Free Lunch
“This is a very important issue. Enterprises are not taking necessary precautions,” our SVP of Strategy and Corporate Development, Bill Karpovich, noted when talking about Fortune 100 cybersecurity ... Read More