Kevin Miller, Author at Security Boulevard

Onboarding Nexus Lifecycle Through SCM

Has anyone ever asked you where all of your applications were located; and your response was “Somewhere in GitHub?” We know that feeling too ... Read More

Secure What You Build and Where You Run It:  Say Hello to the Infrastructure as Code Pack for Nexus Lifecycle

What is the IaC Pack and Why Should You Care?  The Infrastructure as Code Pack is a new add-on to Nexus Lifecycle that enables developers to easily find and fix security vulnerabilities in their cloud infrastructure templates ... Read More

Open Source and Cloud Security Together at Last

Today, we’re excited to announce a partnership with Fugue to bring cloud security and compliance into development work streams, helping your teams build, deploy, and manage secure applications in today's popular cloud-native environments.  ... Read More
Funniest Friends Storylines - Joey's Encyclopedia

GitLab: instant, inline, indispensable developer insights

Today we’re going to talk about letters, as in the alphabet.  Did you ever see the Friends episode where Joey can’t afford an entire set of encyclopedias, so he just buys the one with the letter “V” and tries to steer every conversation to V words? What an awesome episode ... Read More

Hitting the Trifecta with GitLab Automated Merge Requests

We’ve been working to integrate component intelligence from Nexus Lifecycle directly into source control management (SCM) systems so that developers can choose the best open source components and build secure applications from the start ... Read More

Find and Fix Vulnerabilities in Seconds using GitHub PR Reviews with Line Comments

Pull request line comments highlight the exact line(s) of code that introduced a policy violation, giving developers all the information they need to remediate open source risks and innovate securely without sacrificing speed. Developers need to know if code they commit introduces risks and why. The sooner they find potential ... Read More

Continuously Improve CI/CD with Nexus Lifecycle and Bitbucket Code Insights

Over the last few weeks we’ve been highlighting our integrations with Atlassian that bring open source governance insights right into your favorite Atlassian tools. We have integrations for planning and building applications. We wanted to save our newest integration into developer tooling for last: Bitbucket Code Insights. According to Atlassian, ... Read More

Build Better Code Using Sonatype’s Integrations with Atlassian

Increase efficiency with automation and integrations between your favorite development tools As more and more software development teams rely on open source, it is now more important than ever to ensure that only the best open source components make it into a final application. With a 71% increase in open ... Read More

Smart Teams Use Atlassian and Sontaype to Plan Development Work

Jira software from Atlassian is one of the most widely used software in the world, helping agile development teams plan projects and manage stories, epics, tasks, tickets, workflows and backlogs. Smart developers use Sonatype's Nexus Platform to automatically find and fix open source vulnerabilities in their projects. We enable companies ... Read More

Smart Teams Use Atlassian and Sonatype to Plan Development Work

Jira software from Atlassian is one of the most widely used software in the world, helping agile development teams plan projects and manage stories, epics, tasks, tickets, workflows and backlogs. Smart developers use Sonatype's Nexus Platform to automatically find and fix open source vulnerabilities in their projects. We enable companies ... Read More