automated open source governance Archives

AI Is Making Software Autonomous, and Governance Must Follow

Mitchell Johnson | May 27, 2026 | AI, Artificial Intelligence, automated open source governance, Automation, Development, governance, software supply chain automation, Thought Leaders

In 2011, Marc Andreessen famously wrote that "software is eating the world." Today, software is no longer just a competitive advantage; it is the foundational infrastructure for nearly every industry. We don't merely ...

2024 Sonatype Blog

Automation you can trust: Cut backlogs without breaking builds

Aaron Linskens | June 4, 2025 | automated open source governance, automated security, Automation, dependencies, software supply chain automation

Engineering teams live in a paradox — under pressure to ship software faster than ever, yet every new open source component introduces hidden risk. Security backlogs pile up as developers scramble to ...

2024 Sonatype Blog

Gartner: The Crucial Role of OSS License Compliance

Katie McCaskey | December 23, 2019 | automated open source governance, Everything Open Source, Gartner, license risks, open source governance policy, Post developers/devops

Gartner’s report, Technology Insight for Software Composition Analysis, makes four recommendations to improve software security. The first is to ensure a software bill of materials (or SBOM) exists for every software application; ...

Sonatype Blog

Activate Your Shield Against Open Source Invasions

Katie McCaskey | August 9, 2019 | automated open source governance, Everything Open Source, open source management, open source risk, Product

What are infinity stones, and where are they located in the Nexus platform? ...

Sonatype Blog

What Toyota Unlocked Decades Ago Drives Software Supply Chain Management Today

Katie McCaskey | August 5, 2019 | 2019 State of the Software Supply Chain Report, automated open source governance, Continuous Security, DevSecOps, News and Views, Open Source Governance, Report/Survey/Whitepaper releases

What secrets did Toyota unlock decades ago that drive the success of today’s software supply chain? Sonatype’s Matt Howard explained during a chat with Dave Bittner on an episode of The CyberWire ...

Sonatype Blog

automated open source governance

AI Is Making Software Autonomous, and Governance Must Follow

Automation you can trust: Cut backlogs without breaking builds

Gartner: The Crucial Role of OSS License Compliance

Activate Your Shield Against Open Source Invasions

What Toyota Unlocked Decades Ago Drives Software Supply Chain Management Today

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On