Nexus Lifecycle

Open Source and Cloud Security Together at Last

| | FEATURED, infrastructure as code, News and Views, Nexus Lifecycle, Product
Today, we’re excited to announce a partnership with Fugue to bring cloud security and compliance into development work streams, helping your teams build, deploy, and manage secure applications in today's popular cloud-native ...
Sonatype Blog

Discord squashes critical Electron bugs: open source attacks continue to grow

| | FEATURED, Nexus Intelligence, Nexus Lifecycle, npm, Product
My colleague has two kids, ages 9 and 12.  Since the COVID lockdowns they have been playing more online games and each of them use Discord to chat with their friends during ...
Sonatype Blog

Making Developer’s Lives Easier as We Enter The New Frontier of Dependency Management

| | Advanced Development Pack, FEATURED, News and Views, Nexus Lifecycle, Product
In recent years, we at Sonatype have dedicated an extensive amount of time to studying enterprise development teams, open source projects, and how everything in the OSS ecosystem works together. In fact, ...
Sonatype Blog
Funniest Friends Storylines - Joey's Encyclopedia

GitLab: instant, inline, indispensable developer insights

| | GitLab, merge requests, Nexus Lifecycle, Product
Today we’re going to talk about letters, as in the alphabet.  Did you ever see the Friends episode where Joey can’t afford an entire set of encyclopedias, so he just buys the ...
Sonatype Blog

Announcing the NeuVector & Sonatype Nexus Lifecycle Integration: Securing Containers Across the SDLC

| | Container Security, FEATURED, NeuVector, Nexus Lifecycle, Product
It’s no secret that container usage has increased rapidly in the last few years. As reported in our 2020 State of the Software Supply Chain Report, “Pulls of container images topped 8 ...
Sonatype Blog

CVE-2020-17479: The return of Validation Bypass (CVE-2019-19507) in `jpv`

| | FEATURED, Nexus Firewall, Nexus Intelligence, Nexus Lifecycle, Product, Vulnerabilities
In addition to regular vulnerability data research, the Sonatype Security Research Team also contributes to the open-source community by going the extra mile when we discover flaws that were previously not reported ...
Sonatype Blog

Hitting the Trifecta with GitLab Automated Merge Requests

| | FEATURED, GitLab, merge requests, Nexus Lifecycle, Product, Pull Requests
We’ve been working to integrate component intelligence from Nexus Lifecycle directly into source control management (SCM) systems so that developers can choose the best open source components and build secure applications from ...
Sonatype Blog

New Language? No Problem. New Ecosystems in Nexus Lifecycle and Nexus Firewall

| | FEATURED, Nexus Firewall, Nexus Lifecycle, Product
A few months ago we announced some exciting ecosystem updates to Nexus Lifecycle. Today, I’m happy to expand upon that with the news of even more ecosystem coverage added to Nexus Lifecycle, ...
Sonatype Blog

Nexus Repository: A Strategic Guide from Git to Governance

| | azure, enterprise, FEATURED, Microsoft, Nexus Lifecycle, Nexus Repository, Product
As leaders of organizations, innovators of technology, and practitioners of continuous development, we must understand the constant changes in the industry to better suit the needs of the business and of our ...
Sonatype Blog

We Speak Your Language – New Ecosystems Available in Nexus Lifecycle

| | C/C++, FEATURED, Nexus Lifecycle, php, Product, Ruby Gems language
There are more than 700+ programming languages to choose from and different languages gain popularity and momentum at any time. In fact, since 2012 there has been a new “favorite” programming language ...
Sonatype Blog
Load more