Why You Need a Software Bill of Materials More Than Ever

Imagine that a new vulnerability in lodash was just announced. Applications using the npm package are being exploited through large scale automated DoS attacks. You need to act quickly to understand if ...
Nexus Lifecycle Now Integrates with Red Hat Clair to Secure Containers Across the SDLC

Nexus Lifecycle Now Integrates with Red Hat Clair to Secure Containers Across the SDLC

Developers are continuing to leverage containers to reliably move software applications between environments, making them an integral part of every DevOps pipeline. In fact, according to Sonatype’s 2019 State of the Software ...

5 Ways Your Organization Benefits from DevSecOps

It’s right there in the moniker: DevSecOps , a portmanteau of Development, Security and Operations, implies introducing security early on – as a part of a comprehensive, agile Software Development Life Cycle ...

DevSecOps Elite and Their Reference Architecture

Who are members of the DevSecOps elite, and what tools do they use? And, why should you care? The Sonatype community has a few insights. Two Sonatypers shared insights at DevOps World ...

Make Sure to Cover Your Auth

Today dev, ops, and security -- all three silos -- are working in synergy in top-performing DevOps organizations - what we know as DevSecOps.Aditya Balapure (@adityabalapure) is an infosec specialist at Haven ...

How The Unicorn Project Aligns with The Phoenix Project

Editor's Note: You can meet Gene at the 2020 DevOps Enterprise Summit (DOES) October 28-30 in Las Vegas. Visit the Sonatype booth to receive a free copy of The Unicorn Project. DOES ...
DevOps continuous loop

DevSecOps for a Dollar or Less

Anyone who grew up with siblings knows the phrase, "There is a wall here!!!!!" Of course, there wasn’t a physical wall, but an imaginary border that separated you and protected your space ...

Sonatype Hosts Global Gatherings of DevSecOps Leaders and Innovators

The month of October is dedicated to intimate gatherings of DevSecOps professionals, thought leaders, and decision makers in cities across North America and Europe. Participants tell us that these forums and roundtables ...
OSS for enterprises: Procure Secure Components Faster with Superior Developer Experience

It Pays to Discover Sonatype

The name of the presentation says it all: Procure Secure Components Faster with Superior Developer Experience. So announced Karthik Loganathan and Sheshagiri (Giri) Rao of Discover at the annual DevOps World | ...
null

Advancing Application Delivery

Are you in an organization implementing Continuous Delivery? Are you a manager who wants to see your applications respond at the pace of the market - or better, be in front of ...
Loading...