Product

Automated Third-Party Security Lifecycle Management Innovator Panorays Collaborates with Shared Assessments to Deliver Comprehensive Risk Evaluation

| | Compliance, Press Releases, Product
Customers Now Rely on Panorays to Reduce the Time Spent on Standardized Information Gathering (SIG) Responses ...
Panorays Blog 2018
Developers, Rejoice: Auto-Remediation Now Available in Eclipse, IntelliJ, and Visual Studio

Developers, Rejoice: Auto-Remediation Now Available in Eclipse, IntelliJ, and Visual Studio

| | DevSecOps, FEATURED, Nexus Firewall, Nexus Lifecycle, Product, remediation
We're excited to announce a new feature within Nexus Lifecycle and Nexus Firewall: auto-remediation. As part of Sonatype’s commitment to empowering developers with the ability to remediate quickly and easily, we’re continuing ...
Sonatype Blog
Repository Management: An Easy Way to Minimize Risk

Repository Management: An Easy Way to Minimize Risk

| | Nexus Repository, Nexus User Conference, Product, repository manager
You're probably familiar with JVM, or the Java Virtual Machine. It's a standard diagnostic interface used to test Java software; so standard, in fact, that Mykel Alvis (@mykelalvis) of Array Consulting urges ...
Sonatype Blog

Anonymous Access In Nexus Repository is Not A Zero-Day Vulnerability

| | News and Views, Nexus Repository, Product
In March, a researcher from Twistlock contacted us about two issues he identified, stemming from user access settings. As with any disclosure, we immediately looked into it ...
Sonatype Blog

New in Repo – Repository Routing Helps Protect Against Dependency Hijacking Attacks

| | DevSecOps, Nexus Repository, Nexus Repository 3, Product, Secure Coding
Nexus Repository Manager 3.17 introduces a new feature that allows organizations to better protect their supply chain dependencies against hijacking attacks. This new feature, known as Repository Routing, allows an administrator of ...
Sonatype Blog

Panorays Unveils New Tools for Auto Discovery of Third and Nth Parties and Geolocation of Digital Assets

| | fourth party, Press Releases, Product
One Click Automatically Displays Corporate Assets of Third-Party Vendors ...
Panorays Blog 2018
Block 1, Track 2: Technical Overview (7:50AM-11:10AM)

Hands On with the Nexus Platform: A Software Supply Chain Demo

| | Nexus Lifecycle, Nexus Repository, Nexus solutions, Product, Sonatype Nexus
“Every company is now a software company -- whether they like it or not,” says Ilkka Turunen in his recent talk at the Nexus User Conference. Ilkka, who serves as our Global ...
Sonatype Blog

The Path Forward for the Nexus Platform

| | Nexus Auditor, Nexus Firewall, Nexus Lifecycle, Nexus Platform, Nexus Repository, Nexus User Conference, Product
Central downloads are up, way up, to 146 billion downloads in 2018! So began Brian Fox’s presentation at this year’s Nexus User Conference. For comparison: there were less than 500 million downloads ...
Sonatype Blog
Contrast Protect + WAF: A Day in the Life of a User

Contrast Protect + WAF: A Day in the Life of a User

| | Contrast Protect, Product, rasp
A Web Application Firewall can watch network data, but the architecture does not enable them to see how that data is actually used. As a result, they sound an equal alarm for ...
Security Influencers Blog
Morphisec + Microsoft Defender AV: Advanced Threat Protection Made Easy

Morphisec + Microsoft Defender AV: Advanced Threat Protection Made Easy

| | Cyber Security, Endpoint security, Moving Target Defense, Product
...
Morphisec Default Blog