Hot Topics

Sonatype Lift

Are Unnecessary Vulnerabilities Polluting Your Software Supply Chain?

Are Unnecessary Vulnerabilities Polluting Your Software Supply Chain?

| | BOM Doctor, FEATURED, Nexus Platform, open source, secure software supply chain, Security Vulnerabilities, Sonatype Lift, Sonatype Safety Rating
  ...
Sonatype Blog

Open Source Basic Practices for Higher Quality Code to Fundamentally Strengthen Your Project

| | DevZone, Events and Webinars, open source, Post developers/devops, SBOM, Sonatype Lift
Sonatype has partnered with the Cloud Native Computing Foundation (CNCF) for Security Slam, an event to help improve the security of open source projects. To extend the value of this event, we ...
Sonatype Blog

Weaponizing Open Source Through Job Recruiting

| | DevZone, Log4j, malware prevention, Nexus Platform, SBN News, Sonatype Lift
Over the last week, troubling new reports have arisen about state-sponsored threat actors leveraging modified open source applications to compromise employees' machines at technology companies, governments, and non-profit organizations. Microsoft, Mandiant, and ...
Sonatype Blog
Sonatype Lift Logo - Cartoon Squirrel with Rocket Pack

3-2-1, Lift off! It’s Time to Elevate Your Development with Sonatype Lift

| | code analysis, code quality, FEATURED, Product, Sonatype Lift
Deep code analysis designed for developers and focused on code quality is here. When you have an awesome new product aimed at helping developers catch and fix code quality issues during code ...
Sonatype Blog