Sonatype Government IT News

Cyber-readiness and Changing Federal Government SBOM Requirements

President Biden’s Executive Order 14208, “Improving the Nation’s Cybersecurity,” was a major step toward regulating the software supply chain in the US was spurred by ...

White House National Cybersecurity Strategy: Landmark Action for a Critical Threat

The last decade has seen increased reliance on software across every part of our lives. In parallel, we’ve seen a massive increase in attacks on this digital infrastructure, ...

Part 3: The Shifting Landscape of Open Source Supply Chain Attacks

When lives are on the line, the stakes are raised. It also presents a critical question and brings us to the focus of our third and final post: who’s responsible, and how do ...

Part 2: The Shifting Landscape of Open Source Supply Chain Attacks

Sonatype’s involvement since the inception of open source security gives us a unique perspective on supply chain security. As we see it, there are three distinct phases of the ...

Biden's Cybersecurity Executive Order fuels seismic changes in software development practices

Total Economic Impact Study Reveals $14,000 Savings per Developer

Sonatype released a commissioned study conducted by research of organizations using the Nexus Platform and their ROIs and more increased profits.

Equifax Chose Sonatype

Sonatype, the Nexus company and a continuous delivery leader, today announced that Equifax Inc. has selected Sonatype’s Nexus platform to manage and monitor its ...

Sonatype recognized as leading Provider of Software Composition Analysis

Sonatype, the leader in automated open source governance, announced it has been recognized as one of five “large” SCA Specialists in Forrester Research’s new Now Tech: ...

Sonatype Partners with All Day DevOps to Educate More Than 1 Million People Through an Expanded 2018 Program

All Day DevOps and Sonatype partnered to host the largest conference of high quality educational content to more than 1 million IT professionals to focus on DevOps.

Sonatype’s 2018 State of the Software Supply Chain Report Reveals Use of Vulnerable Open Source Increased 120%, Despite Equifax Breac

Sonatype today released its fourth annual

Micro Focus Extends Partnership with Sonatype to Bring Best-in-Class Open Source Security to all Fortify Customers

Today, Sonatype, the leader in automated open source governance and application security, and Micro Focus, creator of

The Modern Way to Develop Safe Code

Today’s guest is Derek Weeks, VP and DevOps Advocate at Sonatype. The discussion today highlights what has happened to software development in the past ten years. Rather ...

Government Spotlight: DevOps Accelerates Cyber Security

In 2010, a 7.0-magnitude earthquake devastated Haiti. The quake killed an estimated 230,000 people and sparked a massive global assistance response. We all remember this ...

Derek Weeks: A closer look at software supply chain

The software world is being flooded with open source product. In fact, the federal government has an open-source-first policy. But maybe it's time to stop and think about ...

Government Asks: What’s in Your Software?

Multiple agencies across the U.S. government are paying closer attention to the software they are buying. More specifically, they want to know what open source and third party ...

Protecting the open source software supply chain

What: The 2016 State of the Software Supply Chain report from Sonatype detailing the use of open source components in software.

Sonatype’s Nexus Repository Manager Installs Double in Last 18 Months, Reinforcing Dominant Market Share Position

Sonatype, the Nexus company and a continuous delivery leader, today announced that its Nexus repository manager usage has doubled in the last 18 months (July 2013 to February ...