Featured Article

Devs flood npm with 15,000 packages to reward themselves with Tea 'tokens'

By Ax Sharma on April 16, 2024 vulnerabilities

The Sonatype Security Research team has identified over 15,000 npm packages that flood npm registry in a new trend where devs involved in the blockchain and cryptocurrency communities are leveraging

Read More

SHARE:

Sonatype_Blog_Logo_White
READ MORE

The new Sonatype Learn: Self-service educational materials where and when you need them

By Brianne Strozewski on May 16, 2024 News and Views

2 minute read time

Explore the new Sonatype Learn website with updated courses, videos, and self-service educational materials for DevOps and Sonatype product training
Read More...
READ MORE

Enhance security with Sonatype Lifecycle and ServiceNow Application Vulnerability Response (AVR) integration

By Nitin Phadnis on May 16, 2024 open source security

3 minute read time

Sonatype integrates with ServiceNow's Application Vulnerability Response module to offer a single pane of glass view into open source vulnerabilities.
Read More...
READ MORE

Sonatype Lifecycle best practices: InnerSource

By Aaron Linskens on May 15, 2024 best practices

4 minute read time

Explore best practices for using Sonatype's InnerSource Insight to optimize software development processes within your organization
Read More...
READ MORE

Sonatype Lifecycle best practices: Reference policies, backup and restore

By Aaron Linskens on May 07, 2024 backup

5 minute read time

Explore how Sonatype Lifecycle offers powerful capabilities to enhance security with effective reference policies and robust backup and restore processes
Read More...
READ MORE

The impact of automating open source dependency management

By Jamie Coleman on May 03, 2024 dependencies

5 minute read time

Learn about the automation benefits of software dependency management from the experience of developers working in a heavily regulated industry
Read More...
READ MORE

Sonatype Lifecycle best practices: Getting started and managing SBOMs

5 minute read time

Sonatype Lifecycle enables you to control known and unknown risks by automating and optimizing the security and management of software supply chains.
Read More...
READ MORE

DevOps pioneers navigate organizational transformation

By Aaron Linskens on April 18, 2024 Devops

4 minute read time

Read about Sonatype’s DevOps Download webinar with Gene Kim who discusses how DevOps pioneers are catalyzing significant shifts within organizations
Read More...
READ MORE

Devs flood npm with 15,000 packages to reward themselves with Tea 'tokens'

By Ax Sharma on April 16, 2024 vulnerabilities

7 minute read time

The Sonatype Security Research team has identified over 15,000 npm packages that flood npm registry in a new trend where devs involved in the blockchain and cryptocurrency communities are leveraging
Read More...
READ MORE

The essential duo of SCA and SBOM management

5 minute read time

Explore software composition analysis (SCA) and software bill of materials (SBOM) management and why both help fortify software projects against threats
Read More...