SSCR-10yr-mark-white-nologo@2x

Uncover a Decade of Data

We've compiled 10 years of data to analyze the state of the software supply chain. Dive into trends, risks, and insights that could impact your SDLC.

Read Report

sticky : sticky

Skip Navigation

Platform
- - Platform overview Automate your software supply chain security
  - Integrations Work in the tools, languages, and packages you already use
Solutions
- - Integrated Innovation Align dev, security, and ops teams to fuel secure deployment
- By Industry
Pricing
Resources
- - Resource Center Articles, videos, and reports that help transform the way you innovate.
Partners
- - Become a Partner Join our extensive Sonatype Partner Network
  - Find a Partner Find and connect with a certified Sonatype partner
Company

Book a Demo

Posts by Casey Dunham

Casey, who recently launched his own security business, is known for his unique approaches to all areas of application security, stemming from his 10+ year career as a professional software developer. His strengths include secure SDLC development consulting; threat modeling; developer training; and auditing web, mobile, and desktop applications for security flaws.

Blog Post

How to Use Sonatype OSS Index to Identify Security Vulnerabilities

Read More

Blog Post

Getting Started With Sonatype DepShield: An Introduction

Read More

Platform

Solutions

Community

Partners

Company
- Careers
- Contact
- About
- Newsroom
- Trust Center
- Investors
- Press Kit

Subscribe for all the latest software security news and events

Terms of Service
Privacy Policy
Modern Slavery Statement
Event Terms and Conditions
Do Not Sell My Personal Information

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.