Read our 6th annual report on open source software development and learn how developers are improving productivity while preventing software supply chain attacks like SolarWinds.
For the second year in a row, Sonatype’s open source and security research team collaborated with Gene Kim and Dr. Stephen Magill to examine how high performance DevSecOps teams prioritize productivity and security practices to achieve better business outcomes.
The findings are clear: accelerating development improves security outcomes, high performers have happier developers, and next-generation adversary threats are shifting cybersecurity investments earlier in the SDLC.
The SolarWinds software supply chain attack makes these findings especially pertinent to understanding how to mitigate risk while still developing great software. Learn how empowering development teams with the right tools can break down silos and benefit development, security, and operations teams.
Gene Kim,
IT Revolution
Stephen Magill,
MuseDev
Derek Weeks,
Sonatype
Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759
Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102
Australia Office - 60 Martin Place Level 1, Sydney, NSW 2000, Australia
London Office -168 Shoreditch High Street, E1 6HU London
Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.