Blog
DevZone
Contact Us

Products
Solutions
Pricing
Resources
Company
DevZone
BOOK A DEMO
CHAT NOW

Products
Solutions
Pricing
Resources
Company
BOOK A DEMO
CHAT NOW

Software composition analysis

Nexus Lifecycle
Eliminate OSS risk across the entire SDLC.
Nexus Firewall
Protect Nexus and Artifactory repos from OSS risk.

Container Security

Nexus Container
Identify and remediate OSS risk in containers for build and run-time protection.

CODE QUALITY ANALYSIS

Sonatype Lift
Find and fix security, performance, and reliability bugs during code review.

Repository MANAGEMENT

Nexus Repository
Manage binaries and build artifacts.

Complete Platform

Automate your software supply chain security against every attack with Sonatype’s suite of products.

Book a Demo

Get a personalized demo and get your questions answered from a Sonatype expert.

For Professionals

Developers
Application Security
DevSecOps
Legal & Compliance

For Industries

Government
Financial Services
Manufacturing
Technology
Healthcare

Content

Spring4Shell Resource Center
Log4j Resource Center
Whitepapers & eBooks
Webinars
Videos
Customer Stories
Events

CUSTOMER Portal

Training & Workshops
My Sonatype
Customer support, product guides & documentation, learning paths, community, and more.

Integrations & Free Tools

Free Developer Tools
Sonatype Integrations
Sonatype OSS Index
Nexus Vulnerability Scanner

About us

About Sonatype
About Nexus Intelligence
Analyst Recognition
Partners
Careers at Sonatype
Press Releases
Media
Blog

Epic Failures in DevSecOps, Vol. 1

One topic. Nine authors. Where did they go wrong?

Epic Failures in DevSecOps, Vol. 1

One topic. Nine authors. Where did they go wrong?

Through short stories from expert practitioners, observe patterns the DevSecOps community can learn from to safely push the boundaries of software development. Authors include:

Edwin Kwan, Application and Software Security Team Lead, Tyro Payments
Chris Roberts, Chief of Adversarial Research and Engineering, LARES
DJ Schleen, DevSecOps Evangelist and Security Architect, CVS Health
Stefan Streichsbier, CEO, Guardrails

Twitter LinkedIn Facebook YouTube GitHub

Products

Full-Spectrum Platform
Sonatype Lift
Nexus Lifecycle
Advanced Legal Pack
Nexus Lifecycle Foundation
Nexus Firewall
Nexus Container
Nexus Auditor
Nexus Repository
Pricing

Free Tools

Nexus Vulnerability Scanner
OSS Index
Free Developer Tools
Nexus Integrations
CVE Insights

Solutions

Developers
AppSec
DevSecOps
Legal & Compliance
Government
Financial Services
Manufacturing
Technology
Healthcare

Resources

Sonatype Blog
Whitepapers & eBooks
Webinars
Videos
Customer Stories
Events

Customer Portal

Training & Workshops
My Sonatype
Guides
Documentation
Online Courses
Customer Support

Company

About Sonatype
Analyst Recognition
Nexus Intelligence
Partners
Investors
Press Releases
Media Coverage
Press Kit
Trust Center
Careers
Contact Us

Products
Free Tools
Solutions
Resources
About
Pricing

Twitter
LinkedIn
Facebook
YouTube
GitHub

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759

Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102

Australia Office - 60 Martin Place Level 1, Sydney, NSW 2000, Australia

London Office -168 Shoreditch High Street, E1 6HU London

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service Privacy Policy Modern Slavery Statement Event Terms and Conditions Do Not Sell My Personal Information

Software composition analysis

Container Security

CODE QUALITY ANALYSIS

Repository MANAGEMENT

Complete Platform

Book a Demo

For Professionals

For Industries

Content

CUSTOMER Portal

Integrations & Free Tools

About us

Contact Us

Epic Failures in DevSecOps, Vol. 1

One topic. Nine authors. Where did they go wrong?

Epic Failures in DevSecOps, Vol. 1

One topic. Nine authors. Where did they go wrong?

Products

Free Tools

Solutions

Resources

Customer Portal

Company