Tag: Sonatype
Researchers Discover More Than 700 Unwanted Open Source Packages
Since 2019, Sonatype's AI tooling has found roughly 107,000 items that have been labelled as harmful, suspicious, or proof-of-concept.
Another sizable collection of malicious packages,...
Critical Log4j Vulnerability Still Being Downloaded 40% of the Time: Report
The Log4j open source component has been downloaded nearly five million times since a critical vulnerability was first discovered in it on December 10th....
Cigniti Technologies Teams Up With Sonatype To Enhance DevOps Further
They will work to help enterprise customers innovate faster and easily mitigate security risk inherent in open source
They said that by teaming...
One In Six Developers In Healthcare Industry Report Open Source Software...
Within healthcare organisations, the motivations to implement security controls were largely driven by compliance requirements (50 per cent)
Mature DevOps respondents in the...
Brooke Motta And Shawn Basak Join Sonatype’s Executive Leadership Team
Motta will oversee sales of Sontype’s Nexus Platform for the western region of the United States
Basak will manage and execute value creation...
Sonatype Develops Automated Malware Prevention For Open Source Libraries
Its Nexus Intelligence research engine now automatically detects counterfeit and malicious code injections into open source software supply chains
Sonatype has upgraded its Nexus Intelligence...
One in 10 Open Source Components Downloaded by UK Firms Contain...
Many companies are still using the flawed Struts component, which was responsible for the Equifax breach
There is a slight decrease in vulnerable...
Sonatype Partners with HackerOne to Make Open Source Safer
The programme will initially focus on the Java ecosystem within the Central Repository; the companies plan to expand it to other ecosystems over time
Software...
Equifax Selects Sonatype to Support Open Source Governance and Security
Equifax is deploying Sonatype’s Nexus Platform including the Nexus Repository, Nexus Lifecycle and Nexus Firewall.
Credit reporting company Equifax Inc. has selected Sonatype’s Nexus Platform to intelligently...
JavaScript support for Nexus Repository by Sonatype
In a major move, Sonatype announces contributing source code to the community for all formats currently supported in Nexus Repository. The company will contribute...