Need Immediate Help?

Nexus OSS

Extensions and Plugins

Author, Mark Miller

Artifact Listener: New Update Pushed

Guillaume Smet has created an innovative solution for notification of new releases on the Central Repository. It’s called Artifact Listener.  When I spoke with him about it last week, he said he had just pushed a new release and would like people to come and try it out. Here’s his description of the project. Artifact

Guest Authors

Author, David Spark

15 Ways Infosec Pros Turn Tech Talk into Business Language

by David Spark, originally published on Tenable Network Security When starting a new career, many eager security professionals think their job is simply to secure data and the network. Over time, they realize that strategy can be in conflict with the needs of the business. Their ability to help the business requires them not only

Engineering Team: Thoughts

Author, Brian Fox

Nexus Lifecycle 1.15 Release

The Sonatype CLM 1.15 (Nexus Lifecycle) release focuses predominantly on improving security administration functionality. As part of this, you will likely notice some changes with regard to the associated interface in these areas. Here’s a breakdown of the improvements in this release. Details follow this summary: Built-in roles and permissions visibility Custom roles creation Java


The DevOps ToolKit

New Book: The DevOps Toolkit [proofreaders wanted]

For those of you who have participated in my previous book projects as authors or volunteer proofreaders, I have a new project in the works that you might find of interest, The DevOps Toolkit: Building the Software Supply Chain. We are in the process of completing the first draft of the book and are asking

The Q&A Corner

Author Rich Seddon

Improving NuGet and Nexus Performance – Recommendation

As of Nexus version 2.10.0, the “Download NuGet Feed” scheduled task is no longer needed for NuGet proxy repositories.  Newer versions of Nexus dynamically delegate incoming queries to remote  repositories and cache the results.  Consequentially Sonatype stopped adding the “Download NuGet Feed” task to Nexus configurations in version 2.10.0, and the 2.10.0 release notes recommend removing this

Nexus Pro/CLM

SonarQube + Nexus Lifecycle.

Integrating SonarQube with Nexus Lifecycle

Many development organizations we work with have turned to SonarQube as a dashboard to visualize and measure their code quality. Customers using Nexus Lifecycle (formerly CLM) want to surface known security vulnerabilities and license risk in the same place developers or executives already go to assess the overall quality of their application. To support this growing

How We Do It

Mark Kilby and Jeffry Hesse

Talking the Talk – Focus on Goals, not Best Practices (Part 2)

by Mark Kilby and Jeffry Hesse In our last blog post, we discussed how it’s better to set process goals versus best practices across teams in your organization.  We’d like to continue that thought by discussing another goal we set for our distributed teams: Talking Daily.  This goal definitely aligns with principles of the Agile


Trevor Parsons at Velocity

DevOps Leadership Series: Monitoring Containers and Microservices

Trevor Parsons (@trevparsons) is a Co-Founder and Chief Scientist at Logentries, a leading SaaS-delivered log management and analytics service. I caught up with Trevor at the Velocity Conference in Santa Clara and asked him what themes were resonating with attendees this year. For this episode of the DevOps Leadership Series, Trevor briefly illustrates some current

Become a Member

Are you a current user of: