Tag Archives: security

Greg Anderson, OWASP 2017

Expanding Community Engagement at OWASP w/ Greg Anderson [Podcast]

Expanding Community Engagement at OWASP w/ Greg Anderson [Podcast]

Newly elected to the OWASP board, Greg Anderson is interested in how to expand the OWASP community. I talked with him about what he hopes to accomplish in his tenure on the board, the first initiatives he would like to implement and on various ideas for working with OWASP chapters, projects and events. About Greg

Rene Van Osnabrugge

Setting up Sonatype Nexus 3 as your Windows Docker Container Registry

My customer uses Sonatype Nexus as their artifact repository for all kinds of packages and also for Docker Containers. Since there are a few Microsoft .Net teams are moving towards Docker, the need for Docker containers arose as well. So we created a Windows Base container and tried to push this to the Nexus repository.

Caroline Wong and Paula Thrasher at DOES 2017

Thoughts on Security in the Modern Software Supply Chain with Caroline Wong and Paula Thrasher

Caroline Wong, Vice President at Cobalt.io, Paula Thrasher, Director Digital Services, CSRA, and I were having lunch at DevOps Enterprise Summit when the conversation took an interesting turn. Paula and Caroline had been on a panel the previous day and didn’t get a chance to do a deep dive into any of the topics. As we

Author, Matthew Barker

When it Comes to Application Security, “Doing Your Homework”​ Matters

They say software is eating the world, very true, but it has become even more clear that OSS components are eating the software world. This amazing revolution is driving unimagined gains in innovation and efficiency in our ability to deliver software. Think Uber, here is a new leader in the transportation industry without owning a

nexus firewall featured

Nexus Firewall – Quality at Velocity

Repository managers like Nexus and Artifactory have been serving software components for development teams and their tooling for years now.  This November, we are introducing an innovative way to improve speed and reduce risk through the quarantine of components with known vulnerabilities.  With the integration of Nexus Firewall, you can shield your application development from

IP Expo London 2016 - Shannon Lietz, Chris Swan and Mark Miller

The Future of DevSecOps w/ Shannon Lietz and Chris Swan, Live From IP Expo London

This is a live recording from 2016 IP Expo London, with Shannon Lietz (Intuit), Chris Swan (CSC) and host Mark Miller (Sonatype) discussing the future of security as it relates to DevOps. Shannon and Chris are real world practitioners, bringing stories from the trenches. We initially start with where the term DevSecOps came from the

Shannon Lietz

<— Shifting Security to the Left

Software is assembled from many component parts to quickly address customer needs.  The end-to-end process of delivering value through software starts with ideation and ends with a finished product or service that significantly improves the lives of its customers.  Some depict the Software Supply Chain from right to left enumerating the Continuous Delivery of software

Nexus and IntelliJ - Featured Image

Nexus Lifecycle and IntelliJ IDEA

Our roots are deeply secured to the development community at Sonatype. While Nexus products now span roles and responsibilities across an organization, we’re always looking to consider the needs of our developer tribe. We make it a point to continually add developer-focused features to our suite of products as part of this commitment. We also

Top