Sonatype Archives - Help Net Security

Sonatype

The use of open source software in DevOps has become strategic for organizations of all sizes

September 19, 2019

A higher percentage of top performing teams in enterprise organizations are using open source software, according to a survey conducted by DevOps Research and Assessment …

1 in 10 open source components downloaded in 2018 had a known security vulnerability

June 26, 2019

This year’s Sonatype report reveals the best practices exhibited by exemplary open source software projects and commercial application development teams. As in years past, it …

The patterns of elite DevSecOps practices

March 5, 2019

As DevOps practices are maturing rapidly, organizations with elite DevSecOps programs are automating security earlier in the development lifecycle and managing software supply …

Downloads of known vulnerable open source components increase 120%

September 27, 2018

Sonatype today released its fourth annual State of the Software Supply Chain Report, which reveals the widespread use of vulnerable software components by businesses around …

Devs know application security is important, but have no time for it

April 17, 2018

Sonatype polled 2,076 IT professionals to discover practitioner perspectives on evolving DevSecOps practices, shifting investments, and changing perceptions, and the results …

Software development teams embrace DevSecOps automation

March 22, 2017

Mature development organizations ensure automated security is woven into their DevOps practice, early, everywhere, and at scale, according to Sonatype. The adoption of DevOps …