News
Hijacked npm Package Attempts to Deliver Polin Rider-Linked RAT
3+ day, 1+ hour ago (765+ words) Nexus One Platform Automate open source and AI governance Sonatype Nexus Repository Build fast with a centralized binary repository Sonatype Firewall Reduce remediation with OSS malware protection Sonatype Lifecycle Avoid rework with automated SCA and remediation Sonatype Guide Guide AI…...
Axios Compromise Explained | Sonatype Video
2+ week, 4+ day ago (149+ words) Nexus One Platform Automate open source and AI governance Sonatype Nexus Repository Build fast with a centralized binary repository Sonatype Firewall Reduce remediation with OSS malware protection Sonatype Lifecycle Avoid rework with automated SCA and remediation Sonatype Guide Guide AI…...
Why Developer Experience Is the Foundation of Dev Sec Ops Success
3+ week, 4+ day ago (868+ words) Nexus One Platform Automate open source and AI governance Sonatype Nexus Repository Build fast with a centralized binary repository Sonatype Lifecycle Avoid rework with automated SCA and remediation Sonatype Guide Guide AI coding assistants with open source intelligence Sonatype SBOM…...
The Time Is Now to Prepare for CRA Enforcement
1+ mon, 2+ day ago (485+ words) Nexus One Platform Automate open source and AI governance Sonatype Nexus Repository Build fast with a centralized binary repository Sonatype Lifecycle Avoid rework with automated SCA and remediation Sonatype Guide Guide AI coding assistants with open source intelligence Sonatype SBOM…...
Why Software Supply Chain Security Requires a New Playbook
1+ mon, 1+ week ago (925+ words) Nexus One Platform Automate open source and AI governance Sonatype Nexus Repository Build fast with a centralized binary repository Sonatype Lifecycle Avoid rework with automated SCA and remediation Sonatype Guide Guide AI coding assistants with open source intelligence Sonatype SBOM…...
Sonatype Releases Q1 2026 Open Source Malware Index: Trust Abuse Most Successful Attack Vector
1+ mon, 1+ week ago (96+ words) Malicious open source packages reach 1. 346 million as attackers abuse trusted software, release paths, and developer workflows Trust Abuse, Not Novelty, Defined the Most Successful Q1 Attacks Developer and CI/CD Environments: Primary Targets for Access, Persistence, and Reuse npm Remained the…...
Q1 2026 Open Source Malware Index: Adaptive Attacks, Familiar Weaknesses
1+ mon, 1+ week ago (1102+ words) Nexus One Platform Automate open source and AI governance Sonatype Nexus Repository Build fast with a centralized binary repository Sonatype Lifecycle Avoid rework with automated SCA and remediation Sonatype Guide Guide AI coding assistants with open source intelligence Sonatype SBOM…...
Modernizing Nexus Repository: Moving Beyond Orient DB
1+ mon, 2+ week ago (528+ words) Nexus One Platform Automate open source and AI governance Sonatype Nexus Repository Build fast with a centralized binary repository Sonatype Lifecycle Avoid rework with automated SCA and remediation Sonatype Guide Guide AI coding assistants with open source intelligence Sonatype SBOM…...
AI, Dev Sec Ops, and the Future of Application Security: The Gartner" Report
1+ mon, 2+ week ago (767+ words) Even as organizations recognize the importance of application security, most still struggle to operationalize it at scale. That gap becomes harder to ignore as development accelerates, AI becomes embedded in workflows, and software supply chains grow more complex. At the…...
How Sonatype's Container Scanning Protects You From Zero-Days
1+ mon, 3+ week ago (854+ words) Nexus One Platform Automate open source and AI governance Sonatype Nexus Repository Build fast with a centralized binary repository Sonatype Lifecycle Avoid rework with automated SCA and remediation Sonatype Guide Guide AI coding assistants with open source intelligence Sonatype SBOM…...