sonatype

sonatype news search results

Developer news items we found relating to sonatype

11 results
DevSecOps-7th-annual-Community-Survey-results

DevSecOps 7th annual Community Survey results


Wednesday, April 15, 2020 by

Sonatype published findings from its seventh annual DevSecOps Community Survey, based on responses from 5,045 software engineering professionals. The survey, developed and conducted in partnership with Carnegie Mellon’s Software Engineering Institute, CloudBees, DevOps Institute, DevOps.com, DevSecOps Days, NowSecure, Security Boulevard, Verica, and All Day DevOps...


New-DevOps-Institute-program

New DevOps Institute program


Tuesday, August 13, 2019 by

DevOps Institue, a global member-based association for advancing the human elements of DevOps, revealed the introduction of its DevOps Institute Ambassador program. The program invites and acknowledges accomplished volunteers from across the globe who are committed to leading and empowering the DevOps Institute member community with the SKIL Framework to advan...


UI-version-control-system-has-been-developed-by-Applitools

UI version control system has been developed by Applitools


Monday, September 17, 2018 by

Applitools announced a new UI Version Control system, empowering developers, test automation engineers, and product managers to view the entire history of their web and mobile application user interfaces (UI) to understand what’s changed, when, and by whom. This lets R&D and product teams more intelligently guide app development by providing a visual record of...


Open-Source-security-comes-to-GitHub

Open Source security comes to GitHub


Thursday, August 16, 2018 by

Sonatype announced Sonatype DepShield, a new GitHub application that enables developers to experience basic open source security governance, free of charge. Powered by Sonatype’s OSS Index, DepShield integrates directly into GitHub repositories and allows developers to easily identify and avoid using open source components with known vulnerabilities. “The...


DevOps-practices--more-likely-to-integrate-automated-security

DevOps practices more likely to integrate automated security


Saturday, April 21, 2018 by

Sonatype published findings from its 5th annual DevSecOps Community Survey of 2,076 IT professionals. The survey shares practitioner perspectives on evolving DevSecOps practices, shifting investments, and changing perceptions.  Survey respondents with mature DevOps practices were 338% more likely to integrate automated security than organizations with no DevOps pra...


New-software-security-guide-from-SAFECode-publishes

New software security guide from SAFECode publishes


Monday, April 2, 2018 by

The Software Assurance Forum for Excellence in Code (SAFECode) announced the publication of the Fundamental Practices for Secure Software Development: Essential Elements of a Secure Development Life Cycle Program (Third Edition).The guide was written by SAFECode members to help software developers, development organizations and technology users initiate or improve their...


Sonatype-expands-firewall-to-stop-dev-vulnerabilities

Sonatype expands firewall to stop dev vulnerabilities


Friday, March 9, 2018 by

Sonatype has announced that the Nexus Firewall is now available to support the more than 10 million developers currently using the open source version of Nexus Repository. Previously only available to commercial users of Nexus Repository Pro, the newest version of Nexus Firewall gives all Nexus Repo users the ability to automatically stop vulnerable open source componen...


Scanning-JavaScript-for-vulnerabilities:-How-the-impossible-is-now-possible

Scanning JavaScript for vulnerabilities: How the impossible is now possible


Friday, January 13, 2017 by

Javascript is everywhere, and it's awesome! But the world most popular language can be riddled with problems if you aren't a careful programmer.There is a saying that speaks to the incredible popularity of JavaScript as a programming language and it goes like this: “any application that can be written in JavaScript, will eventually be written in JavaScript.” The we...


Why-software-is-no-longer-being-written-from-scratch

Why software is no longer being written from scratch


Tuesday, November 1, 2016 by

Application developers are increasingly reliant on open source component parts because pre-fabricated components speed up innovation and save developers the time (and money) of having to write code from scratch.But with 6.1% of component downloads containing a known security vulnerability it’s inevitable that defective parts will make their way into production – especia...


JFrog-talks-about-Artifactory-and-Bintray-for-DevOps-and-developers

JFrog talks about Artifactory and Bintray for DevOps and developers


Wednesday, October 5, 2016 by

JFrog provides infrastructure for software build, management and delivery in open-source, on-premise and SaaS cloud solutions. Their technology helps enterprises accelerate software development cycles by changing the way developers and DevOps teams manage their binary artifacts. We sat down with Shlomi Ben Haim, CEO of JFrog, to find out more about the company, and to g...


List-of-Completely-Free-Programming-Books-

List of Completely Free Programming Books


Thursday, September 26, 2013 by

Developers and programmers alike need resources, and if you are looking for a free way to dive into programming, I've got the source for you. Head on over to stackoverflow and check out this growing list of books online or offline that you can use to either get started with or sharpen your app development mastery.   Everything from C# essentials...