82
I Use This!
Inactive

News

Analyzed 2 days ago. based on code collected 3 days ago.
Posted over 10 years ago by Mark Troester
Applications are becoming the primary security threat vector. Since applications are constructed from 3rd party components, there continues to be a tremendous amount of industry effort and impetus behind managing open source components effectively. ... [More] And now we can add the Financial Services / Information Sharing and Analysis Center (FS-ISAC) to the list. [Less]
Posted over 10 years ago by Mark Troester
We continue to see exponential growth in requests from the Central Repository. In fact, there were 8 Billion requests in 2012 - and it is looking like this year will total up to 13 Billion requests.Given these trends, the time seemed right for a series of blog posts that address recent activity in the area of open source governance and security
Posted over 10 years ago by Mark Troester
Part 3  —   Part 4 Component-Capable Release Management is Key to DevOps  – Part 5 Up Next  DevOps conversations are dominated by release management and production deployment. These are the primary topics at the DevOps conferences that we have attended in Atlanta, New York, Vancouver, Portland, Barcelona and London. This concerns me at some [...]
Posted over 10 years ago by Manfred Moser
One of the approaches to software that I strongly believe in is taking advantage of latest product innovations in all new releases. I think it's important to upgrade to the latest versions of build tools and components as soon as you can.
Posted over 10 years ago by Mark Troester
Well there is nothing like an updated specification that drives action or interest in a topic. We’re seeing that with the introduction of PCI 3.0. While there are several key updates to the specification, the one I find most interesting reflects the reality of how applications are constructed today – from components. It’s great to [...]
Posted over 10 years ago by Manfred Moser
Sonatype Nexus can easily be integrated with external systems due to the fact that all functionality is available via various REST API calls. On the other hand Nexus can be expanded by writing plugins for Nexus that customize it and add further functionality. In our recent Nexus Live October event we talked about using this [...]
Posted over 10 years ago by Mark Troester
Part 2     —   Part 3 of Component Management Strategy and DevOps    –    Part 4 Up Next  Ok, I need a “blog post delivery tool chain” because part 3 in my DevOps series of blog posts is woefully behind my expected delivery date. It’s like a broken development process – I’m [...]
Posted over 10 years ago by Manfred Moser
In the Nexus Live event John Nagro and Tom McLaughlin from HubSpot detailed how they are using Nexus as a repository for their development and release components. They found that they need to be able to quickly create another virtual machine as part of their build infrastructure to react to changes in datacenter locations and other parameters.
Posted over 10 years ago by Mark Troester
CONTROL, ENFORCEMENT, APPROVALS, POLICIES These concepts run counter to fast, agile, based-development. These words make developers cringe, they are “4 letter words”. Could it be that the problems with these concepts is not what they are trying to ... [More] accomplish, but how they are implemented? They are intended to ensure that applications developers create are trusted, [...] [Less]
Posted over 10 years ago by Mark Troester
We have been participating in the devopsdays events by presenting an ignite talk on how DevOps need to be aligned with how applications are constructed today – with open source components. The ignite presentation style is really interesting – you have 5 minutes to present 20 slides that advance automatically every 15 seconds. I started [...]