Sonatype Acquires MuseDev to Add Code Analysis

Content By Devops .com Sonatype today revealed it has acquired MuseDev, a provider of a code analysis tool, in addition to updating its Nexus platform for discovering vulnerabilities in software supply chains. Muse analyzes code each time a pull request is made, which makes it...

DevSecOps Trends to Know For 2021

Content By Devops .com For DevSecOps leaders, 2021 will be the year of the open source supply chain attack. It’s already starting, in fact. On January 7, security researchers at Sonatype identified three malicious Java components in the Maven Central repository. The components had identical...