01:51

Lifecycle Demo Video

16:28

UPDATE: XZ library attack

02:29

SBOM 101: What is an SBOM?

03:23

SBOM Manager: Everything you need to know with Stephen Magill, VP of Product Innovation at Sonatype

00:55

Why SBOM Manager? Control and share the software you consume.

06:41

Quick Wins with the IDE Plugins

19:06

Dissecting Two Emerging Threats: Ledger Breach & Struts2 Vulnerability

04:25

Sonatype Nexus Repository Pro

15:08

A First Look: 9th Annual State of the Software Supply Chain Report

00:46

9th Annual State of the Software Supply Chain Report

03:10

Sonatype Platform Browser Extension

08:22

Best Practices: Repository Firewall Waivers

03:44

Data Insights

01:08

How It Works: Sonatype Lifecycle

18:44

Live from Infosecurity Europe 2023: Sonatype Repository Firewall Now Available as a SaaS Solution

01:11

How It Works: Sonatype Repository Firewall

06:48

Dev Chat with Dan Conn: SBOMs Unwrapped - A Guide to Getting Started

13:50

Dev Chat with Dan Conn: Beware of Malware

31:39

A Live Discussion: White House National Cyber Security Strategy

00:16

Run Anywhere with Sonatype

02:33

Meet Richard Panman: Sonatype Values Champion

01:43

Meet Ankita Lamba: Sonatype Values Champion

13:43

A Deep Dive Into OpenSSL's Two Serious Vulnerabilities

15:13

Live from #DOES22 - The 8th Annual State of the Software Supply Chain Report

00:22

Software Supply Chain Management is How We Innovate

00:22

Software Supply Chain Management is Everyone's Job

00:22

Software Supply Chain Management is Intelligent Automation

01:16

Software Supply Chain Management is Sonatype

05:10

This Week in Malware: VMWare, Secrets, and Security by Obscurity

02:51

This week in malware—a 'fix-crash' info-stealer and 500+ malicious npm packages

15:40

Wicked Good Development: What is Spring4Shell? And Why Should I Care

08:50

New Spring Framework RCE Vulnerability Confirmed (Springshell) - What You Need to Know

21:05

Meet an Open Source Project Maintainer - Q&A

21:50

Make Your First Github Repository with Women at Sonatype!

27:58

Critical Log4j Vulnerability Still Being Downloaded 40% of the Time

21:50

Dissecting the Log4j Vulnerability

13:26

Critical New 0-day Vulnerability in Popular Log4j Library Affecting Applications in Mass

00:27

Sonatype & Climb CISO Europe

07:18

Sonatype at Grace Hopper Celebration

04:13

08 - Getting Help - Easy Publishing to Central Repository

04:44

07 - Javadoc, Sources and Signing - Easy Publishing to Central Repository

03:52

06 - Project Object Model (POM) - Easy Publishing to Central Repository

05:59

05 - First Deployments - Easy Publishing to Central Repository

04:12

04 - Accessing OSS-RH - Easy Publishing to Central Repository

08:52

03 - Requirements and Signing Tips for OSS-RH - Easy Publishing to Central Repository

05:25

02 - Applying for Access to OSS-RH - Easy Publishing to Central Repository

06:21

01 - Claim Your Namespace - Easy Publishing to Central Repository

07:15

Module 16: A Practical Example with OSSRH and the Central Repository (OSS)

20:03

Rise of the Next Gen Software Supply Chain, A Fireside Chat

01:21

Full Spectrum Software Supply Chain Automation

03:48

Biden Executive Order on Cybersecurity Calls for Enhanced Software Supply Chain Security

06:16

Breaking Down 3 Major Open Source Security Incidents This Week

03:17

What You Need to Know about the Codecov Software Supply Chain Attack

07:49

Meet the Developers Behind Sonatype's Release Integrity

01:49

Sonatype Acquires MuseDev

45:34

Securing Software Supply Chains

03:59

Dependency Hijacking Software Supply Chain Attack Hits More Than 35 Organizations

05:41

Mystery Solved: Sonatype Makes Developers' Lives Easier

04:09

SolarWinds Update - New Software Supply Chain Attack Vector Identified

05:24

Tracking the SolarWinds Software Supply Chain Attack