Running Scans Take a look at the Running Scans section of our Lifecycle Scanning technical guide and you will see for each language / ecosystem: The available package managersScan Target(s)How … Read more NOW “Running Scans”
Developer Perspective For something completely different, we offer you a macro level view where you can quickly identify which of your dependencies are direct and which are transitive (the dependencies of those … Read more NOW “Developer Perspective”
What It’s Like (Day in the Life) Lesson 1 Overview What’s that saying about development software, Software’s Eating The World? It’s true. As developers, we’re in the middle of everything now. We’re responsible for: Working with … Read more NOW “What It’s Like (Day in the Life)”
Remediation Assistance Filtering the Component List If you have multiple projects loaded into your IDE and need to view a specific subset of results — the plugin has a Filter option that … Read more NOW “Remediation Assistance”
Summary – Lesson 3 You have completed Lesson 3. You are now able to: Using the Component Info tab to view vulnerabilitiesViewing policy detailsAnalyzing license types and risks Analyzing security risksTaking … Read more NOW “Summary – Lesson 3”
Evaluating a Project Assigning Your IDE Project and Triggering an Evaluation Once the IDE plugin has been successfully installed and configured the next step will be to associate your local IDE project with … Read more NOW “Evaluating a Project”
IDE Integration Getting Started Sonatype’s IDE Integrations provides you with direct access to Sonatype’s comprehensive component intelligence right within your IDE. It measures your components against your organization’s open source governance policy. … Read more NOW “IDE Integration”
Additional Tooling Sonatype provides many ways that you can add component intelligence to your development workflow that help you identify and select component information, recommended versions, and even migrate and remediate fixes, … Read more NOW “Additional Tooling”
Impact of Using Developer Tooling Providing Nexus Intelligence at Your Fingertips Nexus Intelligence powers the Nexus Platform with precise data to automate open source governance at scale across every phase of the SDLC. Modern software … Read more NOW “Impact of Using Developer Tooling”
What Does the IDE Integration Provide? Works Where You Work IDEs are powerful because they show code hints and code style guidelines, allowing you to fix code and triage if issues are identified. Similarly, a Nexus … Read more NOW “What Does the IDE Integration Provide?”