As a customer of Sonatype’s Nexus platform, you may have heard references to software supply chain automation. Perhaps you know exactly what that means—maybe it’s even the reason you’ve decided … Read more NOW “Software Supply Chain – Explained”
Have you heard the term before? If not, you’re not alone. The basic premise behind DevSecOps may even go by different names, depending on who’s doing the talking (Rugged DevOps, … Read more NOW “Shifting Left – What’s in A Word?”
Software Composition Analysis (SCA) is the process of determining the specific open source software components that make up an application and the risks associated with those components.
In short, SCA … Read more NOW “Introduction to Software Composition Analysis”