Course Summary Congratulations!You have completed this course. You are now able to: Address and mitigate risk so that you can ship quicklyDiscuss the concept of defining intent through policyIdentify what … Read more NOW “Course Summary”
Summary – Lesson 4 The approach towards architecting systems has changed the last several years and Lifecycle keeps evolving to support the new approaches and new techniques. You have completed Lesson 4. You are … Read more NOW “Summary – Lesson 4”
Running Scans Take a look at the Running Scans section of our Lifecycle Scanning technical guide and you will see for each language / ecosystem: The available package managersScan Target(s)How … Read more NOW “Running Scans”
Developer Perspective For something completely different, we offer you a macro level view where you can quickly identify which of your dependencies are direct and which are transitive (the dependencies of those … Read more NOW “Developer Perspective”
Summary – Lesson 3 Sonatype has successfully been able to offer views and perspectives from different teams into a holistic view across an organization visually available in the IQ server dashboard. In the examples … Read more NOW “Summary – Lesson 3”
Summary – Lesson 2 Now that we’ve walked through identifying vulnerabilities early and triggering warnings by integrating dependency management directly into your DevOps tooling, you should be able to see how developers are indeed … Read more NOW “Summary – Lesson 2”
Summary – Lesson 1 We walked you through a typical what it’s like in the day of the life of the developer scenario and pointed out how you can become the strongest link in … Read more NOW “Summary – Lesson 1”
What It’s Like (Day in the Life) Lesson 1 Overview What’s that saying about development software, Software’s Eating The World? It’s true. As developers, we’re in the middle of everything now. We’re responsible for: Working with … Read more NOW “What It’s Like (Day in the Life)”
Welcome The role of a software developer is ever-changing. Dependency management is evolving. And, you are tasked with writing code, security, and code quality. Managing all of this means that your … Read more NOW “Welcome”
Remediation Assistance Filtering the Component List If you have multiple projects loaded into your IDE and need to view a specific subset of results — the plugin has a Filter option that … Read more NOW “Remediation Assistance”
Summary – Lesson 3 You have completed Lesson 3. You are now able to: Using the Component Info tab to view vulnerabilitiesViewing policy detailsAnalyzing license types and risks Analyzing security risksTaking … Read more NOW “Summary – Lesson 3”
Evaluating a Project Assigning Your IDE Project and Triggering an Evaluation Once the IDE plugin has been successfully installed and configured the next step will be to associate your local IDE project with … Read more NOW “Evaluating a Project”
IDE Integration Getting Started Sonatype’s IDE Integrations provides you with direct access to Sonatype’s comprehensive component intelligence right within your IDE. It measures your components against your organization’s open source governance policy. … Read more NOW “IDE Integration”
Additional Tooling Sonatype provides many ways that you can add component intelligence to your development workflow that help you identify and select component information, recommended versions, and even migrate and remediate fixes, … Read more NOW “Additional Tooling”
Impact of Using Developer Tooling Providing Nexus Intelligence at Your Fingertips Nexus Intelligence powers the Nexus Platform with precise data to automate open source governance at scale across every phase of the SDLC. Modern software … Read more NOW “Impact of Using Developer Tooling”
What Does the IDE Integration Provide? Works Where You Work IDEs are powerful because they show code hints and code style guidelines, allowing you to fix code and triage if issues are identified. Similarly, a Nexus … Read more NOW “What Does the IDE Integration Provide?”
IDE Integrations and the Sonatype Platform Nexus Lifecycle — Part of the Complete Sonatype Platform Coverage The Nexus IQ Server acts as the brain for an organization implementing component lifecycle management. There, users will find a … Read more NOW “IDE Integrations and the Sonatype Platform”
Setting the Context Getting Started Sonatype prides itself on being an innovator in the Open Source space while adhering to the principles of DevSecOps while we design our products. At the core, DevSecOps … Read more NOW “Setting the Context”
Sonatype Supported IDEs Just to make sure we are all on the same page, we want to cover our bases and start from the beginning.We recognize the importance of coming to where … Read more NOW “Sonatype Supported IDEs”