[Napc-2018] [NEW FEATURE] InnerSource You Can See and Save
Sonatype Team
events at sonatype.com
Thu May 12 16:13:55 UTC 2022
New features to Nexus Lifecycle and Repository make managing InnerSource easier than ever before.
A New Way to Protect Shared Internal Components
Components developed and shared solely within an organization make development easy for engineering teams, but there are challenges in keeping them safe.
Because “InnerSource (https://www.sonatype.com/e3t/Ctc/Q+113/cdrCy04/VWc28s3wCj_kW7JlFSh5fW8cdW3Bmyl94J-Z0rN4Tr4Nh3pdrrV1-WJV7CgSg5W8LP9sN90Q52bW7y2hJ37mVdS0W6dSc4M91P6DzW2JYyyr3vFmTCW175vNc6YnnYDW36FYkz6h_8pCN39TVBShfJsGW95y_0L79TJYNW5XJNFV8mZ8xBW4vkHC-8gHdxnV75LcK86HDMpW6Q2Xr14f2cpZW6fWhZG5LHtknW1MKdS75xJMtwW20mrhF1_3xgQW4P4TCd5X3gs2VyjsTV3GjmykW6x6w3T74Sdk_N7XKQl8JFNKwW7Vxm4v18mC5GW5YXtFC48hcpLW3C0Brf754pz3W2zxbc14c_Lp9W43Tv258_2mPJ381-1 ) ” components often contain open source dependencies, malicious and vulnerable open source components can slip through the cracks, but not anymore.
Sonatype is excited to announce the newest layer of internal protection added to our Nexus platform.
Identify and Remediate with InnerSource Insights
With Lifecycle’s new InnerSource Insight, developers can easily identify vulnerable or malicious dependencies in their InnerSource components, and easily identify safe upgrade paths that won’t break builds.
Tell me more about these updates (https://www.sonatype.com/e3t/Ctc/Q+113/cdrCy04/VWc28s3wCj_kW7JlFSh5fW8cdW3Bmyl94J-Z0rN4Tr4M_3pdr7V1-WJV7CgDRWN1ymZFWSnFjBW7yMVR424ClNlV-ZnrB8y-7g0W8YBPHm2R8-YFW44by6M5VNlWkW2kJtVQ8V2PxWW2Mfbp625zkq3W84n34y951qt4W1LNS_j121vSzW6MLBgK6k28xqW8NcrbZ5HDm7QVzr_Lv5Q7897W8XHtp53fYtx7W7gv7XP8LLQPyW6QD-Lk5934TGW4YFH066HfHHbN2Sw_8LYV5TVW3JGbCP5J5Mz6W7D3pYd750jd6W7tL_3w3WcrDRW59Q8Yd7tHN_XW1xQ0Ws8B0RP33d-H1 )
Learn more about InnerSource components and how Sonatype helps you identify and remediate them within your organization, another industry-first capability from the pioneers of software supply chain management.
Show me the InnerSource Insights e-learning course (https://www.sonatype.com/e3t/Ctc/Q+113/cdrCy04/VWc28s3wCj_kW7JlFSh5fW8cdW3Bmyl94J-Z0rN4Tr4NV3pds1V1-WJV7Cg_5FW7y6F-T4FL74XW2btCDP11XHcvW4GHjX75l6gtVN4ZdK6ghRslsW74n9CW99WyWwW1pLtFR2F-DRFW5wbYrP7fvJ_TW723R6Z42KsBFN6w5lkxsmZbFW6gHLJH6ntpn2W2zJJ8J8p24kQN3-XrCpS7jk-W4nH1rh16RdK1W2k0Q0f5fPzQrW2G-dXd9bbBT4KGyglJtqMN6mZNCHtF3JlW1QZY4c8V1thZW1W3Skq80468lW1CRXTs45KzxxW707f198h2mrtW1Cy0Zm1G1Y4gW5HFq_q5vWDTLW7hT7qY8Q2m8vW24sYrP150wVwW8kdrfY3_zttDW8f_Bx18JK0byW885DvG1wvjg_3jsq1 )
Easily Monitor and Remediate Log4j Within Your Organization
Even though Log4j has fallen from the headlines, 35% of downloads (https://www.sonatype.com/e3t/Ctc/Q+113/cdrCy04/VWc28s3wCj_kW7JlFSh5fW8cdW3Bmyl94J-Z0rN4Tr4NV3pds1V1-WJV7CgXj-W7nstq210VS4YW5_5ghL4PHGW7W5gCvGf3kmTtvW54bY6v4tjYhFW6V6JVT7nMXJ9W4NF3Rg8z_YhJVsRjWF1WP54tW6xRCDM7SxYl_W59HSx942FQpLW4bRkGl7QCnJyW8yyBlf8fc99vW4MxXKm5XBs2PW5J8Sz85_NGb7W4yVJvb6LvJm4N4z6_j0C-vqSW5wPVJx7BnSWMW1wpWH77snRtGW8sSm4132-QKkW4R8Lvj6ZsjGQW49fNCq1-cCPfW2Wqwbm2sLy-NW51_L-Y47PPQJW3GRYVd8krndTW70BYll6myJ7_W4GqQdm8y13nfW1xnvv74p47PVW62PR278lZZscW5nw1CS91ZF-M3p4S1 ) from Maven central are still vulnerable.
To address this continuing threat, we've increased the visibility of direct and transitive dependencies of Log4j in Nexus Repository.
LOG4J VISUALIZER (https://www.sonatype.com/e3t/Ctc/Q+113/cdrCy04/VWc28s3wCj_kW7JlFSh5fW8cdW3Bmyl94J-Z0rN4Tr4P93pdskV1-WJV7CgJPNW7XMGVS6nH7NnW44sys28BSbF_W6D7hyV4k-ghjW81kV5M9bW_kwW7ZRZ0N7YgkFdW7C8hll2FxZglW6wc-Yw4_hj-XVCNlh_24_c9NW5RVlTR31x13RW6B69R11j708-W20SfBQ6BVYVXN1345_7XgchRW5Wzzvj925W58W4HXtjj4WpB30W3tvdXp6pJtqgW2fhrvM99sc0sW1dWtfQ2WBwB5W1X-M681N76MSN2K4gSRQVlbDVc1Tdh4g8tkHW3hLQK57xC-pPW7cVFFH31Vz5VW6v6zsj23pw5PW55YfzR1n1l-CN1RrBqmlNf2YVY-y894VqJDRVnKpRc2dFCyFW5Z2DGD5kvSMWW2HcG1k6k7wpdW5mDL1t6DShFF3kkW1 )
Discover All Available Versions of Your InnerSource Components
Eliminate the challenge of tracking down unknown InnerSource components with Lifecycle's new Version Explorer.
This new view works with Nexus Repository to provide an easy-to-understand graphic visualization of all the available InnerSource versions.
Get the visibility you need to easily find and reduce the remediation time of your InnerSource components.
sonatype (https://www.sonatype.com/e3t/Ctc/Q+113/cdrCy04/VWc28s3wCj_kW7JlFSh5fW8cdW3Bmyl94J-Z0rN4Tr4Nh3pdrrV1-WJV7CgBjyW50-5fm6MHZw6W3Snh5L2g2XgmW1_bPNH7z7HfwN230_wwX0F9hW7Mmn3619QttDW4nHwzt1Cy1H_N7HXnN78fznLW43BfMR2PcF9KW1FLkxk5xXmCWW24Wjh999_Zv0W3jsw6s5ncp-kW6lbn6B5kRKh7W6MB1Jp9fB3gmW3PbLf86kPKxwW2SZMqh9d4JGjW2SHCLL6bX9S6W8B8CJ77DNGTkN8DDj3BDdyD3W3lDFDx4tpC65W43wzl-5Bdc31W5ZMrY23JCxfyW59Dg8D5k006ZW4yxKCy3x70PQW76zfKH8CWTHP3fbL1 )
tw (https://www.sonatype.com/e3t/Ctc/Q+113/cdrCy04/VWc28s3wCj_kW7JlFSh5fW8cdW3Bmyl94J-Z0rN4Tr4M_3pdr7V1-WJV7CgGPmW72rQnn5nWwgPW5ssH651Q-7blW3yFZGd7ftsD4W1sdxVK7hgLR2W8JWBFR6V5sJfW8_ypjc2Z-TXpN1x0YgTZLKhDN91ks8qG-_qnW45yZhl3d4vBSW67ZgwL6JDys0N6pzbtg5H6GXW6gvF4D2N6f9YW3JFgVY9k3khrW93T3rm87w6FdW29wrz11V4fgvW8JwvXc4yNd3LW77zQP81C_ZDFVDR-ld2twBqDVwjKDK6mH1pdMsMZqGG4mtFW4vkK4h1rWWHLW21ZLXg8TnG5J3g5G1 )
fb (https://www.sonatype.com/e3t/Ctc/Q+113/cdrCy04/VWc28s3wCj_kW7JlFSh5fW8cdW3Bmyl94J-Z0rN4Tr4M_3pdr7V1-WJV7CgGSpW8Zrb_Z2cr6m7W3Lj3hJ8hRpP6W3dKHWW2ScGH-W4hVh7N2VYDWDMTvzn_9xzdFW4DPBcq26JRspW3lgWLx1WYWc8W8rJvdp2_4hPLW5QV_fH96cKcjW7ysBz96dgxS_W37X4Kk71FvXYW1MXhjz84ZJvbW6xN1g120CLXKW7RGB-Q54nTyyW4l8q0s2FtVbDW4z4gQp11lMxQVdK8gV3QJRHsW1XWp7x5S5KrxW3LZDmw8lYJ13W6BZWGS8Qw8TFV55S_83_9xjxW5vn8Yf33xz5J37f91 )
in (https://www.sonatype.com/e3t/Ctc/Q+113/cdrCy04/VWc28s3wCj_kW7JlFSh5fW8cdW3Bmyl94J-Z0rN4Tr4Nh3pdrrV1-WJV7CgVNxW5PGghk2MY9nBW3ZjKQ_8JFyC-F1DySVn8s3yW5J5Q8S7pKg3nW5ZwF_47DzxZbW5NjLYY4ZKl3jVYdnVf6lgjR1W79ymC53PJ2G2N4rqcdN7RWqvW8B3Rf431QqptW7nYFb-2jxmpXW4TSGSs4qt7PxW8PBs4t1ZGmhgN1kDrBFpPWlmW14lk121xqZYsW8s_y045pHnv7W3pPpCJ46_NsMW2y4vPT5pXMVMW8VH3hY22D-gnW9bZfmT41Ps1lMJQDsX4wXx8W5-pHWF7l9WgpW7f5tKC8WJhl8W91_qwm3LmBXd3d8L1 )
insta (https://www.sonatype.com/e3t/Ctc/Q+113/cdrCy04/VWc28s3wCj_kW7JlFSh5fW8cdW3Bmyl94J-Z0rN4Tr4Nh3pdrrV1-WJV7CgZybW39GZnz5SBW1KW37bMD53Q5z30W5Td_nl7C9b33W6L84PG5ShkNNW1z3vHF3995F4W5YQzsx1M8ZjNW3lyT-Y27tf5YV6rGmT6nBvn7N2df9tlJ-kvwN3v1RRDWHjvhW6kj8bX1tXQDbW3jj5lG6Ybw5YW2rb5mt92m4pfW26VGGw152k6CW7gSjXC485BfLW2Yn3lK80G9zkN85yzrcCf4B8W23p2sQ23JMJSN30D2fsZrK_sW6Cybsd5LBwW-W6Yvt-78DkpSlVbqBj542WWvKW21dPW_7b-zqhW8Y9xMx5_8l643nFT1 )
Sonatype Inc. | 8161 Maple Lawn Blvd #250 Fulton, MD 20759, United States
You received this email because you are subscribed to Sonatype Resource Emails from Sonatype Inc.
Manage Email Preferences (https://www.sonatype.com/hs/manage-preferences/unsubscribe?languagePreference=en&d=Vnchfr77H5dMW41PGhf1G9tDhW22_qC_3H64g0N1JxwY5WH5ZFN1fk4d_kxPGMW5g678D77MdvnW7JBffm4LD6FCW41djxh5Z9-JPMGKd_P20N8wW4nG5Zp3NHh-NW6cgSNH85sgbj51ZQyF1&v=3&_hsenc=p2ANqtz-_NwMFCEeF-4v6FTcvneriP9RICHxTKImRliCLLSRbvCZpbYQNCf942NILmgEke-fHSJ1gPcc_rAC7mPMDKQmrT1twAKw&_hsmi=212935151 ) | Unsubscribe (https://www.sonatype.com/hs/manage-preferences/unsubscribe-all?languagePreference=en&d=Vnchfr77H5dMW41PGhf1G9tDhW22_qC_3H64g0N1JxwY5WH5ZFN1fk4d_kxPGMW5g678D77MdvnW7JBffm4LD6FCW41djxh5Z9-JPMGKd_P20N8wW4nG5Zp3NHh-NW6cgSNH85sgbj51ZQyF1&v=3&_hsenc=p2ANqtz-_NwMFCEeF-4v6FTcvneriP9RICHxTKImRliCLLSRbvCZpbYQNCf942NILmgEke-fHSJ1gPcc_rAC7mPMDKQmrT1twAKw&_hsmi=212935151 )
Sonatype Inc.
8161 Maple Lawn Blvd #250
Fulton
MD
20759
United States
You received this email because you are subscribed to Sonatype Resource Emails from Sonatype Inc..
Update your email preferences (https://www.sonatype.com/hs/manage-preferences/unsubscribe?languagePreference=en&d=Vnchfr77H5dMW41PGhf1G9tDhW22_qC_3H64g0N1JxwY5WH5ZFN1fk4d_kxPGMW5g678D77MdvnW7JBffm4LD6FCW41djxh5Z9-JPMGKd_P20N8wW4nG5Zp3NHh-NW6cgSNH85sgbj51ZQyF1&v=3&_hsenc=p2ANqtz-_NwMFCEeF-4v6FTcvneriP9RICHxTKImRliCLLSRbvCZpbYQNCf942NILmgEke-fHSJ1gPcc_rAC7mPMDKQmrT1twAKw&_hsmi=212935151 ) to choose the types of emails you receive.
Unsubscribe from all future emails (https://www.sonatype.com/hs/manage-preferences/unsubscribe-all?languagePreference=en&d=Vnchfr77H5dMW41PGhf1G9tDhW22_qC_3H64g0N1JxwY5WH5ZFN1fk4d_kxPGMW5g678D77MdvnW7JBffm4LD6FCW41djxh5Z9-JPMGKd_P20N8wW4nG5Zp3NHh-NW6cgSNH85sgbj51ZQyF1&v=3&_hsenc=p2ANqtz-_NwMFCEeF-4v6FTcvneriP9RICHxTKImRliCLLSRbvCZpbYQNCf942NILmgEke-fHSJ1gPcc_rAC7mPMDKQmrT1twAKw&_hsmi=212935151 )
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/napc-2018/attachments/20220512/af50aa54/attachment-0001.htm>
More information about the Napc-2018
mailing list