Clik here to view.
Central Grows Up – See The History
A few months ago we announced that the US Maven Central server had been moved over to a virtual system. In the natural course of machine rotations, I had some out of warranty machines de-racked,...
View ArticleThe Central Repository Is Getting Faster! Are you ready for the new IPs?
We’ve made several improvements to the Central Repository (Maven Central) to support the incredible growth in both the number of components and the number of developers using it. If you use specific...
View ArticleJBoss Moves to Central
Sonatype is excited to announce that we’ve teamed up with Red Hat to add the popular JBoss Community project components to the Central Repository. Many JBoss projects, including JGroups, Javaassist,...
View ArticlePublishing Your Artifacts to the Central Repository
Sonatype makes it easy to add your projects to the Central Repository with a free, public hosting service called OSSRH. We first blogged about this back in 2009, but given the growth in the community,...
View ArticleWhat is Central?
“Central”, “Maven Central”, “The Central Repository”. You’ll here these terms a lot when discussing Java open source-based development. At Sonatype, we often take it for granted that everyone knows...
View ArticleClik here to view.
Scala Artifacts Now on Central
Two weeks ago, all Scala projects required a little bit of extra configuration to point to a custom repository for Scala artifacts hosted at scala-tools.org. Today, Scala artifacts are now available...
View ArticleClik here to view.
Technology Focus: What is Scala?
Two weeks ago we talked about how many of the projects hosted in Scala Tools are moving over to publish directly to Central. That process is ongoing. In this post, I want to start something new. At...
View ArticleClik here to view.
We Just Kicked Central Performance and Availability Up a Notch with Edgecast
Central is a critical resource for developers. If you develop Java applications and use Maven, Gradle, or Ivy, Central is what has made it easy for you to consume libraries using dependency...
View ArticleImproving Software Quality Using Component Lifecycle Management with Jenkins
A few weeks ago, a few of us joined the Jenkins community at the Jenkins User Conference 2012 in San Francisco. Our presentation “Improving Software Quality Using Component Lifecycle Management with...
View ArticleClik here to view.
Now Available: SSL Connectivity to Central
We know how components from the Central Repository have become critical to your development efforts. We also know that you need to trust those components. Part of that trust is knowing that hackers...
View ArticleHow Will you Manage the New Addition of A9 to the OWASP Top 10 List?
It’s fair to say we were excited back in May when the OWASP community proposed A9 “ Using Components with Known Vulnerabilities” as a top 10 open source security risk – so now it’s official, component...
View ArticleSonatype applauds GitHub’s approach to encourage OSS license selection
GitHub’s move to encourage developers to select an open source license for source code published to GitHub highlights the need for organizations to properly manage license concerns. The Central...
View ArticleClik here to view.
Sonatype Nexus Open Source Community Projects
Sonatype Nexus can easily be integrated with external systems due to the fact that all functionality is available via various REST API calls. On the other hand Nexus can be expanded by writing plugins...
View ArticleClik here to view.
PCI 3.0 – Secure Payment Requires Secure Components
Well there is nothing like an updated specification that drives action or interest in a topic. We’re seeing that with the introduction of PCI 3.0. While there are several key updates to the...
View ArticleClik here to view.
Taking Advantage of the New and Improved Nexus 2.7
One of the approaches to software that I strongly believe is in taking advantage of the latest product innovations in all new releases. I think it’s important to upgrade to the latest versions of build...
View ArticleClik here to view.
Component-Capable Release Management is Key to DevOps
Part 3 — Part 4 Component-Capable Release Management is Key to DevOps – Part 5 Up Next DevOps conversations are dominated by release management and production deployment. These are the primary...
View ArticleClik here to view.
What’s Happening in the Land of Open Source Components
It’s certainly a busy time for open source component usage. Many of you are familiar with research that we have done that shows the average application now consists of 90% open source components. And...
View ArticleClik here to view.
FinSvcs Working Group (FS-ISAC) Takes on Open Source Components
Applications are becoming the primary security threat vector. Since applications are constructed from 3rd party components, there continues to be a tremendous amount of industry effort and impetus...
View ArticleClik here to view.
Who Really Wrote Healthcare.gov?
Opening a Dialogue About Supply Chain Risk Management in a World Powered by Open Source Software. As Marc Andreessen famously observed, “software is eating the world”. The proliferation of software is,...
View ArticleClik here to view.
Another Security Breach … Just in time for the holidays.
It just wouldn’t be the holiday season without a report of another major security breach. This time Target is the victim and, true to form, the shame and blame game follows. At this point it shouldn’t...
View Article
