RL
Uploaded byRavi Lachhman
162 views

CloudBees and Sonatype - MeetUp

The document discusses the importance of managing open source components in software development, emphasizing that 80% to 90% of modern applications consist of these parts. It highlights the need for automated governance to ensure the integrity of these components throughout the software supply chain. The integration of tools like Sonatype Nexus Lifecycle is presented as a solution for reducing vulnerabilities, security breaches, and technical debt.

Embed presentation

Download to read offline
Open Source Management at the Speed of CI/CD CloudBees + Sonatype – Reston, VA, Jan 2017 Dan Pacious – Director of Sales, Mid Atlantic Ravi Lachhman – Sales Engineer
Utilizing billions of parts from open source communities... 80% to 90% of modern apps consist of assembled components.
Unfortunately, not all parts are equal... Some are healthy, some are not… …and all go bad over time (like milk, not like wine).
The Software Factory Introduction to your Software Supply Chain
The Software Factory
A Busy Butler
I Wish My Butler Did This…
Automated OSS Governance Yes, your Butler can do that!
DevOps-native teams automate and manufacture software from gold standard parts…
BUILDMANAGE RUNCONSUME Integrated with Your Favorite Tools
Sonatype Nexus Lifecycle • Avoid defective, outdated components across SDLC • Discover & remediate vulnerabilities faster • Reduce security breaches, license risk, and technical debt • Continuous component intelligence • Native Jenkins Plug-in
Thanks! For a copy of the presentation or additional perspective please visit: www.sonatype.com
CloudBees and Sonatype - MeetUp

More Related Content

PPTX
Continuous Delivery 9th Bit
byObsidianSystems
 
PDF
DevOps Indonesia #14 - Monitoring Principles
byDevOps Indonesia
 
PDF
DevOps Indonesia #14 - Building monitoring framework on container infrastructure
byDevOps Indonesia
 
PDF
How NetSuite Moves Financial Management of the Business From Tactical to Stra...
byNet at Work
 
PDF
Automating OWASP Tests in your CI/CD
byrkadayam
 
PPTX
5 Effective M365 IT Pro Habits
byAllison Schoner
 
PPTX
Seven habits of effective devops - DevOps Day - 02/02/2017
byClara Feuillet
 
PDF
It transformation - DevOps Day - 02/02/2017
byClara Feuillet
 
Continuous Delivery 9th Bit
byObsidianSystems
 
DevOps Indonesia #14 - Monitoring Principles
byDevOps Indonesia
 
DevOps Indonesia #14 - Building monitoring framework on container infrastructure
byDevOps Indonesia
 
How NetSuite Moves Financial Management of the Business From Tactical to Stra...
byNet at Work
 
Automating OWASP Tests in your CI/CD
byrkadayam
 
5 Effective M365 IT Pro Habits
byAllison Schoner
 
Seven habits of effective devops - DevOps Day - 02/02/2017
byClara Feuillet
 
It transformation - DevOps Day - 02/02/2017
byClara Feuillet
 

What's hot

PDF
Monitoring at the Speed of DevOps
byDevOps.com
 
PPTX
Succeeding-Marriage-Cybersecurity-DevOps final
byrkadayam
 
PPTX
Appsec Agility: A Brief Tour
byRobert Keefer
 
PPTX
Introducing Puppet Remediate™
byPuppet
 
PDF
Cast highlight - DevOps Day - 02/02/2017
byClara Feuillet
 
PPTX
Very first introduction to DevOps
byHien Nguyen
 
PDF
Strengthen and Scale Security Using DevSecOps - OWASP Indonesia
byMohammed A. Imran
 
PPTX
Empowering Automation for Everyone 05/29/2019
byPuppet
 
PPTX
The Unlikely Couple, DevOps and Security. Can it work?
byTodd Benson (I.T. SPECIALIST and I.T. SECURITY)
 
PPTX
Implementing an Application Security Pipeline in Jenkins
bySuman Sourav
 
PPTX
Puppet + Diaxon: Getting to the next stage of DevOps evolution
byPuppet
 
PDF
Strengthen and Scale Security for a dollar or less
byMohammed A. Imran
 
PPT
C2B2
bySteveMillidge
 
PPTX
Safely Removing the Last Roadblock to Continuous Delivery
bySeniorStoryteller
 
PDF
Team MESA - Make Elderly Safe Again
byJames Neo
 
PDF
DevOps Best Practices and Implementation Roadmap
byJason Montgomery
 
PPTX
Puppet Channel Sales Training Webinar: Puppet Sales Messaging
byPuppet
 
PPTX
DevSecOps Indonesia : Pain & Pleasure of doing AppSec in DevOps
bySuman Sourav
 
PPTX
Cyber security - It starts with the embedded system
byRogue Wave Software
 
PDF
Agile Australia 2017 Hypothesis-Driven COTS Software Selection Tiago Griffo
byTiago Griffo
 
Monitoring at the Speed of DevOps
byDevOps.com
 
Succeeding-Marriage-Cybersecurity-DevOps final
byrkadayam
 
Appsec Agility: A Brief Tour
byRobert Keefer
 
Introducing Puppet Remediate™
byPuppet
 
Cast highlight - DevOps Day - 02/02/2017
byClara Feuillet
 
Very first introduction to DevOps
byHien Nguyen
 
Strengthen and Scale Security Using DevSecOps - OWASP Indonesia
byMohammed A. Imran
 
Empowering Automation for Everyone 05/29/2019
byPuppet
 
The Unlikely Couple, DevOps and Security. Can it work?
byTodd Benson (I.T. SPECIALIST and I.T. SECURITY)
 
Implementing an Application Security Pipeline in Jenkins
bySuman Sourav
 
Puppet + Diaxon: Getting to the next stage of DevOps evolution
byPuppet
 
Strengthen and Scale Security for a dollar or less
byMohammed A. Imran
 
C2B2
bySteveMillidge
 
Safely Removing the Last Roadblock to Continuous Delivery
bySeniorStoryteller
 
Team MESA - Make Elderly Safe Again
byJames Neo
 
DevOps Best Practices and Implementation Roadmap
byJason Montgomery
 
Puppet Channel Sales Training Webinar: Puppet Sales Messaging
byPuppet
 
DevSecOps Indonesia : Pain & Pleasure of doing AppSec in DevOps
bySuman Sourav
 
Cyber security - It starts with the embedded system
byRogue Wave Software
 
Agile Australia 2017 Hypothesis-Driven COTS Software Selection Tiago Griffo
byTiago Griffo
 

Viewers also liked

PPTX
DevOps and Continuous Delivery Reference Architectures (including Nexus and o...
bySonatype
 
PDF
2016 - IGNITE - Real Heroes Draw Pictures
bydevopsdaysaustin
 
PDF
Integrating DevOps and Security
byStijn Muylle
 
PPTX
Starting and Scaling DevOps In the Enterprise
bySonatype
 
PDF
الگوریتم ژنتیک
bysaeedeh ezzati
 
PPT
Inspirational Immortal Legend Of The Contemporary World
byNeelakshwar Dey
 
PDF
Thần tốc luyện đề thptqg môn sinh full
byMây Bay
 
PPTX
El narcotrafico
byFrancisco Tello Sarmiento
 
PDF
Jennifer Whyte ARVR Innovate Conference & Expo 2016
byARVRInnovate
 
PPTX
Plan de negocios
byEduardo Romero Flores
 
PPTX
Perdida en los libros 7uu7
bybelen7u7
 
PDF
Obada Alsaqqa - FTDM - Masters Thesis - OSU 04.23.2015 - Upload
byObada Alsaqqa
 
PDF
History Booklet FINAL
byCasey Yuen
 
DOCX
LA EDUCACION SUPERIOR Y LOS PROYECTOS DE INVESTIGACION Y DESARROLLO TECNOLOGICO
bywendy1105
 
DOC
Deepak Mysore Nagaraj (1)
by.Deepak Gowda
 
PPT
Pablo escobar-paula
byPaula Toledo Caguana
 
PPTX
Trbajo de alejito777
byAlejandro Caro
 
DOCX
Ali Agha
byAli Agha
 
DevOps and Continuous Delivery Reference Architectures (including Nexus and o...
bySonatype
 
2016 - IGNITE - Real Heroes Draw Pictures
bydevopsdaysaustin
 
Integrating DevOps and Security
byStijn Muylle
 
Starting and Scaling DevOps In the Enterprise
bySonatype
 
الگوریتم ژنتیک
bysaeedeh ezzati
 
Inspirational Immortal Legend Of The Contemporary World
byNeelakshwar Dey
 
Thần tốc luyện đề thptqg môn sinh full
byMây Bay
 
El narcotrafico
byFrancisco Tello Sarmiento
 
Jennifer Whyte ARVR Innovate Conference & Expo 2016
byARVRInnovate
 
Plan de negocios
byEduardo Romero Flores
 
Perdida en los libros 7uu7
bybelen7u7
 
Obada Alsaqqa - FTDM - Masters Thesis - OSU 04.23.2015 - Upload
byObada Alsaqqa
 
History Booklet FINAL
byCasey Yuen
 
LA EDUCACION SUPERIOR Y LOS PROYECTOS DE INVESTIGACION Y DESARROLLO TECNOLOGICO
bywendy1105
 
Deepak Mysore Nagaraj (1)
by.Deepak Gowda
 
Pablo escobar-paula
byPaula Toledo Caguana
 
Trbajo de alejito777
byAlejandro Caro
 
Ali Agha
byAli Agha
 

Similar to CloudBees and Sonatype - MeetUp

PPTX
Accelerating innovation with software supply chain management
bymatthewabq
 
PPTX
Accelerating Innovation with Software Supply Chain Management
bySonatype
 
PDF
Software supply chain management: Gaining velocity without losing control
bymatthewabq
 
PDF
Hidden Speed Bumps on the Road to "Continuous"
bySonatype
 
PPTX
Webinar: "Sicurezza e qualità del software: un viaggio attraverso vulnerabili...
byEmerasoft, solutions to collaborate
 
PPTX
Open DevSecOps 2019 - Securing the Software Supply Chain - Sonatype
byEmerasoft, solutions to collaborate
 
PPTX
Findings Revealed: 2015 State of the Software Supply Chain
bySonatype
 
PPTX
Cloud bees and forester open source is not enough
byJules Pierre-Louis
 
PDF
White Paper: Software Supply Chain Automation: Going Beyond Agile, Lean and D...
bySonatype
 
PPTX
The Illusion of Control: Seven Deadly Wastes in Your Devops Practice
bymatthewabq
 
PDF
DOES16 London - Better Faster Cheaper .. How?
byJohn Willis
 
PDF
JUC Europe 2015: Making Strides towards Enterprise-Scale DevOps...with Jenkin...
byCloudBees
 
PPTX
CSC AWS re:Invent Enterprise DevOps session
byTom Laszewski
 
PDF
2012 Future of Cloud Computing
byMichael Skok
 
PDF
PDT 94 - $15m - Series A - Cloudsmith.pdf
byHajeJanKamps
 
PDF
Optimize your CI/CD with GitLab and AWS
byDevOps.com
 
PPTX
Software Development: Trends and Perspectives
bySoftheme
 
PPTX
Storage architectures and the cloud
byShapeBlue
 
PPTX
Leveraging Nexus Repository Manager at the Heart of DevOps
bySeniorStoryteller
 
PDF
[India Merge World Tour] Electric Cloud
byPerforce
 
Accelerating innovation with software supply chain management
bymatthewabq
 
Accelerating Innovation with Software Supply Chain Management
bySonatype
 
Software supply chain management: Gaining velocity without losing control
bymatthewabq
 
Hidden Speed Bumps on the Road to "Continuous"
bySonatype
 
Webinar: "Sicurezza e qualità del software: un viaggio attraverso vulnerabili...
byEmerasoft, solutions to collaborate
 
Open DevSecOps 2019 - Securing the Software Supply Chain - Sonatype
byEmerasoft, solutions to collaborate
 
Findings Revealed: 2015 State of the Software Supply Chain
bySonatype
 
Cloud bees and forester open source is not enough
byJules Pierre-Louis
 
White Paper: Software Supply Chain Automation: Going Beyond Agile, Lean and D...
bySonatype
 
The Illusion of Control: Seven Deadly Wastes in Your Devops Practice
bymatthewabq
 
DOES16 London - Better Faster Cheaper .. How?
byJohn Willis
 
JUC Europe 2015: Making Strides towards Enterprise-Scale DevOps...with Jenkin...
byCloudBees
 
CSC AWS re:Invent Enterprise DevOps session
byTom Laszewski
 
2012 Future of Cloud Computing
byMichael Skok
 
PDT 94 - $15m - Series A - Cloudsmith.pdf
byHajeJanKamps
 
Optimize your CI/CD with GitLab and AWS
byDevOps.com
 
Software Development: Trends and Perspectives
bySoftheme
 
Storage architectures and the cloud
byShapeBlue
 
Leveraging Nexus Repository Manager at the Heart of DevOps
bySeniorStoryteller
 
[India Merge World Tour] Electric Cloud
byPerforce
 

More from Ravi Lachhman

PPTX
DevOps Days ATL 2022 - Ravi Lachhman
byRavi Lachhman
 
PPTX
DevOps vs SRE - CI/CD Pipelines Bridging the Gap
byRavi Lachhman
 
PPTX
What Can We Learn about KBBQ and Kubernetes
byRavi Lachhman
 
PDF
Machine Learning for Continuous Delivery
byRavi Lachhman
 
PPTX
Doughnut Dilemma - SRECon
byRavi Lachhman
 
PPTX
AWS re:Invent - AIOps - What do you say you do here
byRavi Lachhman
 
PPTX
CloudNativeCon Stability in an Unstable World
byRavi Lachhman
 
PPTX
Caribbean Developers Conference - 201K8s
byRavi Lachhman
 
PDF
Twelve Factor App vs Twelve Layer Burrito
byRavi Lachhman
 
PPTX
Js Conf 2018 - Confessions of a JEE Addict
byRavi Lachhman
 
PDF
Someone Call the Operator - ATL K8's Meetup
byRavi Lachhman
 
PDF
Sonatype Software Supply Chain 2017 - JAVA Users Group
byRavi Lachhman
 
DevOps Days ATL 2022 - Ravi Lachhman
byRavi Lachhman
 
DevOps vs SRE - CI/CD Pipelines Bridging the Gap
byRavi Lachhman
 
What Can We Learn about KBBQ and Kubernetes
byRavi Lachhman
 
Machine Learning for Continuous Delivery
byRavi Lachhman
 
Doughnut Dilemma - SRECon
byRavi Lachhman
 
AWS re:Invent - AIOps - What do you say you do here
byRavi Lachhman
 
CloudNativeCon Stability in an Unstable World
byRavi Lachhman
 
Caribbean Developers Conference - 201K8s
byRavi Lachhman
 
Twelve Factor App vs Twelve Layer Burrito
byRavi Lachhman
 
Js Conf 2018 - Confessions of a JEE Addict
byRavi Lachhman
 
Someone Call the Operator - ATL K8's Meetup
byRavi Lachhman
 
Sonatype Software Supply Chain 2017 - JAVA Users Group
byRavi Lachhman
 

Recently uploaded

PPTX
Do You Control the AI, or Does the AI Control You?
bymedhateltoukhy
 
PDF
Preserve workload integrity during cross-architecture migration
byPrincipled Technologies
 
PDF
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
PDF
Spec-Driven Development with Kiro: Elevating Software Quality, Traceability, ...
byHaim Michael
 
PDF
Digital Twin in IBM for Accelerated Discovery of Climate & Sustainability, K...
byMichiaki Tatsubori
 
PDF
Escape from the Forbidden Zone: Smuggling green and inclusive tech past the g...
byBookNet Canada
 
PDF
final.pdf
byomarbishtawi04
 
PDF
From Hallucinations to High-Confidence AI with Data Enrichment.pdf
byPrecisely
 
PDF
Oracle Cloud Infrastructure 2025 Architect Professional (1Z0-1127-25) Master ...
byExamCert App
 
PDF
Agent to agent service discovery using HashiCorp Consul and Vault
byBram Vogelaar
 
PPTX
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
PDF
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
PDF
GDG Cloud Southlake #49: Pradeep R Kumar: Implications of Agentic AI for Iden...
byJames Anderson
 
PDF
How AI Can Help Platform Engineers Build Better Platforms
byAll Things Open
 
PDF
Empower your IT team with cloud-based PC management using Dell Management Por...
byPrincipled Technologies
 
PPTX
The Transformative Technology in Contemporary Businesses
bygreyaudrina
 
PDF
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
PPTX
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
PPTX
Celonis Optimizing your future with process
bydevjeremyappleyard
 
Do You Control the AI, or Does the AI Control You?
bymedhateltoukhy
 
Preserve workload integrity during cross-architecture migration
byPrincipled Technologies
 
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
Spec-Driven Development with Kiro: Elevating Software Quality, Traceability, ...
byHaim Michael
 
Digital Twin in IBM for Accelerated Discovery of Climate & Sustainability, K...
byMichiaki Tatsubori
 
Escape from the Forbidden Zone: Smuggling green and inclusive tech past the g...
byBookNet Canada
 
final.pdf
byomarbishtawi04
 
From Hallucinations to High-Confidence AI with Data Enrichment.pdf
byPrecisely
 
Oracle Cloud Infrastructure 2025 Architect Professional (1Z0-1127-25) Master ...
byExamCert App
 
Agent to agent service discovery using HashiCorp Consul and Vault
byBram Vogelaar
 
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
GDG Cloud Southlake #49: Pradeep R Kumar: Implications of Agentic AI for Iden...
byJames Anderson
 
How AI Can Help Platform Engineers Build Better Platforms
byAll Things Open
 
Empower your IT team with cloud-based PC management using Dell Management Por...
byPrincipled Technologies
 
The Transformative Technology in Contemporary Businesses
bygreyaudrina
 
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
Celonis Optimizing your future with process
bydevjeremyappleyard
 

CloudBees and Sonatype - MeetUp