Sonatype’s Maury Cupitt: Visibility, Automation Could Help Agencies Reduce Risks of Open Source Components

Maury Cupitt, regional vice president of sales engineering at Sonatype, said government agencies should understand the importance of visibility and automation in the detection and mitigation of risks associated with open source software components.

Cupitt wrote that agencies should adopt a platform that could enable them to ensure the security of their software supply chains through visibility and automation.

He cited Sonatype’s Nexus Repository Manager and discussed how it could help agencies assess open source components, identify malicious components, detect vulnerabilities and address issues by running analyses and having visibility into the software bill of materials.

“In addition, our Nexus Repository Manager can be air-gapped for agencies that want their developers to go through a central repository that is not connected to the internet,” Cupitt said.

He also mentioned Lifecycle and how the platform could help organizations evaluate open source components at every phase of the software development cycle.

Cupitt noted that Sonatype believes open source is the key to innovation in the government and shows its commitment to the open source community by maintaining the Maven Central Repository.

Sponsor

×

Stay ahead in GovCon

Join thousands of government contractors who rely on GovCon Wire for the latest updates in federal spending, bid opportunities, and compliance changes.

Whether you’re new to the space or scaling up, our brief keeps you informed and ready to act.

Email Address *

First Name *

Last Name

Position

Company

Related Articles

Raytheon Secures $213M Navy Contract Modification for Zumwalt Systems Support

Raytheon, a business unit of RTX, has received a $213.4 million contract modification from the U.S. Navy to continue work on…

ITC Federal Taps Mike Hall to Lead Proposal Strategy, Strengthen Growth Execution

ITC Federal has appointed Mike Hall as vice president of proposals, adding a seasoned federal growth and capture leader as…

Agile Defense Wins $118M USCIS RAPID Contract for Digital Modernization

Agile Defense has won a potential five-year, $118 million contract from the Department of Homeland Security’s Citizenship and Immigration Services…

Scale AI Boosts Defense Data Analytics With ICG Solutions Acquisition

Scale AI has acquired ICG Solutions, a defense technology firm that offers real-time streaming data analytics, in a move to deepen…

ServiceNow Closes Armis Acquisition Deal to Expand AI-Driven Cybersecurity Capabilities

ServiceNow has finalized its $7.75 billion acquisition of Armis, unifying cyber asset visibility, identity intelligence and automated risk response within…

Horace Blackman Named NTT DATA Federal Business Lead

“NTT DATA has appointed Horace Blackman, a federal IT executive, as head of its federal business. As federal agencies continue…

Intel Names Former Samsung Executive Shawn Han as SVP, Foundry Services GM

Intel has appointed semiconductor industry veteran Shawn Han as senior vice president and general manager of foundry services. Han will officially assume…

NorthStar to Go Public Through Viking SPAC Merger

Space-based intelligence firm NorthStar Earth & Space has agreed to merge with Viking Acquisition Corp. I, a special purpose acquisition…

Leidos Wins $456M GSA Military OneSource Contract, Replacing Cognosante

Leidos has secured a $456.3 million contract from the General Services Administration to support the Department of War’s Military OneSource…

Jim Travis Assumes New Responsibilities as Cypress International’s Air Force Programs VP

Cypress International has named Jim Travis, a retired Air Force colonel, as vice president of Air Force programs. The company…

Transportation Dept Unveils Plans for Potential $1.9B 1DOT Digital Services BPA

The Department of Transportation has announced plans to establish a potential $1.9 billion multiple-award blanket purchase agreement to support a…

NIWC Atlantic Issues $250M Solicitation for USCG Shipboard C5I Support

Naval Information Warfare Center Atlantic has issued a solicitation seeking contractor support for shipboard command, control, communications, computers, cyber and intelligence,…

You’ve already read all related articles.

Executive Interviews