Featured
Posted by
Crista Perlton on September 24th, 2025.
This article is part of a series on Migrating from Sonatype to ProGet, also available as a chapter in our free downloadable eBook. SBOMs (Software Bill of Materials) are increasingly becoming a requirement for organizations across industries. Policies such as the U.S. Executive Order 14028 and frameworks like NIST’s Secure Software...
Featured
Posted byCrista Perlton on September 19th, 2025.
This article is part of a series on Migrating from Sonatype to ProGet, also available as a chapter in our free downloadable eBook. Sonatype’s Nexus Firewall takes an antivirus-style approach to open-source risk, quarantining packages that look unsafe. But this model simply doesn’t work for vulnerabilities or...
Featured
Posted byCrista Perlton on September 17th, 2025.
This article is part of a series on Migrating from Sonatype to ProGet, also available as a chapter in our free, downloadable eBook. Teams use Sonatype Lifecycle’s Software Composition Analysis (SCA) to find vulnerabilities, risky licenses, and high-risk packages in their applications. The downside is that Lifecycle runs as a completely...
Featured
Posted byCrista Perlton on September 16th, 2025.
The GitLab Package Registry is one of the more popular alternatives to GitHub Packages for sharing internal libraries. Like GitHub Packages, it’s built right into the platform, feels familiar, and works smoothly with GitLab CI/CD. For teams already using GitLab, it’s an easy pick. On the surface, it all seems pretty seamless: each...
Featured
Posted byCrista Perlton on September 12th, 2025.
This article is part of a series on Migrating from Sonatype to ProGet, also available as a chapter in our free downloadable eBook. Migrating to a new platform means redefining how users, roles, and permissions are managed. API keys are a key part of that process, providing secure access for users and automation to interact with...
Featured
Posted byCrista Perlton on September 10th, 2025.
This article is part of a series on Migrating from Sonatype to ProGet, also available as a chapter in our free downloadable eBook. Self-managing your package repository should be simple, but when solutions like the Sonatype Platform split features across multiple products and interfaces, things can get complex. ProGet takes a...
Featured
Posted byCrista Perlton on September 9th, 2025.
Software Bills of Materials (SBOMs) are becoming something every developer needs to deal with. If your organization uses NuGet packages you’ve probably heard of them, but finding guidance that actually applies to NuGet can be a bit of a pain, since most resources focus on other ecosystems like npm or Maven. For many teams,...
Featured
Posted byCrista Perlton on September 5th, 2025.
This article is part of a series on Migrating from Sonatype to ProGet, also available as a chapter in our free downloadable eBook. In ProGet, repositories are called “Feeds”. They’re pretty easy to use and should feel familiar if you’ve worked with repositories in other tools, like Sonatype Nexus. That said, feeds aren’t...
Featured
Posted byCrista Perlton on August 29th, 2025.
This article is the first in a series on Migrating from Sonatype to ProGet, also available as a chapter in our free, downloadable eBook. If you’re looking to migrate from Sonatype to ProGet and are already familiar with Nexus, Lifecycle, etc, you’ll recognize some similarities. Repositories, security controls, package...
Crista Perlton on September 24th, 2025.