Nexus Pro CLM Edition

Nexus Pro PLUS Policy Enforcement

Nexus Pro CLM is an enhanced version of Nexus Pro which enables users to easily define, monitor, enforce, and report upon compliance to component security and license policies. As such, it is an important first step toward complete Component Lifecycle Management (CLM).

According to industry studies, 90% of a typical application is now composed of open source and third-party components.  Research also reveals that 90% of component repositories contain components with known, severe vulnerabilities. With Nexus Pro CLM Edition, various component security, licensing and architecture policies are easily defined and automatically enforced in the release or staging process.   Having policy management built into the software development lifecycle, reduces downstream risk and rework for your application developers.

Nexus Pro CLM includes everything in Nexus Pro, plus:

Security, licensing and architecture policies are easily defined and enforced during build promotion and staging using Nexus Pro CLM. 


Nexus Pro CLM security, licensing and architecture policies can be configured for different types of applications that are managed through staging.

Component governance features automate policy reviews, alerts, and approvals so that you can better govern your release processes. 


The Policy editor is used to configure appropriate action for staged and production releases. 

While Nexus Pro provides the foundation for storing, managing and sharing components, Nexus Pro CLM Edition adds the capability to prevent flawed components from making their way into production.   Where Nexus Pro CLM focuses on repository managers, the same policy management features can be extended across the software development lifecycle with monitoring, alerts and enforcement points in the IDE, build platforms, and CI servers, as well as in applications that have been released into production with Sonatype CLM.