Sonatype Logo dark

Platform
- Products
- Why Sonatype
- Accelerate Pipelines with the World's Leading Artifact Repository Manager
  
  Try It Free
- Explore solutions for you
Solutions
- OSS Management
- Developer Solutions
- Industry
- Sonatype Named a Leader in Forrester Wave™ for SCA Software
  
  Read Report
Pricing
Resources
- Resources
- Customer Resources
- Developer Community
- Explore The Latest Research on AI Component Analysis
  
  Watch On-Demand
Company
- Company
  - About
  - Customer Stories
  - Events
  - Newsroom
  - Careers
  - Blog
  - Contact Us
- Partners
- Contact Us
  
  Speak to a Software Supply Chain Expert
  
  Contact Us
Contact Us Book a Demo

Contact Us Book a Demo

This is a search field with an auto-suggest feature attached.

There are no suggestions because the search field is empty.

Sonatype Blog

Filters

Search

Topics

AI

Application Security

DevOps

Malware & Vulnerabilities

Regulations & Compliance

SBOM

Software Development

featured image for What Federal Agencies Need to Know About CISA's 2025 SBOM Minimum Elements

Blog Post

What Federal Agencies Need to Know About CISA's 2025 SBOM Minimum Elements

Read More

featured image for Ongoing npm Software Supply Chain Attack Exposes New Risks

Blog Post

Ongoing npm Software Supply Chain Attack Exposes New Risks

Read More

featured image for Managing AI Risks in the Modern Software Supply Chain

Blog Post

Managing AI Risks in the Modern Software Supply Chain

Read More

featured image for A Tale of Two SDLCs: Rise of the AI-Powered SDLC

Blog Post

A Tale of Two SDLCs: Rise of the AI-Powered SDLC

Read More

featured image for npm Chalk and Debug Packages Hit in Software Supply Chain Attack

Blog Post

npm Chalk and Debug Packages Hit in Software Supply Chain Attack

Read More

featured image for The Developer's Hippocratic Oath in the Age of AI

Blog Post

The Developer's Hippocratic Oath in the Age of AI

Read More

featured image for From Models to Missions: Applying the AI RMF to Federal Software Supply Chains

Blog Post

From Models to Missions: Applying the AI RMF to Federal Software Supply Chains

Read More

featured image for AI Governance and Risk in Securing Software Supply Chains

Blog Post

AI Governance and Risk in Securing Software Supply Chains

Read More

featured image for AI, Malware, and the Rise of Software Development Infiltration

Blog Post

AI, Malware, and the Rise of Software Development Infiltration

Read More

featured image for SBOM Manager New Features Accelerate Compliance and Security at Scale

Blog Post

SBOM Manager New Features Accelerate Compliance and Security at Scale

Read More

featured image for The End of Tribal Knowledge: Why Contextual Policy Is the Foundation for Agentic AI Development

Blog Post

The End of Tribal Knowledge: Why Contextual Policy Is the Foundation for Agentic AI Development

Read More

featured image for Celebrating the 2025 Sonatype Elevate Awards Finalists

Blog Post

Celebrating the 2025 Sonatype Elevate Awards Finalists

Read More

1
2
3
...
17

Platform

Overview Pricing Nexus Repository Firewall Lifecycle SBOM Manager Maven Central

Why Sonatype

Compare Sonatype Open Source Intelligence Best SCA Tools Best Malware Protection Tools Best Artifact Repository Solutions Best SBOM Compliance Solutions

Resources

Resources Center Blog Product Tours Webinars Customer Stories Analyst Reports Research

Developer

Integrations All Day DevOps (ADDO) Free Nexus Repo Download Sonatype OSS Index Vulnerability Scanner

Customer Resources

My Sonatype Documentation Support Training & Workshops

Company

About Careers Partners Newsroom

Contact Us

X social logo
LinkedIn social logo
Facebook social logo
YouTube social logo
GitHub social logo

Terms of Service
Privacy Policy
Modern Slavery Statement
Event Terms and Conditions
Do Not Sell My Personal Information
Cookie Preferences
Trust Center

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.