We believe our ability to automate the entire software supply chain in combination with a superior, attentive customer service experience made a clear distinction between other vendors studied in the report.
Analyzing ten vendors across 37 criteria, The Forrester Wave™ Software Composition Analysis (SCA), Q3 2021 report evaluates the top vendors in the market. SCA is critical to protecting the software supply chain according to the Forrester report. We believe Sonatype’s offerings outlined in the report further define the company’s market presence and product vision to help customers gain control of their SDLC and build better software, faster.
We believe our ability to automate the entire software supply chain in combination with a superior, attentive customer service experience made a clear distinction between other vendors studied in the report.
Analyzing ten vendors across 37 criteria, The Forrester Wave™ Software Composition Analysis (SCA), Q3 2021 report evaluates the top vendors in the market. SCA is critical to protecting the software supply chain according to the Forrester report. We believe Sonatype’s offerings outlined in the report further define the company’s market presence and product vision to help customers gain control of their SDLC and build better software, faster.
SBOM APPROACH
Focusing on our core of helping organizations build better software faster, aligned to the 2021 Cybersecurity Executive Order, we believe Forrester recognized Sonatype’s strength for secure software development. We received the highest possible rating of 5 out 5 in the software bill of materials creation criterion.
Sonatype’s Customer Success Team
Customers looking for a close vendor relationship and willing to sort through the range of add-on options will find Sonatype an appealing choice.
A STRONG PERFORMER
Sonatype received the highest market presence score, tied for the second-highest score in the SDLC integrations criterion, and also received the highest possible score (5 out of 5) in the overall product vision criterion.
Policy is an Area of Strength
The Forrester report states “out-of-the-box policies that align to a range of standards (particularly in the IaC pack) and a policy engine that allows users to create and assign policies to certain types of applications.”
Expands Scope via Add-on Packages
Three base products to address the key use cases — Nexus Lifecycle for most SCA features, Nexus Container for container security, and Nexus Firewall for supply chain protection — and offers a buffet of paid add-ons to Nexus Lifecycle: the Advanced Development Pack for additional remediation support, Advanced Legal Pack for license compliance automation, and IaC Pack for infrastructure as code.
Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759
Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102
Australia Office - 60 Martin Place Level 1, Sydney, NSW 2000, Australia
London Office -168 Shoreditch High Street, E1 6HU London
Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.
Terms of Service Privacy Policy Modern Slavery Statement Event Terms and Conditions Do Not Sell My Personal Information