What we saw was that Nexus Lifecycle really worked for us. It was much better than doing everything manually. We didn’t have to rely on developers to understand and determine an output for remediation.
ABN AMRO is implementing quality gates and build breakers to improve code quality and security awareness. Nexus Lifecycle is used to verify that developers are using safe open source libraries as opposed to ‘illegal’ libraries.
The use of Nexus Repository as a centralized storage for multiple binary types has created a consistent, secure environment across multiple teams. 200 software engineers in multiple groups at mobile.de are now getting the benefits of the Nexus platform.
“Automated security monitoring with Nexus Lifecycle alleviates the time-consuming manual processes that inhibit scaling. We want to be able to have our eyes on the code and have Nexus Lifecycle tell us when there’s something requiring our attention.”
"By layering automation and instrumentation through our pipelines we were able to reduce the average time for new applications from 25 days to 2.5 days, with the record of 8 minutes from desktop to cloud."
"Before Nexus Lifecycle, we really had no way to monitor open source policy violations or licensing risks. Nexus Lifecycle quietly enforces policy, automatically identifies issues, and prioritizes what to fix."
"Blackboard has written millions of lines of custom code—and about half of it touches one or more of 100+ open source components. Assuring those components are free of vulnerabilities is incredibly important."
Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759 Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102 Australia Office - 5 Martin Place, Level 14, Sydney 2000, NSW, Australia London Office - 1 Primrose St, London EC2A 2EX