Genome.One

"When we saw a demo of Nexus Lifecycle, it shifted our perspective beyond just license checking.  The primary usage became the vulnerability checking and writing policies around the vulnerabilities."

-Tudor Groza, Chief Technology Officer, Genome.One

Endress+Hauser

"We evaluated Black Duck, Veracode and Nexus Lifecycle. My colleagues and I chose Nexus Lifecycle because it is the best solution for what we are trying to do: remove all critical findings before they reach production."

READ MORE

Genome.One

"When we saw a demo of Nexus IQ Server, it shifted our perspective beyond just license checking.  The primary usage became the vulnerability checking and writing policies around the vulnerabilities."

READ MORE

Creditreform

"What we saw was that Nexus Lifecycle really worked for us. It was much better than doing everything manually.  We didn’t have to rely on developers to understand and determine an output for remediation."

READ MORE

ABN-AMRO

"ABN AMRO is implementing quality gates and build breakers to improve code quality and security awareness. Nexus Lifecycle is used to verify that developers are using safe open source libraries as opposed to ‘illegal’ libraries. "

READ MORE

travel audience

"Andre Rocha Ferreira describes how he and the DevOps team at travel audience built a DevOps pipeline solution using Nexus Repository Manager on top of the Google Cloud platform."

READ MORE

mobile.de

"The use of  Nexus Repository as a centralized storage for multiple binary types has created a consistent, secure environment across multiple teams. 200 software engineers in multiple groups at mobile.de are now getting the benefits of the Nexus platform."

READ MORE

Tomitribe

“Automated security monitoring with Nexus Lifecycle alleviates the time-consuming manual processes that inhibit scaling. We want to be able to have our eyes on the code and have Nexus Lifecycle tell us when there’s something requiring our attention.”

READ MORE

The EDF Group

"The biggest advantage of using IQ Server is to be able to report to our project team what specific libraries are used within our applications. We have immediate visibility into security issues."

READ MORE

Discovery Health

"We needed constant monitoring and notifications of open source vulnerabilities in our applications. That’s what Nexus Repository, Nexus Lifecycle and IQ Server delivered."

READ MORE

Liberty Mutual

"By layering automation and instrumentation through our pipelines we were able to reduce the average time for new applications from 25 days to 2.5 days, with the record of 8 minutes from desktop to cloud."

READ MORE

Tyro Payments

"Before Nexus Lifecycle, we really had no way to monitor open source policy violations or licensing risks. Nexus Lifecycle quietly enforces policy, automatically identifies issues, and prioritizes what to fix."

READ MORE

Qualys

"We wanted to give developers the tools to help them with their decision-making when selecting open source components."

READ MORE

Blackboard

"Blackboard has written millions of lines of custom code—and about half of it touches one or more of 100+ open source components. Assuring those components are free of vulnerabilities is incredibly important."

READ MORE

Crosskey

"Sonatype specializes in streamlining component-based development, so the quality is much higher than any other solution we evaluated and far better than manual effort."

READ MORE

Intuit

"Nexus Repository provides a comprehensive, easy-to-use solution that lets teams and developers track, search, organize and access build components."

READ MORE

Progress Software

"Sonatype provided the tools and support we needed to streamline due diligence, reduce risk, and move forward with confidence."

READ MORE