New DepShield App Democratizes OSS Governance Press Release

The EDF Group with Nexus Lifecycle and IQ Server

Helping Consumers Manage Energy Resources and Consumption
EDF - Logo Round-1.png

The EDF Group

Challenge

  • No scalable way to determine liability of open source in use
  • Retrospective manual security practices
  • Manual declaration of component usage to security team by developers
  • No visibility into open source libraries used within a project
  • Could not monitor and track open source within production

Solution

  • Nexus Repository Manager
  • Nexus Lifecycle
  • Nexus IQ Server
  • Ansible
  • OpenShift
  • Jenkins with plugin to Docker
  • Eclipse plugin
  • SonarQube plugin

Outcome

  • Immediate visibility into open source security issues
  • Rapid selection of safe, open source components
  • Automatic tracking and monitoring of libraries as part of development process
  • Easily generated reports on libraries used within applications
"The biggest advantage of using IQ Server is to be able to report to our project team what specific libraries are used within our applications. We have immediate visibility into security issues."

Olivier Router, Head of CI DevOps Engineering Team
Read the full story
Read More
Products
Customers
Resources
About
Social
Twitter LinkedIn Facebook Google+ YouTube

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759
Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102
Australia Office - 5 Martin Place, Level 14, Sydney 2000, NSW, Australia 
London Office - 1 Primrose St, London EC2A 2EX

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service    Privacy Policy