Press Releases

The latest scoop on Sonatype.

 

TPG Leads $80 Million Investment in Sonatype

Capital to Fuel Global Growth Requirements as Automated Open Source Governance Goes Mainstream

FULTON, MD - September 07, 2018 - Sonatype, the leader in automated open source governance, today announced an $80 million minority investment led by TPG, a global alternative asset firm, with additional participation by existing investors Accel, Goldman Sachs Group and Hummer Winblad. This capital will be leveraged to accelerate sales, marketing, and R&D investments, fund strategic corporate objectives, and expand Sonatype’s Nexus platform offerings now used by more than 10 million software developers and 1,000 enterprises worldwide.

Sonatype’s Latest Nexus Intelligence Shines a Light on Hidden JavaScript Vulnerabilities and Empowers Developers with Actionable Insights

Solution Identifies Previously Unknown JavaScript Vulnerabilities Across Multiple Ecosystems, and Further Protects Nexus Customers

Fulton, MD – August 29, 2018 -- Today, Sonatype, the leader in automated open source governance, announced that it has deployed an updated version of Nexus Intelligence with enhanced JavaScript intelligence capabilities. Using patented Advanced Binary Fingerprinting (ABF) technology to identify JavaScript vulnerabilities lurking inside of multiple open source ecosystems, Nexus is the world’s first open source governance solution capable of uncovering malicious pieces of JavaScript code, which no other technology can identify.

Sonatype Launches DepShield App to Democratize Open Source Governance

DepShield empowers GitHub’s 28 million developers to automatically identify open source security vulnerabilities within their GitHub repositories, for free

Fulton, MD – August 14, 2018 -- Sonatype, the leader in automated open source governance, today announced Sonatype DepShield, a new GitHub application that enables developers to experience basic open source governance, free of charge. Powered by Sonatype’s OSS Index, DepShield integrates directly into GitHub repositories and allows developers to easily identify and avoid using open source components with known vulnerabilities.

Sonatype Named to JMP Securities’ 2018 Hot 100 List

Fulton, MD – August 3, 2018 -- Sonatype, the leader in automated open source governance, today announced it has been named to the JMP Securities’ Hot 100 list of the hottest privately held software companies for 2018. Compiled annually by JMP, the list profiles the top 100 private companies based on multiple criteria including financial growth, products and services, quality of leadership team and market potential. This is the third time Sonatype has been named to the list.

Sonatype Launches New and Enhanced Open Source Software Index, Delivering Free Open Source Vulnerability Data to Millions of Developers

The newly improved Index is designed to easily integrate with developer tools like Maven Enforcer Plugin and OWASP Dependency Check

Fulton, MD – July 25, 2018 -- Sonatype, the leader in automated open source governance, today announced a revamped and modernized OSS Index to provide developers with free and easily accessible information on known open source vulnerabilities.  The Index provides multi-language support, easy implementation through a REST API and native integrations with Maven Enforcer Plugin and OWASP Dependency Check.

Wayne Jackson, CEO of Sonatype, Named EY Entrepreneur Of The Year® 2018 in the Mid-Atlantic Region

Jackson was honored in the cybersecurity category for his ingenuity, tenacity and continued prosperity

Fulton, MD – June 15, 2018    Sonatype, the leader in automated open source governance and DevSecOps, today announced that Sonatype’s CEO, Wayne Jackson, received the EY Entrepreneur Of The Year® 2018 Mid-Atlantic Award in the Cybersecurity category.

Sonatype to Live Stream Inaugural Nexus User Conference

More than 1,500 people participating online with free access to 25 customer led sessions

Fulton, MD – June 05, 2018 -- Sonatype, the leader in automated open source governance and DevSecOps, will host over 1,500 people at it’s inaugural Nexus User Conference, June 6 - 7, 2018. The event will be live streamed and is completely free for all attendees,  removing traditional barriers to conference attendance such as cost and days away from the office. Live Q&A with all speakers is available via Slack.

Sonatype Named Technology Company of the Year by Maryland Tech Council

Fulton, MD -- May 18, 2018 -- Sonatype, the leader in automated open source governance and DevSecOps, is proud to announce that it has been named Technology Company of the Year by the Maryland Tech Council (MTC), Maryland’s largest technology trade group.

Sonatype Nexus Delivers Advanced Staging; Further Simplifying DevOps-Native Software Development

Modern software development teams can now easily control how binaries, build artifacts, and release candidates flow through the DevOps pipeline

Fulton, MD – May 15, 2018  Sonatype, the leader in automated open source governance and DevSecOps, today announced it has released Staging for version 3 of Nexus Repository Professional, giving organizations a simple, powerful, and flexible way to control how binaries, build artifacts, and release candidates move through their DevOps pipelines.

Sonatype’s Bill Karpovich to Present at the William Blair Tech Leaders 2018 Conference

FULTON, MD – May 7, 2018 –  Sonatype, the leader in automated open source governance and DevSecOps, announced that Sonatype SVP of Strategy and Corporate Development Bill Karpovich, will present at the William Blair Tech Leaders 2018 Conference on Thursday, May 10 in San Francisco, Calif.