FULTON, Md., Dec. 14, 2015 /PRNewswire/ -- Sonatype, the company dedicated to helping IT organizations deliver higher quality software even faster, today announced free format support for Docker and npm in the market leading Nexus Repository Manager, as well as the development of plug-ins for both Twistlock and npm On-site.
The addition of Docker and npm format support makes Nexus Repository OSS the only free universal repository management solution. Nexus repository managers serve as the local warehouse for IT organizations to efficiently manage and distribute component parts, assemblies and finished goods across the software supply chain. Component support includes: Docker, npm, Maven/Java, NuGet, RubyGems, OBR, P2, APT, RPM and any other binary files used in Software delivery. Now IT organizations can have a single repository to manage, lowering the cost of administration, streamlining operation and advancing agile, continuous delivery and DevOps goals.
npm, Inc. Partnership:
Docker research shows that security is a top concern of Docker users.2 Nexus Repository is the only repository management solution with built-in software supply chain intelligence to identify known security vulnerabilities. Sonatype and Twistlock have partnered to ensure that the growing community of Docker users can benefit from software supply chain intelligence for software living in Docker containers.
"Visibility and control are important to container users," said Ben Bernstein, CEO and co-founder of Twistlock. "In partnership with Sonatype we can ensure Docker users have visibility to the components inside the containers via Sonatype's software supply chain intelligence and Twistlock's vulnerability assessment capabilities. With that visibility, organizations can apply policy management in accordance with their compliance requirements."
Every day, developers rely on millions of third party and open source building blocks — known as components -- to build the software that runs our world. Sonatype ensures that only the best components are used throughout the software development lifecycle so that organizations don't have to make the tradeoff between going fast and being secure. Policy automation, ongoing monitoring and proactive alerts makes it easy to have full visibility and control of components throughout the software supply chain so that applications start secure and remain that way over time. Sonatype is privately held with investments from New Enterprise Associates (NEA), Accel Partners, Bay Partners, Hummer Winblad Venture Partners and Morgenthaler Ventures. Visit: www.sonatype.com.
About npm, Inc.:
We also build tools and services that help the professional coder securely leverage the power of modular software development, with both Saas and enterprise software products.
npm, Inc. is a privately held company, based in Oakland, California.
Twistlock provides the industry's first enterprise suite for container security. Twistlock's technologies address risks on the host and within the containerized application, enabling enterprises to enforce consistent security policies from development to production. Our innovative technologies monitor container activities, manage vulnerabilities, detect and isolate threats targeting production containers. Twistlock's mission is to provide an end-to-end, enterprise-grade security stack for containerized computing, so organizations can maximize the benefits of adopting containers. For more information, please visit www.twistlock.com.