<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1127487224079104&amp;ev=PageView&amp;noscript=1 https://www.facebook.com/tr?id=1127487224079104&amp;ev=PageView&amp;noscript=1 ">

What We Learned from Studying 36,000 OSS Projects | Press Release


Press Releases

The latest scoop on Sonatype.

 

Sonatype Selected by Equifax to Support Open Source Governance & Security

Fulton, MD – January 29, 2019 -- Sonatype, the leader in automated open source governance and application security, today announced that Equifax Inc. (NYSE: EFX) has selected Sonatype’s Nexus platform to intelligently manage and monitor the use of open source libraries across its application portfolio. The selection was made following a competitive review.

Total Economic Impact Study on Sonatype’s Nexus Platform Reveals 232% ROI and 20% Reduction in Risk of Breach

New independent study finds Sonatype’s products save $14,000 per developer per year when improving secure coding practices

FULTON, MD – Jan 29, 2019 - Sonatype, the leader in automated open source governance, announced the release of The Total Economic Impact™ Of The Sonatype Nexus Platform, a commissioned study conducted by research firm Forrester Consulting. In the study, Forrester found that organizations using the Nexus Platform received an average of 232% return on their investment over three years and saw a net benefit achieved in under 12 months due to increased developer productivity, decreased risk of breaches and time-saved by security and compliance staff.

Sonatype Recognized as Leading Provider of Software Composition Analysis by Independent Research Firm

New report highlights insights about software composition analysis (SCA) vendors, as the need for automated Application Security increases exponentially

FULTON, MD – Jan 25, 2019 - Sonatype, the leader in automated open source governance, announced it has been recognized as one of five “large” SCA Specialists in Forrester Research’s new Now Tech: Software Composition Analysis, Q1 2019 report. According to Forrester, the report was developed to help security professionals understand the value, and increasing need, for SCA as well as the types of programs and strategies that various vendors provide, based on size and functionality.

Sonatype Expands its Executive Team Following an Outstanding 2018

Company increases new business by 67% in 2018, adds new leadership to accelerate global expansion and product innovation, with a people-first approach

FULTON, MD – Jan 08, 2019 - Sonatype, the leader in automated open source governance, today announced an expanded senior management team with the appointments of Kristin Davidson to Vice President of Human Resources, Tyler Shields to Vice President of Strategy and Business Development, and the promotion of Dalton Menhall to Vice President of Sales - The Americas. All three bring decades of experience to crucial business functions, helping to accelerate Sonatype’s already rapid growth and pace of innovation.

Sonatype Named to Deloitte’s 2018 Technology Fast 500™, Recognized as One of the Fastest Growing Companies in North America

FULTON, MD - November 16, 2018 - Sonatype, the leader in automated open source governance, today announced it ranked 346 on Deloitte’s Technology Fast 500™, a ranking of the 500 fastest growing technology, media, telecommunications, life sciences and energy tech companies in North America. The recognition comes during a banner growth year for the company and on the heels of announcing an $80 million minority investment led by TPG. This is the third year in a row Sonatype has ranked as a Technology Fast 500™ award winner.

Sonatype Partners with All Day DevOps to Educate More Than 1 Million People Through an Expanded 2018 Program

The world’s largest DevOps conference will offer sessions from 125 experts

FULTON, MD - October 12, 2018 -  All Day DevOps, the largest conference in the world dedicated to sharing DevOps best practices, in partnership with Sonatype, the leader in automated open source governance and application security, today announced an expanded 2018 program, updated agenda and full list of sponsors. The free conference, which streams live for 24 hours starting at 8:00 am GMT on October 17, 2018 (3:00 am New York, 7:00 pm Sydney), now features 125 practitioner-led sessions, across five tracks, including keynotes from:

  • Amélie Koran, Deputy Chief Information Office, HHS Office of Inspector General
  • Cindy Healy, Director, Microsoft Worldwide Learning Experiences
  • Dave Rensin, Director of Customer Reliability Engineering and Network Capacity, Google
  • George Swan, Director of Engineering Solutions, Autodesk
  • Rob England, Managing Director, Two Hills Ltd

Micro Focus Extends Partnership with Sonatype to Bring Best-in-Class Open Source Security to all Fortify Customers

Expanded relationship underscores the urgency for enterprises to manage open source risk as part of a comprehensive application security program

WASHINGTON, D.C. - Micro Focus Cybersecurity Summit 2018 - September 25, 2018 - Today, Sonatype, the leader in automated open source governance and application security, and Micro Focus, creator of Fortify Application Security Portfolio, announced an expanded strategic partnership to provide more enterprises with best-in-class open source governance and security.

Sonatype’s 2018 State of the Software Supply Chain Report Reveals Use of Vulnerable Open Source Increased 120%, Despite Equifax Breach

New data shows managed software supply chains are 2X more efficient and 2X more secure

FULTON, MD - September 25, 2018 - Sonatype today released its fourth annual State of the Software Supply Chain Report which found that software developers downloaded more than 300 billion open source components in the past 12 months, and that 1 in 8 of those components contained known security vulnerabilities.

TPG Leads $80 Million Investment in Sonatype

Capital to Fuel Global Growth Requirements as Automated Open Source Governance Goes Mainstream

FULTON, MD - September 07, 2018 - Sonatype, the leader in automated open source governance, today announced an $80 million minority investment led by TPG, a global alternative asset firm, with additional participation by existing investors Accel, Goldman Sachs Group and Hummer Winblad. This capital will be leveraged to accelerate sales, marketing, and R&D investments, fund strategic corporate objectives, and expand Sonatype’s Nexus platform offerings now used by more than 10 million software developers and 1,000 enterprises worldwide.

Sonatype Launches DepShield App to Democratize Open Source Governance

DepShield empowers GitHub’s 28 million developers to automatically identify open source security vulnerabilities within their GitHub repositories, for free

Fulton, MD – August 14, 2018 -- Sonatype, the leader in automated open source governance, today announced Sonatype DepShield, a new GitHub application that enables developers to experience basic open source governance, free of charge. Powered by Sonatype’s OSS Index, DepShield integrates directly into GitHub repositories and allows developers to easily identify and avoid using open source components with known vulnerabilities.