<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1127487224079104&amp;ev=PageView&amp;noscript=1 https://www.facebook.com/tr?id=1127487224079104&amp;ev=PageView&amp;noscript=1 ">

Sonatype Named to Two Best Workplace Lists Press Release

Press Releases

The latest scoop on Sonatype.


Sonatype Recognized as Leading Provider of Software Composition Analysis by Independent Research Firm

New report highlights insights about software composition analysis (SCA) vendors, as the need for automated Application Security increases exponentially

FULTON, MD – Jan 25, 2019 - Sonatype, the leader in automated open source governance, announced it has been recognized as one of five “large” SCA Specialists in Forrester Research’s new Now Tech: Software Composition Analysis, Q1 2019 report. According to Forrester, the report was developed to help security professionals understand the value, and increasing need, for SCA as well as the types of programs and strategies that various vendors provide, based on size and functionality.

Sonatype Expands its Executive Team Following an Outstanding 2018

Company increases new business by 67% in 2018, adds new leadership to accelerate global expansion and product innovation, with a people-first approach

FULTON, MD – Jan 08, 2019 - Sonatype, the leader in automated open source governance, today announced an expanded senior management team with the appointments of Kristin Davidson to Vice President of Human Resources, Tyler Shields to Vice President of Strategy and Business Development, and the promotion of Dalton Menhall to Vice President of Sales - The Americas. All three bring decades of experience to crucial business functions, helping to accelerate Sonatype’s already rapid growth and pace of innovation.

Sonatype Named to Deloitte’s 2018 Technology Fast 500™, Recognized as One of the Fastest Growing Companies in North America

FULTON, MD - November 16, 2018 - Sonatype, the leader in automated open source governance, today announced it ranked 346 on Deloitte’s Technology Fast 500™, a ranking of the 500 fastest growing technology, media, telecommunications, life sciences and energy tech companies in North America. The recognition comes during a banner growth year for the company and on the heels of announcing an $80 million minority investment led by TPG. This is the third year in a row Sonatype has ranked as a Technology Fast 500™ award winner.

Sonatype Partners with All Day DevOps to Educate More Than 1 Million People Through an Expanded 2018 Program

The world’s largest DevOps conference will offer sessions from 125 experts

FULTON, MD - October 12, 2018 -  All Day DevOps, the largest conference in the world dedicated to sharing DevOps best practices, in partnership with Sonatype, the leader in automated open source governance and application security, today announced an expanded 2018 program, updated agenda and full list of sponsors. The free conference, which streams live for 24 hours starting at 8:00 am GMT on October 17, 2018 (3:00 am New York, 7:00 pm Sydney), now features 125 practitioner-led sessions, across five tracks, including keynotes from:

  • Amélie Koran, Deputy Chief Information Office, HHS Office of Inspector General
  • Cindy Healy, Director, Microsoft Worldwide Learning Experiences
  • Dave Rensin, Director of Customer Reliability Engineering and Network Capacity, Google
  • George Swan, Director of Engineering Solutions, Autodesk
  • Rob England, Managing Director, Two Hills Ltd

Micro Focus Extends Partnership with Sonatype to Bring Best-in-Class Open Source Security to all Fortify Customers

Expanded relationship underscores the urgency for enterprises to manage open source risk as part of a comprehensive application security program

WASHINGTON, D.C. - Micro Focus Cybersecurity Summit 2018 - September 25, 2018 - Today, Sonatype, the leader in automated open source governance and application security, and Micro Focus, creator of Fortify Application Security Portfolio, announced an expanded strategic partnership to provide more enterprises with best-in-class open source governance and security.

Sonatype’s 2018 State of the Software Supply Chain Report Reveals Use of Vulnerable Open Source Increased 120%, Despite Equifax Breach

New data shows managed software supply chains are 2X more efficient and 2X more secure

FULTON, MD - September 25, 2018 - Sonatype today released its fourth annual State of the Software Supply Chain Report which found that software developers downloaded more than 300 billion open source components in the past 12 months, and that 1 in 8 of those components contained known security vulnerabilities.

TPG Leads $80 Million Investment in Sonatype

Capital to Fuel Global Growth Requirements as Automated Open Source Governance Goes Mainstream

FULTON, MD - September 07, 2018 - Sonatype, the leader in automated open source governance, today announced an $80 million minority investment led by TPG, a global alternative asset firm, with additional participation by existing investors Accel, Goldman Sachs Group and Hummer Winblad. This capital will be leveraged to accelerate sales, marketing, and R&D investments, fund strategic corporate objectives, and expand Sonatype’s Nexus platform offerings now used by more than 10 million software developers and 1,000 enterprises worldwide.

Sonatype’s Latest Nexus Intelligence Shines a Light on Hidden JavaScript Vulnerabilities and Empowers Developers with Actionable Insights

Solution Identifies Previously Unknown JavaScript Vulnerabilities Across Multiple Ecosystems, and Further Protects Nexus Customers

Fulton, MD – August 29, 2018 -- Today, Sonatype, the leader in automated open source governance, announced that it has deployed an updated version of Nexus Intelligence with enhanced JavaScript intelligence capabilities. Using patented Advanced Binary Fingerprinting (ABF) technology to identify JavaScript vulnerabilities lurking inside of multiple open source ecosystems, Nexus is the world’s first open source governance solution capable of uncovering malicious pieces of JavaScript code, which no other technology can identify.

Sonatype Launches DepShield App to Democratize Open Source Governance

DepShield empowers GitHub’s 28 million developers to automatically identify open source security vulnerabilities within their GitHub repositories, for free

Fulton, MD – August 14, 2018 -- Sonatype, the leader in automated open source governance, today announced Sonatype DepShield, a new GitHub application that enables developers to experience basic open source governance, free of charge. Powered by Sonatype’s OSS Index, DepShield integrates directly into GitHub repositories and allows developers to easily identify and avoid using open source components with known vulnerabilities.

Sonatype Named to JMP Securities’ 2018 Hot 100 List

Fulton, MD – August 3, 2018 -- Sonatype, the leader in automated open source governance, today announced it has been named to the JMP Securities’ Hot 100 list of the hottest privately held software companies for 2018. Compiled annually by JMP, the list profiles the top 100 private companies based on multiple criteria including financial growth, products and services, quality of leadership team and market potential. This is the third time Sonatype has been named to the list.