Critical New 0-day Vulnerability in Popular Log4j Library Discovered | Read Blog

Press Releases

The latest scoop on Sonatype.

Sonatype Acquires MuseDev

Acquisition Pairs Developer-Friendly Source Code Analysis with Full-Spectrum Software Supply Chain Management

Fulton, MD – Tuesday, March 16, 2021Sonatype, the leader in developer-friendly tools for software supply chain management and security, today announced the acquisition of MuseDev, an innovative code analysis platform. MuseDev’s core offering automatically analyzes and provides uniquely accurate feedback on each developer pull request, making it easy to find and fix critical security, performance, and reliability bugs during code review. 

Sonatype Adds Infrastructure as Code Security and Compliance

New Infrastructure as Code Pack for Nexus Lifecycle brings developer-friendly cloud and open source security together in one place.

Fulton, MD — March 16, 2021 — Sonatype, the leader in developer-friendly tools for software supply chain management and security, today unveiled its Infrastructure as Code (IaC) Pack for Nexus Lifecycle, making it easy for developers to configure infrastructure as code without worrying about common security mistakes.

Sonatype Adds Cloud-Native Container and Kubernetes Security for Developers

Powered by NeuVector, Nexus Container provides developer-friendly security and continuous visibility into the composition, and management of containers.

Fulton, Md. – March 16, 2021 –  Sonatype, the leader in developer-friendly tools for software supply chain management and security, today announced Nexus Container, powered by NeuVector. Nexus Container is a Kubernetes-native, full life cycle container security solution that secures containerized applications from development to production. 

Russian Enterprises Turn to Swordfish Security and Sonatype to Combat Risk Associate with Open Source

MOSCOW -- February 25, 2021 - Swordfish Security, a leader in Russian application security and enterprise digital transformation projects, today announced it secured its dedicated Platinum Partner Certification with Sonatype, the leader in open source governance and DevSecOps automation.

Bahwan CyberTek Partners with Sonatype to Mitigate Security Vulnerabilities in Open Source Software

DUBAI, UAE, Feb. 18, 2021 -- Bahwan CyberTek (BCT), a global leader in digital transformation, announced a strategic partnership with Sonatype, a leading player in open source governance and DevSecOps automation, to help customers mitigate risks at every stage of their software development lifecycle (SDLC). BCT will leverage Sonatype's Nexus platform, to help its customers build open source risk policies and effectively mitigate such risks.

Sonatype partners with SVA System Vertrieb Alexander GmbH to help enterprises mitigate risk and build software more securely

Wiesbaden, Germany – January 19, 2021 - Sonatype, a leader in open source security and license compliance management, announced today a partnership with SVA, one of Germany’s leading system integrators, to help enterprise customers easily detect open source vulnerabilities that already exist or are actively being ingested into their repositories.

Cigniti Technologies Announces Partnership with Sonatype, Extends AppSec Offering with Best-in-Class Software Composition Analysis

With the Sonatype Nexus Platform, Cigniti now helps customers shift left and automate open source security at every stage of the software development lifecycle

LONDON –Jan. 6, 2020 - Cigniti Technologies, a global leader in independent quality engineering and software testing services, today announced a partnership with Sonatype, the company that scales DevOps through open source governance and software supply chain automation, to help enterprise customers innovate faster and easily mitigate security risk inherent in open source. 

Eficode Bolsters Partnership With Sonatype, Extends Best-in-Class Software Composition Analysis with Hosted Solutions

As cloud transformations accelerate, Eficode makes shifting security left even easier by offering the Sonatype Nexus platform as part of its Eficode ROOT DevOps platform

Helsinki, Finland -- Thursday, Dec. 10, 2020 -- Eficode, Europe’s leading DevOps company, announced an expanded partnership with Sonatype, the leading provider of innovation-friendly open source security tools, to include management, hosting and licensing. This enables Eficode customers to have premium software composition analysis (SCA) and access to Sonatype unrivaled, in-depth open source intelligence and policy engine as a managed service and in the cloud, through the Eficode ROOT DevOps platform

Sonatype Strengthens Leadership Team with New Chief Revenue Officer; Prepares for Global Expansion

Proven Industry Leader Jon Mellon Joins Sonatype to Expand the Sonatype Partner Ecosystem,  Accelerate Growth,  and Enhance Customer Engagement Globally 

Fulton, MD – Tuesday, Dec. 8, 2020 -- Sonatype, the leading provider of innovation-friendly open source security tools, today announced the appointment of a key addition to its executive management team, Jon Mellon, who joins the company in the newly created role of Chief Revenue Officer. With 10 million developers already relying on Sonatype to help them develop safer, software faster, and strong growth projected heading into 2021, the company is preparing for the next phase of rapid expansion with this addition. 

Adaptavist Offers Enterprise DevSecOps Solution With Sonatype Partnership

LONDON – December 01, 2020 -- Adaptavist, a digital transformation leader, today announced it has joined the Sonatype partner programme as a Platinum Enterprise Partner. The strategic partnership allows Adaptavist to offer improved application development security features to accelerate enterprise company’s go-to-market plans.