Press Releases
November 20, 2025
Sonatype Intelligence Reveals CVE Program Leaves Majority of Vulnerabilities Unscored
Inconsistent and delayed open source vulnerability data results in 150,000 false negatives, leaving AI-driven development pipelines exposed Fulton, ...
November 19, 2025
Sonatype Unveils Nexus One: An AI-Native DevSecOps Platform to Secure and Accelerate Software Innovation
Unifying governance, automation, and open source security across the AI-powered software supply chain Fulton, Md. – November 19, 2025 – Sonatype®, ...
November 10, 2025
Sonatype Celebrates Grand Opening of India Innovation Hub in Hyderabad
Inauguration marks milestone in global expansion and AI-driven software security innovation Hyderabad, India – November 10, 2025 – Sonatype®, the ...
October 20, 2025
Sonatype Announces 2025 Elevate Award Winners & Finalists
Recognizes global organizations pioneering DevSecOps Fulton, Md. – October 21, 2025 – Sonatype®, the leader in AI-centric DevSecOps, today announced ...
October 15, 2025
Open Source Malware Surges 140% in Q3 as Attackers Target Data and Trusted Dependencies
Sonatype’s OS Malware Index reveals record growth in sophisticated, stealth-first attacks — driven by campaigns targeting npm like the chalk and ...
October 14, 2025
Sonatype Named a Visionary on the 2025 Gartner® Magic Quadrant™ for Application Security Testing
Recognized for Completeness of Vision and Ability to Execute Fulton, Md. – October 14, 2025 – Sonatype®, the leader in AI-centric DevSecOps, today ...
October 8, 2025
Sonatype Launches Nexus Repository Cloud for the Gen AI Era
World’s most trusted binary artifact manager now available as a cloud-native, fully managed SaaS offering with built-in malware protection. Fulton, ...
July 29, 2025
Sonatype Appoints Cybersecurity Veteran Bhagwat Swaroop as CEO
Wayne Jackson steps into role of Executive Chairman of the Sonatype Board of Directors Fulton, Md. – July 29, 2025 – Sonatype®, the end-to-end ...
July 16, 2025
Sonatype Solutions Now Available in the New AWS Marketplace AI Agents and Tools category
Fulton, Md. – July 16, 2025 – Sonatype, the end-to-end software supply chain security company, today announced the availability of its entire product ...
July 8, 2025
Malware Targeting Developers Reaches 845K Packages According to Sonatype Open Source Malware Index
Attackers focus on data exfiltration as 16K new open source malware packages are logged in Q2 2025 Fulton, Md. – July 8, 2025 – Sonatype®, the ...
June 19, 2025
Sonatype Expands Global Operations With New India Innovation Center
Hyderabad hub deepens commitment to AI innovation, open source security, and 24/7 global product delivery
April 29, 2025
Sonatype Expands Enterprise Protection Against Open Source Malware
New features help developers and security teams block risk early, from open source packages to AI models and containers
April 2, 2025
Nearly 18,000 New Malicious Packages Discovered in Q1 According to Sonatype Open Source Malware Index
Malware targeting developers reaches 828,925 packages, with data exfiltration threats rising sharply
March 27, 2025
Sonatype Supports Secure Development in Rust
Future-proofs modern software development with memory-safe language support
March 4, 2025
Sonatype Unveils Industry-First AI Software Composition Analysis (SCA) to Power AI-Driven Innovation
Empowers organizations to securely integrate, manage and govern the use of open source AI/ML models
December 10, 2024
Open Source Malware Reaches More Than 778,500 Packages, According to Sonatype Researchers
New research examines growth in open source malware attacks, most prevalent against software developers at government and financial institutions