Skip Navigation
Book a Demo
Book a Demo
sonatype logo resized-1 +  iconfinder_chrome-512_148652

Chrome Extension

The Sonatype extension for Chromium browsers helps developers identify open source risks and policy violations in real time — right from Google Chrome or Microsoft Edge. Connect the Chrome extension to your Sonatype Platform to scan components as you browse public open source registries like Maven Central, npm, PyPI, and more.

Works With:   Sonatype-platform-logo-nav

Chrome + Sonatype Platform

This extension connects directly to your Sonatype Platform instance, giving developers the information they need to make secure choices at the point of discovery. Whether browsing Java, JavaScript, or Python packages, the extension enforces your organization’s open source policies and shifts security left — before code ever enters the build.

Explore how Sonatype’s browser extension integrates seamlessly with Chrome and Microsoft Edge to deliver real-time component intelligence. Gain visibility into vulnerabilities and policy violations without leaving the registry page.

Explore the Sonatype Platform

Chrome Extension Features

Instant Risk Visibility in Your Browser

Creates a view of known vulnerabilities, license issues, and component metadata as you browse package pages on public repositories — no context switching required.

Enforces Sonatype Platform Policies

Applies your organization’s security and license policies directly within the browser using Sonatype Platform intelligence, with clear pass/fail indicators and guidance.

Lightweight, Cross-Browser Support

Works seamlessly in both Chrome and Microsoft Edge, delivering fast, unobtrusive insights designed for developers and security-conscious teams.

Powered by Sonatype Intelligence

Backed by Sonatype’s industry-leading data, the extension provides deep, curated insights that go beyond public CVE feeds to ensure smarter component decisions.

Related Integrations

Sonatype for Jira Cloud

Sonatype for Jira Data Center

Sonatype Platform Plugin for Jenkins

Sonatype Lifecycle

Sonatype Platform Plugin for Jenkins

Sonatype Nexus Repository

Integration Resources

sonatype-icon@2x+iconfinder_chrome-512_148652

Sonatype’s Chrome extension

 

See Blog Post

Chrome Web Store logo

Extension in the Chrome Web Store

 

See Store

Partner Logo - Microsoft

Extension in Microsoft Edge Add-ons page

See Store

Chrome Extension FAQs

Is the Sonatype Chrome extension free to use?

Where can I use the Sonatype extension?

What do I need to configure after installation?

What does the extension evaluate?