Login Contact Us Book a Demo

Integrations

Increase Edge Security with the Zscaler Integration

The Zscaler Internet Access (ZIA) integration combines Zscaler's perimeter expertise with Sonatype's open source malware intelligence to block malicious packages at the network perimeter — before they reach a developer's machine.

Header-LR-Gray-(RIGHT)
Header-LR-Gray-(LEFT)

Block Open Source Malware at the Edge

As open source threats continue to grow, organizations need security solutions that extend beyond the developer toolchain. Zscaler Internet Access protects users and devices from phishing, malicious websites, and other web-based threats. But when it comes to open source, malware can lurk inside dependencies downloaded from trusted domains like npmjs.org or pypi.org. These threats slip past traditional Secure Web Gateways, especially when developers use CLI tools that bypass browser-based security policies.

Zscaler ZIA sees and filters domain-level traffic—but it doesn’t inspect open source packages or understand how malware behaves in a development context. Sonatype fills that gap. The Sonatype + Zscaler integration inspects requests to public OSS registries, evaluates packages using Sonatype’s malware intelligence engine, and blocks or quarantines anything suspicious. This happens at the edge—before malicious code enters a development machine or CI pipeline.

Explore Repository Firewall

Supported Zscaler Internet Access Features

Extend Malware Defense to the Perimeter

Get edge protection with Zscaler ZIA to block open source malware that is requested from public registries.

Gain Open Source Malware Intelligence

The Zscaler integration applies Sonatype malware intelligence with deep package-level inspection to determine threat status in real time.

Stop Malware in Shadow Downloads

Extend your existing Zscaler investment by blocking open source malware at the edge. 

Increase Security Beyond The Repository

Close a critical blind spot in perimeter defenses on top of your existing repository security. 

Increase Defense with Repository and Edge Security

Zscaler is a strong defender of internet access, but it’s not built to scan open source packages before they’re used in development. That’s not a shortcoming — it’s simply not its purpose. Sonatype extends Zscaler secure internet access protection by focusing on software supply chain risks that require deeper, package-level intelligence. With Sonatype Repository Firewall + Zscaler, you gain a layered defense strategy. Together, they stop both traditional web threats and open source malware, reducing the risk of unvetted components and malicious packages slipping through the cracks.

  • Complete OSS Coverage at the Network Level

    Scan direct downloads from public registries and block malicious packages and components.

  • Reduced Manual Effort

    Eliminate the need for developers or security teams to manually vet components.

  • Maximized Security Investment

    Extend the value of your Zscaler deployment by securing open source supply chains.

 

Integration Resources

Integration for Repository Firewall and Zscaler

See Full Documentation

Sonatype Expands Malware Protection

Learn More

Zscaler ZIA FAQs

Does Zscaler already block malware?

Yes, it blocks traditional malware, phishing, and dangerous sites. The Zscaler integration with Sonatype Repository Firewall enhances that capability by addressing open source-specific threats for enhanced edge protection.

What does the Zscaler integration block?

What makes open source malware different?

Does this require Nexus Repository?

No. This plugin works independently of Nexus and is ideal for orgs without a central repository manager.

How does the plugin block threats?