Sonatype Platform Pricing
We enable organizations of all sizes to optimize their software supply chain managment. Interested in enterprise and multi-year pricing? Contact us.
$57.50
per user/month
Billed annually
*Additional IQ server subscription required
Automatic policy enforcement
Advanced Binary Fingerprinting (ABF)
Resolution trend reporting
No context switching - 50+ integrations
Flexible security, license, & architectural policies
show
Limited Time Offer
Monitor first and third-party SBOMs
CycloneDX and SPDX formats
Automated VEX-based annotation
Comply with EO 14028, NIS2, & PCI4
Analyze components, vulnerabilities, & policy violations
show
$12.00
per user/month
Billed annually
*Minimum 35 user requirement
Private hosted repositories
High Availability (HA) - increased uptime
Simplify npm and Docker Roll-Outs
Containerized Deployments
On-demand proxying, grouping
SAML/SSO, Enterprise LDAP, Auth Tokens
show
$18.67
per user/month
Billed annually
*Additional IQ server subscription required
Protection from malicious packages
Auto quarantine or manual review
Cloud, self-hosted, and air gapped
Hosted repository protection
Reports & views for security and dev
Threat quarantines & auto release
show
Available Add-Ons
Sonatype Lifecycle
Sonatype Advanced Legal Pack
Eliminate manual collection and review of legal data for compliance with auto generated reports and license compliance.
Sonatype Container
Frequently Asked Questions
How is ‘user’ defined based on pricing?
We define a 'user' as each individual (whether employee or contractor) who produces, consumes, or evaluates software artifacts that are stored in or scanned, analyzed or otherwise evaluated by a Sonatype product.
Do you offer free trials?
Do you have special US Federal or government entity pricing?
What are my payment options?
Our products are billed annually with flexible pricing for any size team or enterprise. Contact our sales teams for more details.
How do the add-ons work with Sonatype Lifecycle?
Our available 'Add-Ons' are not standalone products and do require a license of Sonatype Lifecycle.
Which programming languages and third-party integrations work with Sonatype products?
Sonatype has you covered with 50+ languages and integrations across leading IDEs, source repositories, CI pipelines, and ticketing systems. More details available here.