SON_OSSIndex_Reverse (1)

Repository Component Intelligence

Learn more about binaries cached in your Nexus Repositories with Sonatype OSS Index data.

Nexus Tools for Frictionless Security.

Icon_1_blurple

Vulnerability details for your components.

Search millions of components to find known, publicly disclosed vulnerabilities across a wide range of ecosystems.

Icon_2_blurple

Component based matching for enhanced intelligence.

Designed for fast, actionable insights when analyzing open source repository components.

Icon_3_blurple

Repository security reports.

Get a full summary of security vulnerabilities in your Nexus OSS repositories.

Download Nexus Repository OSS 3.25

DOWNLOAD

Download Nexus Repository OSS 3.25

DOWNLOAD

Need DevSecOps at Scale?

OSS Index and the associated tools are and always will be free to the community. The data we gather is derived from public sources, and does not include human curated intelligence nor expert remediation guidance.

Software development teams who want to scale this information, and automated open source governance with precise, curated and highly actionable intelligence across their entire SDLC should check out the Nexus Platform. Release faster while controlling open source risk.

NexusFirewall_Vertical_white@2x

Automatically stop defective open source componenents from entering your SDLC.

LEARN MORE
NexusRepo_Vertical_white

Manage libraries and store artifacts in a universal repository and share them across development teams.

LEARN MORE
NexusLifecycle_Vertical_white

Empower teams with precise component intelligence to enforce policies and continuously remediate risk.

LEARN MORE
NexusAuditor_Vertical_white

Generate a software bill of materials to identify open source components used within 3rd party or legacy applications.

LEARN MORE
Sonatype Envelope

Ready to Try Sonatype?

Secure and automate your software supply chain.

Contact Us Today
Twitter LinkedIn Facebook YouTube GitHub
Products
Free Tools
Solutions
Resources
Customer Portal
Company
SON_logo_white@2x copy trimmed

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759

Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102

Australia Office - 60 Martin Place Level 1, Sydney, NSW 2000, Australia

London Office -168 Shoreditch High Street, E1 6HU London

Subscribe for all the latest software security news and events

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service    Privacy Policy    Modern Slavery Statement    Event Terms and Conditions   Do Not Sell My Personal Information