Smarter risk management professionals use Nexus solutions to eliminate open source risk.
Smarter risk management professionals use Nexus solutions to eliminate open source risk.
Smarter risk management professionals use Nexus solutions to eliminate open source risk.
Smarter risk management professionals use Nexus solutions to eliminate open source risk.
Smarter risk management professionals use Nexus solutions to eliminate open source risk.
Transparency into binding open source licencing requirements before, during and after the software development process.
Avoid copyright infringement by understanding 'copyleft' legal obligations within third-party code.
Get a full Software Bill of Materials (SBOM) for shipped applications to prove third-party licensing obligations and copyright requirements.
Transparency into binding open source licencing requirements before, during and after the software development process.
Avoiding copyright infringement by understanding "copyleft" legal obligations within third-party code.
Having a full Software Bill of Materials (SBOM) for shipped applications to prove third-party licensing obligations and copyright requirements.
Manage libraries and store artifacts in a universal repository and share them across development teams.
Empower teams with precise component intelligence to enforce policies and continuously remediate risk.
Identify and remediate OSS vulnerabilities with precise intelligence at CI and deployment.
The Sonatype License Obligation Review tool (LORT) is a curated database of open source license obligations across multiple categories, types, and threat groups. LORT helps open source governance teams clearly understand their license obligations to better define policies.
The Sonatype License Obligation Review tool (LORT) is a curated database of open source license obligations across multiple categories, types, and threat groups. LORT helps open source governance teams clearly understand their license obligations to better define policies.
LORT displays all license obligations including non-standard terms, copyright information, and commercial use restrictions in a single view. Legal teams save time from manually reviewing every open source license to identify risk. LORT includes:
LORT displays all license obligations including non-standard terms, copyright information, and commercial use restrictions in a single view. Legal teams save time from manually reviewing every open source license to identify risk. LORT includes:
"Manual processes were the norm. for investigating each individual open source license. The team realized they needed to implement automated security management for licensing and governance across all development teams."
Dr. Antje Nowack, Head of Research and Basic Concerns at Creditreform
Creditreform uses the Nexus Platform to scale vulnerability detection.
Read how your peers proactively control open-source use to better manage risk.
Use Nexus Vulnerability Scanner and find out if your open source has licencing requirements.
Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759
Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102
Australia Office - 60 Martin Place Level 1, Sydney, NSW 2000, Australia
London Office - 168 Shoreditch High Street, E1 6HU London
Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.