“Sonatype was founded on the principles of open source - that collaboration and community can help developers innovate faster and create higher quality software,” said Brian Fox, CTO and co-founder of Sonatype. “Nexus Repository has become a defacto standard within DevOps toolchains worldwide and is simply the best way to continuously control binaries, build artifacts, and release candidates as they flow through the modern SDLC. By contributing repository formats to the community, we’re maximizing developer flexibility and further accelerating continuous innovation.”
- Download Nexus Repository OSS
- Analyze applications using npm components for known security vulnerabilities
Sonatype is the world’s leading provider of vast data intelligence and DevOps-native developer tools to help organizations harness all the goodness in open source software, without any of the risk. As the creators of Apache Maven, the Central Repository, and Nexus Repository, Sonatype helped to pioneer open source software development. Today, more than 10 million developers around the world depend on Sonatype’s Nexus platform to automatically govern the volume, variety, and security of open source components being used to build modern software applications. Sonatype is privately held with investments from New Enterprise Associates (NEA), Accel Partners, Hummer Winblad Venture Partners, and Goldman Sachs.