What We Learned from Studying 36,000 OSS Projects | Press Release

Products
PRODUCTS
Powered by Nexus IQ

Nexus Lifecycle
Eliminate OSS risk across the entire SDLC.

NEW! Advanced Development Pack

Nexus Firewall
Protect Nexus and Artifactory repos from OSS risk.

Nexus Lifecycle Foundation
Identify open source risk at CI and deployment.

Nexus Auditor
Monitor production apps for OSS risk.

Nexus Repository Manager

Professional Edition
Universally manage binaries and artifacts with HA and support.

OSS Edition
Universally manage binaries and artifacts for FREE.

Research and Free Tools

Nexus Intelligence
Learn the whole truth about open source risk.

OSS Index
Visit our free database of known open source vulnerabilities.

Nexus Integrations
Integrate Nexus with your favorite tools and languages.

Free Developer Tools
A free, developer-friendly suite of tools to find and fix open source vulns.

Nexus Vulnerability Scanner
See if your applications are vulnerable.

Pricing

Nexus Platform Pricing
We have the right package for you.
No-Pressure Sales

Keep Calm, Get Nexus. Chat with our experts to learn why the Nexus Platform is the smart choice.

SCHEDULE A CALL
Success Stories
Solutions
SOLUTIONS
For Professionals

Developers

Application Security

DevSecOps

Legal & Compliance

For Industries

Government

Financial Services

Manufacturing

Technology

Healthcare
Resources
RESOURCES
Content

White Papers

Webinars

Videos

Documentation

Sonatype Blog

Sonatype Partners

Partners

Community

my.sonatype.com

Workshops

Nexus Exchange

Support

Upcoming Events

Events
About
ABOUT US
About Sonatype

Products

Management

Documentation

Press Releases

Media

Careers

Contact Us
Blog
FREE TOOLS

Products
Success Stories
Solutions
Resources
- Success Stories
- White Papers
- Webinars
- Partners
- Exchange
- Training
- Videos
- Documentation
- Community
- Support
About
Blog
FREE APP SCAN

Sonatype Hub

Product Videos | Sonatype

Nexus Lifecycle

PHP-CC++ External Demo

How to set up npm Automated Pull Requests using Nexus Lifecycle & CI

Learn how to create automated npm pull requests using Nexus Lifecycle and your CI tools. This technical deep-dive outlines the ...

JavaScript Dependency Management

Sonatype reviews JavaScript improvements and dependency management using Nexus Lifecycle, AuditJS, and npm automated pull reque...

Overview of Remediation Permissions

A review of Sonatype’s newest permissions focused on remediation efforts - waiving policy violations, changing security vulnera...

Policy-oriented Reporting with Nexus Lifecycle

We recently started down a path to make using even Nexus Lifecycle easier for our users to enforce their open source policies a...

Nexus Lifecycle: Container Vulnerability Management with Clair

Nexus Lifecycle + Clair integration for container vulnerability management

Nexus Lifecycle: Automated Pull Requests in GitHub

Automated Maven pull requests available in GitHub to automatically fix issues related to open source risk.

How to Configure Policy Grandfathering within Nexus Lifecycle

Learn how to configure policy grandfathering per organization and how it can be tailored to each application.

Policy Grandfathering in Nexus Lifecycle: Automate OSS Governance at Your Own Pace.

Remove the noise of policy violations when on-boarding applications within Nexus Lifecycle. With the new Grandfathering feature...

Nexus Lifecycle: How to identify newly vulnerable components across your application portfolio

Find out how easy it is to identify a specific component in your applications with Nexus Lifecycle.

Previous
1
2
3
4
Next

Twitter
LinkedIn
Facebook
Instagram
YouTube
GitHub

Products

Nexus Firewall
Nexus Lifecycle
Nexus Lifecycle Foundation
Nexus Auditor
Nexus Repository Pro
Nexus Repository OSS
Nexus Integrations
Advanced Development Pack
Pricing

Security Research

Nexus Intelligence
CVE Insights
OSS Index
Nexus Vulnerability Scanner

Solutions

Developers
AppSec
DevSecOps
Legal & Compliance
Government
Financial Services
Manufacturing
Technology
Healthcare

Resources

Success Stories
White Papers
Webinars
Partners
Exchange
Training
Videos
Documentation
Community
Support

About

About Sonatype
Events
Management
Investors
Press Releases
Press Kit
Media Coverage
Careers
Contact Us

Products
Security Research
Solutions
Resources
About

Twitter
LinkedIn
Facebook
Google+
YouTube
GitHub

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759
Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102
Australia Office - 60 Martin Place Level 1, Sydney, NSW 2000, Australia
London Office - 168 Shoreditch High Street, E1 6HU London

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service Privacy Policy Event Terms and Conditions

window.dataLayer = window.dataLayer || []; function gtag(){dataLayer.push(arguments);} gtag('js', new Date()); gtag('config', 'UA-137036301-1');