The 2020 State of the Software Supply Chain Report is available!

Study Shows High-Performance Dev Teams Fix OSS Vulns 26x Faster | Press Release

blog-logo Sonatype Blog

Salesforce and Nexus: The Real Results of Automation [Video]

By Mark Miller on November 14, 2018 Nexus Firewall
Mary Lee from Salesforce explains how automating the open source component approval process for 800 jar files went from 25 days of manual evaluation down to 5 minutes of automation with the Nexus
Read More...

The Un-Conference 2018

By Derek Weeks on May 16, 2018 Nexus Lifecycle
On June 6 - 7, we are hosting an Un-Conference. Its our first annual Nexus User Conference and we're super excited about it. And with over 1,000 people registered to attend, it looks like we're not
Read More...

Nexus Firewall Extends Support for RubyGems and RPM

By Michelle Dufty on March 23, 2018 rpm
Nexus Firewall now supports RubyGems and RPM
Read More...

Nexus Repository 3.9 Released with a new Upload UI and Firewall Support

e are pleased to announce the release of Nexus Repository 3.9. This release adds two major features: (1) Components can now be uploaded directly from the UI and (2) Nexus Repository Pro is no longer
Read More...

Nexus Firewall is now available for Repo OSS users!

By Michelle Dufty on March 01, 2018 Nexus Firewall
Nexus Firewall is now available to more than 10 million developers using Nexus Repository OSS. Nexus Firewall automatically prevents open source software components with known security
Read More...

Concerned about Container Security? Try the Nexus Platform.

By Michelle Dufty on August 10, 2017 Nexus Lifecycle
Native Container Scanning for Docker Containers and a Private Container Registry
Read More...

Nexus Firewall Grows with Support for PyPI

By Jamie Whitehouse on April 19, 2017 Nexus Firewall
Sonatype’s Nexus Firewall enables development teams to evaluate every PyPI package they download from public repositories for license, security, & other risks
Read More...

DevSecOps: Better Software, Faster

By Derek Weeks on February 08, 2017 repository health check
1 in 16 open source and third-party components downloaded last year included a known vulnerability. That may not seem like too many until you realize the average company downloads well over 200,000
Read More...