Product Avatar Image

Sonatype

Show rating breakdown
28 reviews
  • 6 profiles
  • 9 categories
Average star rating
4.5
Serving customers since
2008
Profile Filters

All Products & Services

Product Avatar Image
Sonatype Nexus Repository

23 reviews

Nexus Repository Manager manages components, builds artifacts, and releases candidates in one central location

Product Avatar Image
Sonatype Lifecycle

4 reviews

Precise open source intelligence for your entire DevOps pipeline.

Product Avatar Image
Sonatype Repository Firewall

1 review

Your first line of defense for modern software supply chains.

Product Avatar Image
Sonatype Software Supply Chain Management

0 reviews

Align teams to accelerate digital innovation without sacrificing security or quality.

Product Avatar Image
Sonatype SBOM Manager

0 reviews

Sonatype SBOM Manager is an enterprise-grade solution designed to streamline the management, monitoring, and compliance of Software Bill of Materials (SBOMs) at scale. It provides organizations with a centralized system to efficiently handle both first-party and third-party SBOMs, ensuring adherence to global regulatory requirements and enhancing software supply chain security. Key Features and Functionality: - Comprehensive SBOM Management: Supports ingestion and generation of SBOMs in industry-standard formats like CycloneDX and SPDX, facilitating seamless integration into existing workflows. - Automated Compliance: Automates SBOM ingestion and incorporates a complete Vulnerability Exploitability eXchange (VEX) workflow, aiding organizations in staying ahead of evolving SBOM regulations. - Continuous Monitoring: Provides continuous monitoring of SBOMs for new security vulnerabilities and malware risks, enabling prompt responses to emerging threats. - AI Model Governance: Manages and secures AI components, including Hugging Face AI models, ensuring comprehensive oversight of all software elements. - Flexible Deployment Options: Offers deployment flexibility with SaaS, self-hosted, and air-gapped environments to meet diverse organizational needs. Primary Value and User Solutions: Sonatype SBOM Manager addresses the critical need for transparency and security in software development by providing a robust platform for SBOM management. It simplifies compliance with global regulations, reduces the risk of penalties, and enhances security posture by proactively identifying and mitigating vulnerabilities within the software supply chain. By automating SBOM processes and offering continuous monitoring, it empowers organizations to maintain secure, compliant, and efficient software development practices.

Product Avatar Image
Sonatype Guide

0 reviews

AI coding assistants help teams move fast — but they operate without the context needed to choose secure, high-quality dependencies, often introducing vulnerable components and rework. Sonatype Guide fills that gap by giving AI assistants real-time open source intelligence, ensuring they select the right components so your team can move fast, safely.

Profile Name

Star Rating

19
9
0
0
0

Sonatype Reviews

Review Filters
Profile Name
Star Rating
19
9
0
0
0
Verified User in Financial Services
AF
Verified User in Financial Services
08/10/2023
Validated Reviewer
Verified Current User
Review source: G2 invite
Incentivized Review

Excellent product covers all needs of the artefacts management

Covers all the repo types for all types of CI builds which ticks the boxes for all development teams.
Ganesh L.
GL
Ganesh L.
Microsoft azure cloud analyst | Azure Devops & Azure Admin
07/10/2023
Validated Reviewer
Review source: G2 invite
Incentivized Review

it uniquely precise and accurate nexus scales accross every SDLC phases

The best part here is that it has its intelligence of open source tracking vulnerabilities and many licenses types and integrates seamlessly with all the respective microservice applications and also with all the CI/CD tools without any risks by continuous monitoring
Verified User in Information Technology and Services
UI
Verified User in Information Technology and Services
07/06/2023
Validated Reviewer
Verified Current User
Review source: Organic

Artifact Repo : Nexus

The fact that it supports multiple repository types like maven, docker, BAR files etc

About

Contact

HQ Location:
Fulton, US

Social

@sonatype

What is Sonatype?

Sonatype is the software supply chain management company, helping organizations build faster and safer with open source and AI. As the maintainers of Maven Central and the creators of Nexus Repository, Sonatype has spent years pioneering how the world discovers, manages, and secures third-party components that power modern applications. Sonatype’s Nexus One Platform unifies open source intelligence, governance, and automation to reduce risk and friction across the software development lifecycle. Teams use Sonatype to understand component risk, enforce security and license policies consistently, and automate remediation so developers can fix issues early, where they work. Sonatype’s portfolio includes Nexus Repository for centralized artifact and package management, Nexus Lifecycle for automated dependency management and policy enforcement, Nexus Firewall to prevent risky components from entering the enterprise, and Sonatype SBOM Manager to generate, import, store, and monitor audit-ready SBOMs to support compliance and vulnerability response. Underpinning the platform is Nexus Intelligence, which provides component insights and remediation guidance to help teams act with confidence.

Details

Year Founded
2008