Robuta

Sonatype is recognized as a Visionary in the 2025 Gartner Magic Quadrant for AST, highlighting its leadership in open source security and SBOM management.

Explore the software supply chain landscape, emphasizing the need for responsible open source consumption, enhanced security, and transparency.

Compare Sonatype Nexus Repository and JFrog Artifactory head-to-head. Discover why Nexus Repository is the favorite among developers.

Sonatype provides intelligence & automated governance to help you build faster & safer with open source and AI. From the creators of Nexus Repository.

Oct 27, 2023 - Software Development News

Discover how AI and evolving practices reshape application security. Download the Gartner report for strategies to strengthen your AppSec program.

Accelerate secure software development on AWS with Sonatype's solutions, ensuring quality code and proactive risk management throughout your supply chain.

Nov 27, 2023

Extension for Visual Studio Code - Sonatype Nexus IQ Extension for VSCode

See how Endress Hauser uses Sonatype Lifecycle to remove at-risk open source components before they reach production.

Oct 6, 2025 - Fix the Sonatype OSS Index 401 Unauthorized error in OWASP Dependency-Check Maven Plugin. Guide to configure authentication and NVD API keys.

OSS Index is a free catalogue of open source components and scanning tools to help developers identify vulnerabilities, understand risk, and keep their...

As the stewards of the Central Repository, the creators of the Apache Maven project and the distributors of the Nexus open source repository manager,...