Sonatype stories
Sonatype updates Repository Firewall to target open-source malware
Thu, 1st May 2025
#
virtualisation
#
application security
#
devsecops
Sonatype enhances Repository Firewall to proactively block open source malware, integrating Zscaler and supporting Docker and AI models for robust DevSecOps protection.
Sonatype reports rise in open source malware to 17,954
Thu, 3rd Apr 2025
#
malware
#
firewalls
#
supply chain
Sonatype's latest Open Source Malware Index reveals a staggering rise in malware, with over 17,900 packages identified in Q1 2025, reflecting evolving threats.
Sonatype launches AI tool to secure open source tech use
Fri, 7th Mar 2025
#
devops
#
supply chain
#
apm
Sonatype has unveiled its new AI Software Composition Analysis capabilities to enhance security and governance for open source AI technologies in enterprises.
Open source malware up 156%, Sonatype research shows
Fri, 13th Dec 2024
#
malware
#
edutech
#
endpoint protection
Sonatype's latest research reveals a shocking rise in open source malware, with over 778,500 malicious packages detected in 2024, primarily affecting government organisations.
Sonatype & OpenText unite for enhanced app security
Fri, 22nd Nov 2024
#
application security
#
devsecops
#
supply chain
Sonatype and OpenText have partnered to create an integrated platform that enhances application security, streamlining compliance and risk management.
Sonatype named leader in software analysis by Forrester
Wed, 20th Nov 2024
#
supply chain
#
software development
#
sonatype
Sonatype has been named a leader in Software Composition Analysis by Forrester, praised for its high performance in security and dependency management.
Sonatype report highlights rising threats in open source
Tue, 15th Oct 2024
#
supply chain
#
open source
#
cybersecurity
Sonatype's latest report reveals open source software now comprises 90% of modern development, with a staggering 156% rise in malicious packages.
Sonatype brings software security tools to AWS Marketplace
Tue, 30th Jul 2024
#
hyperscale
#
supply chain
#
open source
Sonatype’s SBOM Manager and Nexus Repository are now available on AWS Marketplace, offering AWS users enhanced software supply chain security and management.
Sonatype launches SBOM Manager to enhance software security
Mon, 8th Jul 2024
#
saas
#
partner programmes
#
supply chain
Sonatype releases its SBOM Manager, a crucial tool to help organisations track and manage software components.
Sonatype unveils system revolutionising open source code security
Tue, 7th May 2024
#
supply chain
#
risk & compliance
#
cybersecurity
Sonatype pioneers a system that detects hidden security threats in open-source code, uncovering more than 4.5 million previously undetected vulnerabilities.
Sonatype launches new SBOM Manager at KubeCon Europe
Fri, 22nd Mar 2024
#
supply chain
#
risk & compliance
#
cybersecurity
Sonatype debuts its innovative SBOM Manager at KubeCon Europe, offering companies improved compliance and cybersecurity in software supply chains.
US' cybersecurity EO has changed software development, says Sonatype
Fri, 4th Aug 2023
#
supply chain
#
cybersecurity
#
software development
92% of large enterprises now maintain an SBOM (software bill of materials) or plan to implement it in the next year.
Sonatype and HackerOne partner on open source vulnerability reporting
Mon, 25th Mar 2019
#
partner programmes
#
supply chain
#
open source
Without a standard for responsible disclosure, even those who want to disclose vulnerabilities responsibly can get frustrated with the process.
Huge vulnerabilities in software supply chain being exploited
Thu, 4th Oct 2018
#
devops
#
supply chain
#
apm
A very exposing report has revealed breaches are rising and response times are falling, largely due to shoddy software development practices.