The Sonatype newsroom

Learn the latest about Sonatype. Explore our announcements, press coverage, brand assets, and more.

Contact Our Press Team

Press releases
In the news
Press kit

Press releases

News and Views

Sonatype Named a Leader in Software Composition Analysis (SCA) Software Report by Independent Research Firm

November 13, 2024

News and Views

Sonatype Announces 2024 Elevate Awards Winners

October 28, 2024

Software Supply Chain , News and Views

Sonatype’s 10th Annual State of the Software Supply Chain Report Reveals 156% Surge in Open Source Malware

October 10, 2024

News and Views

Sonatype Achieves AWS Security Competency Status

October 1, 2024

News and Views

Sonatype Names Finalists for 2024 Elevate Awards

September 5, 2024

all day devops

Sonatype Announces Keynote Speakers for 9th Annual All Day DevOps

August 22, 2024

Default

Sonatype Launches End-to-End Software Supply Chain Security Platform Availability in AWS Marketplace

July 23, 2024

Default

Sonatype SBOM Manager Prepares Enterprises for Rapid, Reliable Compliance at Scale

June 26, 2024

Product

Sonatype Announces Integration with ServiceNow to Streamline Software Composition Analysis

May 16, 2024

Open Source , data , Product

Sonatype Uncovers Millions of Previously Hidden Open Source Vulnerabilities Through Unique Shaded Vulnerability Detection System

May 2, 2024

News and Views , Product

Sonatype Launches Industry-First Integrated System of Record for Management of SBOMs

March 19, 2024

Software Supply Chain , Product

Sonatype Introduces Cutting-Edge AI/ML Component Detection

February 22, 2024

News and Views

Sonatype Earns AWS DevOps Competency Status

November 28, 2023

News and Views

Sonatype’s 9th Annual State of the Software Supply Chain Report Reveals Ways to Improve Developer, DevSecOps Efficiency

October 3, 2023

News and Views

Megan Lueders Joins Sonatype as Chief Marketing Officer

September 26, 2023

News and Views

Generative AI Adoption Surges in Software Development Despite Security Risks, Sonatype Research Finds

September 12, 2023

News and Views

Sonatype Drives Intelligent Software Security with New Product Enhancements

August 21, 2023

News and Views

Biden’s Cybersecurity Executive Order fuels seismic changes in software development practices, Sonatype research reveals

August 3, 2023

News and Views

Rashida Hodge Joins Sonatype's Board of Directors, Bringing Innovative Leadership and AI Expertise

July 13, 2023

News and Views

Sonatype Joins AWS ISV Accelerate Program

July 7, 2023

News and Views

Sonatype Repository Firewall Has Prevented More Than $1.5B in Losses from Malicious Attacks

June 20, 2023

News and Views

Sonatype Named a Leader in Software Composition Analysis (SCA) by Independent Research Firm

June 15, 2023

News and Views

Sonatype Launches in AWS Marketplace

June 8, 2023

News and Views

Sonatype Named to 2023 Gartner® Magic Quadrant™ for Application Security Testing

May 23, 2023

News and Views

Sonatype Advances Software Supply Chain Management with New Platform Enhancements

April 25, 2023

News and Views

Sonatype Launches New Partner Acceleration Program to Help Partners Scale and Secure their Customers’ Software Supply Chains

April 3, 2023

News and Views

Sonatype Announces Enhanced Maven Central Experience

March 28, 2023

News and Views

Sonatype Launches Industry's First ‘Run Anywhere’ Platform for Software Supply Chain Management

February 1, 2023

News and Views

Commerzbank AG, ABN Amro Bank NV, Instinet, and Fiserv Win 2022 Sonatype Elevate Awards

December 8, 2022

News and Views

Sonatype Names Finalists for 2022 Elevate Awards

November 29, 2022

News and Views

Sonatype Wins Multiple Awards for Product Excellence and Innovation

November 3, 2022

News and Views

Sonatype and CyberRes Fortify Expand Partnership to Provide Complete Application Security Solution

October 26, 2022

News and Views

Sonatype’s 8th Annual State of the Software Supply Chain Report Finds 96% of Known-Vulnerable Open Source Downloads Are Avoidable

October 18, 2022

News and Views

Sonatype and Cloud Native Computing Foundation Partner to Improve Open Source Security and Raise $50,000 in Diversity Scholarships

October 6, 2022

News and Views

Sonatype Finds 700% Average Increase in Open Source Supply Chain Attacks

September 20, 2022

News and Views

Sonatype Collaborates with Red Hat to Deliver Speed, Security Features and Enhanced Visibility to the Modern Software Factory

August 30, 2022

News and Views

Sonatype Names Mitchell Johnson as Chief Product Development Officer

August 25, 2022

News and Views

Sonatype Achieves Record Growth, Expands Leadership Team with New Board Member and CRO

July 20, 2022

Nexus Lifecycle , Product

Sonatype Enables Engineering Teams to Take Control of InnerSource Components With First-Of-Its-Kind Feature

May 11, 2022

Default

Sonatype Sets Record First Quarter With 62% Increase in YOY Bookings, 95% Renewal Rate, as Software Supply Chain Management Needs Continue to Surge

April 19, 2022

News and Views , Corporate Momentum

Sonatype Exceeds $100M in ARR, Names First President as Demand for Software Supply Chain Management Soars

January 27, 2022

Log4j

Critical Log4j Vulnerability Still Being Downloaded 40% of the Time, Sonatype Research Reveals in New Resource Center

December 22, 2021

News and Views

Sonatype Expands Support for Open Source Communities with Key Partnerships

October 5, 2021

State of the Software Supply Chain

Open Source Continues to Fuel Digital Transformation, Sonatype's 2021 Software Supply Chain Report Reveals Important Trends

September 15, 2021

Product , Sonatype Lift

Sonatype Launches Novel Deep Code Analysis Platform Designed for Developers

June 15, 2021

News and Views

Finalists Announced for Inaugural Sonatype Elevate Awards

June 10, 2021

News and Views , partners

Amazic Announces New Partnership With Sonatype to Bring More Enterprises Developer-Friendly, Full-Spectrum Software Supply Chain Automation and Security

June 10, 2021

News and Views , Product

Sonatype Embraces CycloneDX Standard for Integrating Software Bills of Materials (SBOMs)

May 13, 2021

Nexus Lifecycle , Product

Sonatype Helps Organizations Manage Open Source License Obligations and Speed up Legal Compliance with New Tool

May 4, 2021

Default

Sonatype’s Channel Partner Program Experiences Triple Digital Growth in EMEA For the Second Year Running

March 30, 2021

News and Views , Product

Sonatype Unveils Full-Spectrum Software Supply Chain Management Platform

March 16, 2021

News and Views , Product

Sonatype Acquires MuseDev

March 16, 2021

News and Views , Product , infrastructure as code

Sonatype Adds Infrastructure as Code Security and Compliance

March 16, 2021

Container Security , News and Views , Product

Sonatype Adds Cloud-Native Container and Kubernetes Security for Developers

March 16, 2021

News and Views , partners

Russian Enterprises Turn to Swordfish Security and Sonatype to Combat Risk Associate With Open Source

February 25, 2021

News and Views , partners

Bahwan CyberTek Partners With Sonatype to Mitigate Security Vulnerabilities in Open Source Software

February 18, 2021

News and Views , CapOne

Sonatype Partners With SVA System Vertrieb Alexander GmbH to Help Enterprises Mitigate Risk and Build Software More Securely

January 19, 2021

News and Views , partners

Cigniti Technologies Announces Partnership With Sonatype, Extends AppSec Offering With Best-In-Class Software Composition Analysis

January 6, 2021

partners

Eficode Bolsters Partnership With Sonatype, Extends Best-In-Class Software Composition Analysis With Hosted Solutions

December 10, 2020

News and Views

Sonatype Strengthens Leadership Team With New Chief Revenue Officer; Prepares for Global Expansion

December 8, 2020

partners

Adaptavist Offers Enterprise DevSecOps Solution With Sonatype Partnership

December 1, 2020

Product , infrastructure as code , Fugue

Sonatype and Fugue Partner to Shift Cloud Security Left and Ensure Continuous Policy Compliance

November 12, 2020

oss index , partners

Tidelift Delivers Open Source Vulnerability Data to Subscribers with Sonatype

October 29, 2020

government , Product

Sonatype Delivers Hardened Nexus Platform to DoD’s Platform One, Helps Accelerate Digital Innovation Across Federal Agencies

October 8, 2020

Nexus Lifecycle , Product

Sonatype Introduces Next Generation Dependency Management for Software Developers

October 7, 2020

container , News and Views , Product , NeuVector

Sonatype and NeuVector Partner to Centralize Container and Open Source Security

September 16, 2020

News and Views , 2020 Software Supply Chain Report

2020 State of the Software Supply Chain Report Released; Sonatype Reveals New Speed and Security Benchmarks

August 12, 2020

News and Views , 2020 Software Supply Chain Report

Sonatype’s 2020 State of the Software Supply Chain Report Finds 430% Increase in Next Generation Open Source Cyber Attacks

August 12, 2020

Report/Survey/Whitepaper releases , 2020 DevSecOps Community Survey , healthcare industry

One in Six Developers in Healthcare Industry Report Open Source Software Breaches, Sonatype Finds

June 4, 2020

Report/Survey/Whitepaper releases , 2020 DevSecOps Community Survey , financial services industry

Sonatype Finds Links Between Leading DevSecOps Practices and Happy Developers Within the Financial Services Industry

June 4, 2020

government , DevSecOps in Government , Report/Survey/Whitepaper releases , 2020 DevSecOps Community Survey

Sonatype Survey Finds DevSecOps is a Top Priority in Government

June 4, 2020

Report/Survey/Whitepaper releases , 2020 DevSecOps Community Survey , technology sector

Sonatype Finds Tech Companies Are Peak DevSecOps Performers

June 4, 2020

atlassian , integrations , Product

Sonatype’s Nexus Platform Offers Three New DevOps Integrations for Atlassian

June 2, 2020

The Central Repository , Central , Maven , Report/Survey/Whitepaper releases , COVID-19

Software Development in the UK Falls 28% in Wake of COVID-19, Sonatype Research Reveals

May 21, 2020

Sonatype , Sonatypers

Sonatype Expands Executive Team With Cybersecurity and Open Source Experts

May 14, 2020

Nexus Lifecycle , Nexus Firewall , Bower , Nexus Platform , Product , CocoaPods , Conda , C/C++ , PHP , Cargo , Alpine , Composer , CRAN , Drupal

Sonatype Further Expands Coverage of Nexus Platform

May 13, 2020

all day dev ops , 2020 All Day DevOps

Sonatype Collaborates With All Day DevOps to Connect More Than 6,000 IT Pros Working From Home During the COVID-19 Pandemic

April 16, 2020

2020 DevSecOps Community Survey

Sonatype Finds Mature DevSecOps Practices Lead to Happier Developers, More Secure Code

April 7, 2020

Ruby Gems language , Nexus Platform , Product , C/C++ , PHP

Sonatype Expands its Fully Automated Open Source Security and Governance Solution to Support C/C++, PHP and Ruby

March 12, 2020

awards , Product

Sonatype Channel Partner Program Sees Triple Digit Growth in EMEA

March 5, 2020

Nexus Lifecycle , npm , Javascript , Product

Sonatype Overhauls JavaScript Scanning; Provides npm Automated Pull Requests and More Free Developer Tools

March 3, 2020

Nexus Repository , Product , Helm

Sonatype Streamlines Deployment for Millions of Developers Using Kubernetes, Adds Native Helm Support to Nexus Repository

February 24, 2020

News and Views

Eficode and Sonatype Partner to Secure the Software Supply Chain for Modern Enterprise Organisations

November 27, 2019

devsecops , Container Security , Product

Sonatype Fully Automates Container Security

November 25, 2019

News and Views , Corporate Momentum

Vista Equity Partners Acquires Majority Interest in DevOps Leader Sonatype

November 18, 2019

Default

Sonatype Delivers Premium Open Source Controls to GitHub Users

November 12, 2019

all day devops , News and Views

Sonatype Partners With All Day DevOps to Help Educate More Than 36,000 IT Professionals

November 5, 2019

Product , CocoaPods , Conda

Sonatype’s Nexus Repository Manager Expands OSS Coverage, Sees 40% YoY User Growth

October 25, 2019

open source intelligence , Product , embedded malicious code , malware prevention

Sonatype Delivers First of its Kind, Automated Malware Prevention for Open Source Libraries

September 24, 2019

Product

Micro Focus Bolsters Strategic Partnership With Sonatype, Brings Best-In-Class Open Source Security to All Fortify Customers

September 10, 2019

Nexus Lifecycle , Nexus Firewall , Nexus Repository , Nexus Platform , Product , Golang , Go

Sonatype Goes Long With Go: Delivers Fully Automated Security Solution for Fast Growing Programming Language

July 24, 2019

devsecops , 2019 State of the Software Supply Chain Report , secure coding

2019 State of the Software Supply Chain Report Reveals Best Practices From 36,000 Open Source Software Development Teams

June 25, 2019

Devops , devsecops , Nexus User Conference

Sonatype's Nexus User Conference to Bring 2,000 DevSecOps Leaders Together for Free, Live Streamed Event

June 10, 2019

Red Hat , Container Security , Quay

Sonatype Debuts New Capabilities for Red Hat Quay, Offers Users Continuous Container Security for Open Source

May 7, 2019

News and Views , best workplace

Sonatype Named on Best Workplace Lists by Both Washingtonian Magazine and Battery Ventures

April 29, 2019

Everything Open Source , The Central Repository , Open Source , Central Security Project , CSP

Sonatype and HackerOne Team Up to Make Open Source Safer

March 21, 2019

devsecops , Devops maturity , DevSecOps Community Survey

5,558 IT Professionals Reveal Patterns of Elite DevSecOps Practices

March 4, 2019

artifactory , Nexus Firewall , Product

Sonatype’s Nexus Firewall Now Protects JFrog Artifactory

February 28, 2019

Everything Open Source , Product , Kenna Security

Kenna Security and Sonatype Partner to Enhance Risk-Based Vulnerability Management with Open Source Intelligence

February 26, 2019

Nexus Lifecycle , python , PyPI , open source intelligence

Sonatype Adds End-to-End Security for PyPI Packages

February 6, 2019

Media Hit

LLMs explained: A developer’s guide to getting started

ComputerWeekly.com

February 23, 2024

Media Hit

Where does the rise of AI put incident responders?

TechRadar

February 16, 2024

Media Hit

10 ways generative AI will transform software development

InfoWorld

February 12, 2024

Media Hit

Resolutions for Open Source in 2024 - What Has to Change?

HackerNoon

January 13, 2024

Media Hit

Create an open source security policy for your organization

TechTarget

January 2, 2024

Media Hit

4 key devsecops skills for the generative AI era

InfoWorld

January 1, 2024

Media Hit

Four in five Apache Struts 2 downloads are for versions featuring critical flaw

The Register

December 21, 2023

Media Hit

AI, efficiency and a rise in citizen developers -- development predictions for 2024

BetaNews

December 19, 2023

Media Hit

Lazarus APT attack campaign shows Log4Shell exploitation remains popular

CSO

December 14, 2023

Media Hit

Two years on, 1 in 4 apps still vulnerable to Log4Shell

The Register

December 11, 2023

Media Hit

Just 11% of open-source packages are still being maintained: report

IT Brew

November 1, 2023

Media Hit

CISA targets software identification in push to boost supply chain security

Cybersecurity Dive

October 27, 2023

Media Hit

The Top 50 SaaS CEOs of 2023

The Software Report

October 24, 2023

Media Hit

AI brings a lot more to the DevOps experience than meets the eye

ZDNET

October 20, 2023

Media Hit

Report finds few open source projects actively maintained

InfoWorld

October 12, 2023

Media Hit

Fresh curl tomorrow will patch 'worst' security flaw in ages

The Register

October 10, 2023

Media Hit

20 Tech Experts Share Essential Details To Look For In An SBOM

Forbes

October 9, 2023

Media Hit

Software supply chain attacks on the rise – is old open source software to blame?

SDxCentral

October 5, 2023

Media Hit

Stop blaming maintainers for open source risks

TechRadar

October 3, 2023

Media Hit

Upstream Supply Chain Attacks Triple in a Year

Infosecurity Magazine

October 3, 2023

Media Hit

DC's 2023 Tech Titans

Washingtonian

September 7, 2023

Media Hit

Buggy, Vulnerable Open-Source Code Seeps Into Business Tech

Wall Street Journal

September 5, 2023

Media Hit

The Top 100 Software Companies of 2023

The Software Report

August 22, 2023

Media Hit

Biden’s SBOM mandate a ‘shot heard around the world’, report says

ComputerWeekly.com

August 4, 2023

Media Hit

SBOMs Still More Mandate Than Security

DARK Reading

July 14, 2023

Media Hit

Sonatype Offers Its Malicious Source Code Blocker as a Service

The New Stack

July 11, 2023

Media Hit

100 Best Workplaces for Innovators 2023

Fast Company

July 11, 2023

Media Hit

Software Providers Should Prepare For Liability Right Now—Here’s How

Forbes

July 10, 2023

Media Hit

Software industry leaders debate real costs and benefits of CISA security push

CIO Dive

April 17, 2023

Media Hit

You don’t have to go through hell managing software dependencies

techradar

March 13, 2023

Media Hit

What the National Cybersecurity Strategy means for software providers

SD Times

March 3, 2023

Media Hit

14 Smart Strategies For Establishing A Secure Software Supply Chain

Forbes

February 24, 2023

Media Hit

Sonatype BOM Doctor Evaluates and Helps Patch Java Software Bills of Materials

InfoQ

February 13, 2023

Media Hit

A Year Later, That Brutal Log4j Vulnerability Is Still Lurking

Wired

December 10, 2022

Media Hit

Report: 96% of vulnerable open-source downloads are avoidable

VentureBeat

November 25, 2022

Media Hit

How technology can help redraw the supply chain map

Financial Times

November 22, 2022

Media Hit

Security pros breathe sigh of relief after new OpenSSL flaws less severe than feared

protocol

November 1, 2022

Media Hit

OpenSSL dodges a security bullet

ZDNET

November 1, 2022

Media Hit

3 trillion open source downloads, a 633% rise in malicious activity -- and a worrying sense of security

The Stack

October 18, 2022

Media Hit

Production-ready SBOMs, Sonatype & Red Hat align for slicker software factories

ComputerWeekly.com

August 31, 2022

Media Hit

Protestware on the rise: Why developers are sabotaging their own code

Tech Crunch

July 27, 2022

Media Hit

Digital supply chains: the latest target for cyber attacks

Raconteur

May 5, 2022

Media Hit

Sonatype Defines Path To The Software Supply Chain

Forbes

May 4, 2022

Media Hit

Biden's Cybersecurity Strategy Calls for Software Liability, Tighter Critical Infrastructure Security

DARK Reading

March 2, 2022

Media Hit

Two Months On, Many Developers Are Still Downloading Flawed Log4j Tool

Wall Street Journal

February 10, 2022

Media Hit

Sonatype, which secures open source code, lays groundwork for IPO

VentureBeat

January 27, 2022

Media Hit

March 16, 2021 - Sonatype acquires MuseDev, expands Nexus code analysis platform

Venture Beat

March 16, 2021

Media Hit

March 16, 2021 - Sonatype Acquires MuseDev to Add Code Analysis

March 16, 2021

Media Hit

December 31, 2020 - For CIOs, There’s No Place Like Home (Office)

December 31, 2020

Media Hit

December 23, 2020 - CIOs Expect Tech Investments to Climb in 2021

December 23, 2020

Media Hit

December 18, 2020 - SolarWinds, the World’s Biggest Security Failure and Open Source’s Better Answer

December 18, 2020

Media Hit

December 09, 2020 - The future of DevOps: 21 predictions for 2021

December 9, 2020

Media Hit

October 13, 2020 - Sonatype: what dependency management did next (generation)

October 13, 2020

Media Hit

October 07, 2020 - Sonatype Advances Open Source Code Quality, Security

October 7, 2020

Media Hit

October 07, 2020 - Sonatype helps development teams handle code dependencies

October 7, 2020

Media Hit

October 06, 2020 - Open source security: Malicious NPM packages broadcast sensitive user data online

October 6, 2020

Media Hit

October 06, 2020 - Four npm packages found uploading user details on a GitHub page

October 5, 2020

Media Hit

October 01, 2020 - Sonatype Finds 'Typosquatting' Packages in npm

October 1, 2020

Media Hit

August 21, 2020 -'Next-Gen' Supply Chain Attacks Surge 430%

August 21, 2020

Media Hit

August 13, 2020 - The state of application security: What the statistics tell us

August 13, 2020

Media Hit

August 13, 2020 - Open Source Supply Chain Attacks Surge 430%

August 13, 2020

Media Hit

August 12, 2020 -Report: A 430% increase in next-generation supply chain attacks in last year

August 12, 2020

Media Hit

August 12, 2020 - High performing developers release more often

August 12, 2020

Media Hit

August 12, 2020 - ‘Open Season on Open Source,’ Supply Chain Survey Warns

August 12, 2020

Media Hit

August 12, 2020 -Upstream attacks on open source ecosystem up 400% as criminals seek to compromise applications at scale

August 12, 2020

Media Hit

July 29, 2020 - Sonatype ranks sixth on Fast Company’s Best Workplaces for Innovators

July 29, 2020

Media Hit

July 23, 2020 - What is DevSecOps? Why it's hard to do well

July 23, 2020

Media Hit

June 25, 2020 - Second Annual Cybersecurity Impact Awards Announces Honorees

June 25, 2020

Media Hit

June 19, 2020 - Interview: Sonatype’s Brian Fox on open source security and ‘drama-free’ DevSecOps

June 16, 2020

Media Hit

June 3, 2020 - Sonatype’s Nexus Platform Offers Three New DevOps Integrations for Atlassian

June 3, 2020

Media Hit

June 1, 2020 - Octopus Scanner malware infected GitHub repositories & developers’ devices

June 1, 2020

Media Hit

June 1, 2020 - How Octopus Scanner malware attacked the open source supply chain

June 1, 2020

Media Hit

May 27, 2020 - It's All in the Feedback Loops

May 28, 2020

Media Hit

May 21, 2020 - Productivity and WFH: Developers slow to bounce back worldwide as lockdown lifts

May 21, 2020

Media Hit

May 20, 2020 - Five Reasons Happy Developers Build in Better Security

May 20, 2020

Media Hit

May 20, 2020 - 16 cybersecurity startups that are promising even in a down economy

May 20, 2020

Media Hit

May 8, 2020 - The Hot 150 Cybersecurity Companies To Watch In 2020

May 8, 2020

Media Hit

April 13, 2020 - Secure Your Golang Projects Using Nancy

April 13, 2020

Media Hit

April 10, 2020 - The New Stack Context: The Secret of Successful DevSecOps Shops

April 10, 2020

Media Hit

April 7, 2020 - Happy developers write secure code, report claims

April 7, 2020

Media Hit

April 7, 2020 - Happy Devs like DevOps, but not necessarily managers, other Devs…

April 7, 2020

Media Hit

April 7, 2020 - DevSecOps Survey: You need happy developers to build secure software

April 7, 2020

Media Hit

March 27, 2020 - Open Source Developers Are Security’s New Front Line

March 27, 2020

Media Hit

March 16, 2020 - Microsoft's GitHub absorbs NPM into its code-hosting empire

March 16, 2020

Media Hit

March 16, 2020 - GitHub's NPM Acquisition Will Boost JavaScript Security

March 16, 2020

Media Hit

March 9, 2020 - Cloud And Open Source Can Reinvent Tech Conferences In The COVID-19 (And Carbon-Negative) Era

March 9, 2020

Media Hit

February 10, 2020 - What Is DevSecOps and How to Enable It on Your SDLC?

February 10, 2020

Media Hit

February 5, 2020 - Who's leading in DevOps? Click here to see the shortlist for DevOps Excellence 2020

February 5, 2020

Media Hit

January 27, 2020 - New IoT Security Regulations: The Devil’s in the Details

January 27, 2020

Media Hit

January 27, 2020 - Facebook's Nick Clegg claims Whatsapp messages “cannot be hacked"

January 27, 2020

Media Hit

January 21, 2020 - Sonatype: Secure code with less hassle

January 21, 2020

Media Hit

November 26, 2019 - Open Source Code Security and Your Enterprise

November 26, 2019

Media Hit

November 12, 2019 - Sonatype Delivers Premium Open Source Controls to GitHub Users

November 12, 2019

Media Hit

November 12, 2019 - Deloitte's Fast 500 list includes 10 Maryland tech companies

November 8, 2019

Media Hit

November 5, 2019 - Developers, The Enterprise, and Open Source Security

November 5, 2019

Media Hit

October 24, 2019 - Sonatype Nexus Lifecycle and WhiteSource: Buyer's guide and reviews October 2019

October 24, 2019

Media Hit

October 18, 2019 - Arm joins forces with UK government in “significant milestone” in designing out cyber threats

October 18, 2019

Media Hit

October 14, 2019 - 5 practical ways your organization can benefit from DevSecOps

October 14, 2019

Media Hit

October 16, 2019 - Open Source Vulnerabilities Cut Across Sectors

October 9, 2019

Media Hit

October 9, 2019 - Application Security: Why Open Source Components Matter

October 9, 2019

Press kit

Access some basic statistics, descriptions, and brand assets you may find helpful when writing about Sonatype.

2008

year founded in Fulton, Maryland

600+

employees from 50 countries and 15 languages

2,000+

organizations supported, including 70% of Fortune 100

15 million

developers rely on Sonatype

Fulton, MD

headquarters

Maven Central

stewards

Download

Logos

Access our collection of approved corporate logos and brand guidelines for use. Download

Download

Leadership

Find high-resolution photos of our fearless innovators on the executive team. Download

Download

Product

Find individual logos for products within the Sonatype Platform. Download

Download All

Sonatype is the software supply chain management company. We enable organizations to innovate faster in a highly competitive market. Our industry-leading platform empowers engineers to develop software fearlessly and focus on building products that power businesses. Sonatype researchers have analyzed more than 120 million open source components – 40x more than its competitors – and the Sonatype platform has automatically blocked over 115,000 malicious components from attacking software development pipelines. Enabling high-quality, secure software helps organizations meet their business needs and those of their customers and partners. More than 2,000 organizations, including 70% of the Fortune 100 and 15 million software developers, rely on our tools and guidance to be ambitious, move fast and do it securely. To learn more about Sonatype, please visit www.sonatype.com.