Login Contact Us Book a Demo

The Sonatype Newsroom

Explore Sonatype's latest announcements, media coverage, threat research, brand assets, and more.

Featured News and Stories

June 18, 2026

Sonatype Named a Leader in the 2026 Gartner® Magic Quadrant™ for Software Supply Chain Security

Recognized for Completeness of Vision and Ability to Execute

Read More

white logo of

Miasma campaign poisons 20-plus npm packages, hunts for developer secrets

June 29, 2026

white logo of

2026: The Year of AI-Assisted Attacks

May 4, 2026

Press Releases

News and Views

Sonatype Named a Leader in the 2026 Gartner® Magic Quadrant™ for Software Supply Chain Security

June 18, 2026
Read More
News and Views

Sonatype Names Three Industry Veterans to Executive Team to Lead the Next Chapter of Agentic Development

June 9, 2026
Read More
News and Views ,  Product Updates ,  Sonatype Research

Sonatype Firewall Extends Malicious Package Protection to Any Repository

May 27, 2026
Read More
Open Source ,  News and Views

Sonatype and Package Registry Leaders Unite to Address Open Source Sustainability Crisis

May 6, 2026
Read More
News and Views ,  Malware ,  Sonatype Research

Sonatype Releases Q1 2026 Open Source Malware Index: Trust Abuse Most Successful Attack Vector

April 14, 2026
Read More
News and Views ,  AI ,  Sonatype Research

Sonatype Research Finds AI Coding Safety Gains Rely on Real-Time Software Intelligence, Not Just Larger Models

March 24, 2026
Read More
See All Press Releases

Sonatype Threat Research

Powering unmatched visibility and insights

Sonatype’s world-class Security Research team leads the market in identifying and analyzing threats within the open source ecosystem. With a combination of automated intelligence, expert analysis, and secondary expansion, the team uncovers new forms of open source malware, software supply chain attacks, and emerging vulnerabilities. From in-depth reports to real-time threat detection, Sonatype Security Research powers the insights that keep our customers ahead of adversaries and sets the standard for trust in software development.

Learn more

In the News

TheStack-logo

OSS security finally gets a Magic Quadrant

June 29, 2026
Continue
ZDNet-logo

Malicious apps got into the Arch User Repository - how to protect yourself

June 29, 2026
Continue
theregister-logo

Miasma campaign poisons 20-plus npm packages, hunts for developer secrets

June 29, 2026
Continue
Security Week logo

Linux Foundation Unveils New Open Source Security Project Akrites

June 29, 2026
Continue
compare-the-cloud-logo--tinified-trimmed-removebg-preview

Sonatype appoints new CRO, CMO and CHRO as it scales agentic software development platform

June 29, 2026
Continue
theNewStack-logo

After Fable 5 ban, Anthropic and 19 organizations launch open source security body

June 29, 2026
Continue
See All Media
2026 SSCR hardcover book interior and front

2026 State of the Software Supply Chain Report

Sonatype was the first to share year-over-year analyses of open source consumption and threat data. For over a decade, the State of the Software Supply Chain® Report has provided developers and security teams with insights into trends, risks, and threats related to open source software — ultimately helping them better understand and manage their software supply chains.

Learn more

Press Kit

Access some basic statistics, descriptions, and brand assets you may find helpful when writing about Sonatype.
Contact PR Team
2008
year founded in Fulton, Maryland
0
+
employees from 50 countries and 15 languages
0
+
organizations supported, including 70% of Fortune 100
15 MILLION
developers rely on Sonatype
FULTON, MD
headquarters
MAVEN
Central stewards

Logos

Access our collection of approved corporate logos and brand guidelines for use.
Download

Leadership

Find high-resolution photos of our fearless innovators on the executive team.
Download

Product

Find individual logos for products within the Sonatype Platform.
Download