Login Contact Us Book a Demo

The Sonatype Newsroom

Explore Sonatype's latest announcements, media coverage, threat research, brand assets, and more.

Featured News and Stories

January 28, 2026

Sonatype Research Reveals OSS Malware Grows 75% as Yearly Open Source Downloads Surpass 9.8 Trillion

2026 State of the Software Supply Chain® report finds AI-driven development accelerates risk and expands attack surface, making enforceable AI ...

Read More

white logo of

Open source devs consider making hogs pay for every download

February 28, 2026

white logo of

Report: AI hallucinates 27% of upgrade recommendations for open source projects

January 28, 2026

Press Releases

Software Supply Chain ,  News and Views ,  Sonatype Research

Sonatype Research Reveals OSS Malware Grows 75% as Yearly Open Source Downloads Surpass 9.8 Trillion

January 28, 2026
Read More
News and Views ,  Product ,  AI

Sonatype Introduces Guide, the Intelligent Solution for Secure Agentic Development

December 9, 2025
Read More
News and Views ,  Sonatype Research

Sonatype Intelligence Reveals CVE Program Leaves Majority of Vulnerabilities Unscored

November 20, 2025
Read More
News and Views ,  Product ,  AI

Sonatype Unveils Nexus One: An AI-Native DevSecOps Platform to Secure and Accelerate Software Innovation

November 19, 2025
Read More
News and Views

Sonatype Celebrates Grand Opening of India Innovation Hub in Hyderabad

November 10, 2025
Read More
News and Views

Sonatype Announces 2025 Elevate Award Winners & Finalists

October 20, 2025
Read More
See All Press Releases

Sonatype Threat Research

Powering unmatched visibility and insights

Sonatype’s world-class Security Research team leads the market in identifying and analyzing threats within the open source ecosystem. With a combination of automated intelligence, expert analysis, and secondary expansion, the team uncovers new forms of open source malware, software supply chain attacks, and emerging vulnerabilities. From in-depth reports to real-time threat detection, Sonatype Security Research powers the insights that keep our customers ahead of adversaries and sets the standard for trust in software development.

Learn more

In the News

The A Register

Open source devs consider making hogs pay for every download

February 28, 2026
Continue
Entrepreneur_logo

The Open Source Economy is Cracking and Europe’s SMEs are on the Fault Line

February 24, 2026
Continue
CSO Online

Software developers: Prime cyber targets and a rising risk vector for CISOs

February 9, 2026
Continue
Forbes logo

Every Developer Is Now A Risk: AI, Accountability And The Future Of Software

February 6, 2026
Continue
Developer Tech News

Cyber Security Expo 2026: Machine trust in modern software delivery

February 5, 2026
Continue
IT PRO

"The CVE system isn’t working – what's next? "

February 4, 2026
Continue
See All Media
SSCR - Computer Display (1)

10th Annual State of the Software Supply Chain Report

Sonatype was the first to share year-over-year analyses of open source consumption and threat data. For over a decade, the State of the Software Supply Chain® Report has provided developers and security teams with insights into trends, risks, and threats related to open source software — ultimately helping them better understand and manage their software supply chains.

Learn more

Press Kit

Access some basic statistics, descriptions, and brand assets you may find helpful when writing about Sonatype.
Contact PR Team
2008
year founded in Fulton, Maryland
0
+
employees from 50 countries and 15 languages
0
+
organizations supported, including 70% of Fortune 100
15 million
developers rely on Sonatype
Fulton, MD
headquarters
Maven
Central stewards

Logos

Access our collection of approved corporate logos and brand guidelines for use.
Download

Leadership

Find high-resolution photos of our fearless innovators on the executive team.
Download

Product

Find individual logos for products within the Sonatype Platform.
Download