At Sonatype, we know that two things are true:
-
Security, quality, and speed are critical to modern software (business) success.
-
The world's best software starts with the world's best components.
That's precisely why our software supply chain automation solutions automatically and continuously infuse the highest quality components into every aspect of software development life cycles (SDLCs).
It's also why we're excited to announce a $30 million financing led by Goldman Sachs' Principal Strategic Investments Group, with full participation from our existing investors, New Enterprise Associates (NEA), Accel Partners, Hummer Winblad Venture Partners, Morgenthaler Ventures, and Bay Partners.
Clearly, this is a watershed event for our company. Therefore, I wanted to take a few minutes to reflect on the past, present, and future of our industry.
Separately, I wanted to share some key statistics highlighting our progress thus far.
Software development past
In 1983, Richard Stallman created GNU, the world's first open source project. This one event set into motion a wave that would eventually transform the discipline of software engineering from a manual process involving "coding on keyboards"; to an automated process involving the "assembly of prefabricated component parts."
Today, this wave is known as open source software manufacturing, and it literally represents the greatest innovation wave in the history of the world. It's tremendous energy is fueled by an enormous volume and variety of reusable parts. Furthermore, this wave has a familiar motion that closely resembles how physical goods, like automobiles, are manufactured.
But the wave is not invincible. It's two big weaknesses are (1) parts are not created equal, and (2) parts age and grow stale quickly.
Software development present
Faced with intense pressure to deliver high quality and secure software faster than ever, today's development organizations need tools to make it automatically obvious what parts within the wave are good, and what parts are not. Furthermore, they require the ability to track and trace in real time the precise location of every part throughout the entire software supply chain.
Without such tools, development organizations are forced to surf this powerful wave while blindfolded. Inevitably, mistakes are made and these organizations fall into shark infested waters where they face a variety of threats including restrictive licenses, security vulnerabilities, and downright waste due to significant amounts of unplanned work and excessive context switching.
Software development future
As software development leaders around the world continue to grapple with intense demands for security, quality, and speed -- they are simultaneously embracing our software supply chain automation tools.
Today, more than 90,000 organizations around the world use:
- Sonatype Nexus Repository to efficiently organize and manage components.
- Sonatype Repository Firewall to automatically protect themselves from undesirable components.
- Sonatype Lifecycle to continuously monitor components across their entire software supply chain.
Going forward, this number will continue to grow, because the bottom line is this: With Sonatype on their side, organizations improve software security, quality, and speed -- and benefit from a smooth and fast ride on the open source innovation wave.
Some key stats
- Last year, developers requested more than 30 billion components fromMaven Central to manufacture the software applications that run the world.
- Today more than 90,000 organizations use Sonatype's solutions to manage reusable components and improve the security, quality and speed of their software development life cycles.
- Strong YoY growth in Sonatype Nexus Repository market share is driven by universal support for language formats including, Maven, Docker, npm, Bower, RubyGems, and NuGet.
- 1 in 14 components downloaded to a repository manager is marked by a known security vulnerability. This fact is driving solid adoption of our Sonatype Repository Firewall solution.
- The rapid emergence of DevOps is driving demand for Sonatype Lifecycle because it is the world's only component intelligence solution fast enough to keep pace.
- Our customers love our products as evidenced by our best-in-class customer retention rate.
Thank you
Our current momentum would not be possible without the support of our valued customers, trusted partners, and dedicated employees. And, I especially want to thank Brian Fox, Sonatype co-founder and VP Product Management, whose insight, leadership, and perseverance over the years have been critical to our success.
Finally, and most importantly, I want to thank the 90,000 active organizations and their developers that make up the Sonatype community and our growing ecosystem of technology partners for believing in and supporting us. Together, we will continue to revolutionize how software is built.
