Sonatype Repository Firewall has always been a key component of our platform, providing Sonatype Nexus Repository customers with perimeter protection from open source risk. However, it has been clear that many organizations have heterogeneous DevOps environments, where both Nexus Repository and Artifactory are used to store and distribute components and build artifacts throughout the entire SDLC. With the latest release of Firewall, we now provide universal protection for all development environments from consuming defective open source components.
Repository Firewall can be configured to run in audit or quarantine mode. With audit mode, Artifactory customers see a detailed log of what is proxied and if there are any issues. And with quarantine mode, risky components that fail to meet policies created within Repository Firewall are actually blocked from being used by developers.
With the number of vulnerable components on the rise and the aggressive attacks from bad actors increasing, our customers sleep better at night knowing that developers are selecting and using only the highest quality components.
To learn more about how Firewall for Artifactory works, watch this short video from Justin Young, Product Manager at Sonatype.
Want to learn more or have questions about how you can shift security even further left? Contact us for a demo.