Skip Navigation

Press Releases

The latest scoop on Sonatype.

Sonatype and OpenText Partner to Provide Integrated Vulnerability Management Platform for Open Source and Custom Code

Bringing together best-in-class SCA, SAST, and DAST solutions to deliver holistic view of application security

Fulton, Md. – November 20, 2024 Sonatype®, the end-to-end software supply chain security platform, and OpenTextTM (NASDAQ: OTEX) are partnering to offer a single integrated solution that combines open-source and custom code security, making finding and fixing vulnerabilities faster than ever. Together, Sonatype’s industry-leading Software Composition Analysis (SCA) solutions and Static and Dynamic Application Security Testing (SAST/DAST) from Fortify by OpenText offer a comprehensive, integrated security solution spanning the entire software development lifecycle.

Sonatype Named a Leader in Software Composition Analysis (SCA) Software Report by Independent Research Firm

Sonatype receives highest scores in both current offering and strategy categories among top SCA software vendors

Fulton, Md. – November 13, 2024 Sonatype®, the end-to-end software supply chain security platform, is pleased to announce that it has been named a Leader in The Forrester WaveTM: Software Composition Analysis Software, Q4 2024 report. Forrester identified, researched and evaluated 10 top SCA software providers and Sonatype received the highest possible marks in criteria including malicious package detection, SBOM generation, export and sharing, SBOM ingestion and analysis, policy management, and AI component analysis, along with seven others.  

Sonatype Announces 2024 Elevate Awards Winners

Recognized 9 global organizations pioneering software supply chain security 

Fulton, Md. – October 28, 2024 Sonatype®, the end-to-end software supply chain security platform, today announced the winners of the 2024 Elevate Awards, which recognize global leaders and their teams for exemplary collaboration to advance software innovation, and deliver enhancements  to reduce open source risk and expedite developer productivity. 

Sonatype’s 10th Annual State of the Software Supply Chain Report Reveals 156% Surge in Open Source Malware

A record-breaking year for open source consumption as downloads hit 6.6 trillion, amplifying software supply chain risk


Fulton, Md. – October 10, 2024
Sonatype®, the end-to-end software supply chain security platform, today released its 10th Annual State of the Software Supply Chain® Report. Sonatype was first to define this market and consistently provides year-over-year analyses of open source consumption data. Sharing these unparalleled insights over the past decade has expedited innovation in software development, as well as propelled Sonatype’s success in bringing industry-first solutions to market.

Sonatype Achieves AWS Security Competency Status

Fulton, Md. – October 1, 2024 – Sonatype, the end-to-end software supply chain security platform,  today announced it has achieved Amazon Web Services (AWS) Security Competency status. This designation recognizes that Sonatype has demonstrated expertise in delivering comprehensive security solutions for modern software development that help customers achieve their cloud security goals.

Sonatype Names Finalists for 2024 Elevate Awards

Global Organizations Recognized for Software Supply Chain Innovation and Impact

 

Sonatype Announces Keynote Speakers for 9th Annual All Day DevOps

Industry all-star panel to reveal 10th Annual State of the Software Supply Chain Report along with keynotes from AWS, SmartBear, Harvard, and more

Sonatype Launches End-to-End Software Supply Chain Security Platform Availability in AWS Marketplace

The company's enterprise SBOM solution, Sonatype SBOM Manager, joins Nexus Repository in AWS Marketplace to secure and streamline customers’ software supply chain

Sonatype SBOM Manager Prepares Enterprises for Rapid, Reliable Compliance at Scale

Industry’s first  Enterprise SBOM Manager solution takes the uncertainty out of SBOM collection, monitoring, and compliance

Sonatype Announces Integration with ServiceNow to Streamline Software Composition Analysis

New collaboration enables ServiceNow customers to integrate Sonatype Lifecycle for faster, more efficient remediation of open source application vulnerabilities