sticky : sticky
Skip Navigation
sonatype-firewall-logo-nav

Intercept open source malware with AI-powered behavioral analysis

AI at Sonatype

Sonatype Repository Firewall is the only solution that protects your repository with AI, preventing known and unknown open source risk from entering your software supply chain.

REPOSITORY PROTECTION

Avoid costly supply chain attacks

FIREWALL-REPO-PROTECTION-UI_wTooltip

Identify open source malware

Protect against known and unknown threats, allowing only the best of open source into your software development pipelines.

Let AI behavioral analysis tell you what’s suspicious

We monitor every open source package in major public registries. Repository Firewall utilizes 60+ signals to detect and intercept potential risks before download. Our AI/ML-powered system ensures rapid malware prevention upon publication.

Improve compliance

Automated policy enforcement ensures that only the best components enter your SDLC.

Boost the DevSecOps experience

Unite developers and security without sacrificing productivity with enhanced transparency that reduces remediations and lowers overhead costs.

Debunking the Myth of Security vs. Productivity 

A staggering 29% of popular projects contain vulnerabilities. Outsmart risk with Sonatype’s open source security software.

“As supply chain vulnerabilities became increasingly problematic in recent years, particularly with Log4j, monitoring and enforcing software composition took on a greater sense of urgency. USPTO turned to Repository Firewall for the ability to block malicious packages from the start.”

POLICY COMPLIANCE

Automate your policy enforcement

FIREWALL-AUTOMATE-UI_wTooltip

Set policy based on risk tolerance

Decide which components are allowed into your SDLC based on risk factors like age, popularity, and licensing credentials.

Protect against the unknown

Set policy to intercept suspicious components, even before they are publicly disclosed as vulnerable.

Configure automatic compliance

Prevent applications from moving forward with unwanted or unapproved components.

A better way to do open source security

Ensure your team is working with the best available open source. Sonatype Repository Firewall sits at the front of your artifact repository to defend your software supply chain. Combining Artificial Intelligence (AI) behavioral analysis and automated policy enforcement, easily intercept intentionally malicious packages and enforce policies to improve security and compliance.

Run products anywhere

Flexible deployment options let you run anywhere—without the operational hurdles. Deploy easily with world class support from our Technical Support team at no additional cost.

Cloud

Get started right away. Streamline your infrastructure and rapidly scale with cloud solutions hosted on AWS and managed by Sonatype.
Available for
Firewall_Icon@3x Lifecycle_Icon (1)

Self Hosted

Unlock maximum flexibility. Choose to host on your own servers or in a cloud environment of choice.
Available for
Firewall_Icon@3x Repo_Icon@2x Lifecycle_Icon (1)

Air-Gapped

Adhere to the strictest security standards for government and affiliated organizations. Sonatype offers the only software supply chain solution for air-gapped environments.
Available for
Firewall_Icon@3x Repo_Icon@2x Lifecycle_Icon (1)

Forrester Wave Badge

Sonatype Named a Leader in The Forrester Wave™: Software Composition Analysis SoftwareQ4 2024

Explore the Sonatype platform

Sonatype Nexus Repository

Build fast with centralized components.
Explore Repository

Sonatype Repository Firewall

Intercept malicious open source at the door.

You are here

Sonatype Lifecycle

Reduce risk across software development.
Explore Lifecycle

Sonatype Lifecycle

Simplify SBOM compliance and monitoring.
Explore SBOM Manager

Work with the tools you already use

Universal repository support

sonatype-repository-logo
Sonatype Nexus Repository Pro
Better together: Protect your Sonatype Nexus Repository (Pro) with Firewall.
Jfrog-Artifactory-logo
JFrog Artifactory
Using Artifactory? No problem.
Sonatype Repository Firewall supports JFrog’s Artifactory.

Firewall language support

C@2x C
C++@2x C++
Go Modules @2x Go
Gosu@2x Gosu
Java@2x Java
php@2x PHP
Python@2x Python
R@2x R
Ruby @2x Ruby
Scala@2x Scala
Swift@2x Swift
Visual Basic@2x Visual Basic

Firewall package support

Maven @2x-1 Maven
npm_logo npm
pypi @2x PyPi
nuget @2x Nuget
10-yum Yum
Go Modules @2x Go
Ruby @2x Rubygems
Conan @2x Conan
Cargo Cargo
Gradle Gradle
Conda Conda
R R

Enterprise protection from open source malware

Features
sonatype-firewall-logo
  • Protection from open source malware
    Yes for npm, PyPl
  • Hosted repository protection from namespace confusion attack
  • Suspicious auto-quarantine
  • Automatic release from quarantine
  • Automated version replacement for dependencies
  • New reports and views for application security and developers
  • Improved developer experience
  • Support for artifactory enterprise