Sonatype Launches Industry’s First ‘Run Anywhere’ Platform for Software Supply Chain Management

CloudNativeSecurityCon – Sonatype, the pioneer of software supply chain management, has made it easier than ever for developer and security teams to unite and build innovative software securely with the announcement of new cloud offerings. With these additions, Sonatype becomes the only Application Security Testing (AST) and Software Composition Analysis (SCA) tool available that offers Cloud, Self-Hosted, and Disconnected deployment options – giving maximum control and flexibility to its customers.

Sonatype’s secret sauce including proprietary intelligence, industry-leading research, and AI behavioral analysis helps organizations manage their software supply chains at scale to deliver products faster and with safer open source. These flexible deployment options enable Sonatype solutions to run anywhere organizations need them–and help teams shift-left without operational hurdles. Deployment options include:

Recommended AI News: Talkwalker Reveals How Brands Can Leverage Consumer Intelligence to ‘Shape Tomorrow’ for Growth

• Cloud: Software supply chain management is now in the cloud with enterprise-grade security and minimal effort. Customers can protect their software supply chains without needing to deploy and manage infrastructure, making it ideal for organizations looking to streamline their infrastructure and rapidly scale.
• Self Hosted: This solution offers maximum flexibility. Organizations can choose to host on their own servers/on-premises or in a cloud environment of their choice.
• Disconnected: The Nexus Disconnected Environment (NDE) is the only open source and dependency management solution available for air-gapped environments, which makes it ideal for government and affiliated organizations that want to manage their open source software supply chain.

“As the use of open source software in modern applications continues to increase, so does the risk from malware and other vulnerabilities. Software supply chain attacks have jumped an astonishing 742% per year, on average, over the past three years,” said Mitchell Johnson, Chief Product Development Officer at Sonatype. “There has never been a greater need for the ability to detect code quality and implement security at the point of creation. Sonatype is answering that need and more, allowing developers, engineering teams, and enterprises to build software fearlessly in the environment that best works for them.”

Recommended AI News: Credera Attains AWS Well-Architected Partner Program Membership

According to Gartner, public cloud spending is estimated to exceed 45% of all enterprise IT spending by 2026. As enterprises and governments recognize the incredible need to protect our software supply chains and better understand the open source software they’re using, Sonatype is the only platform on cloud with the industry’s first behavioral AI-driven component firewall that can automatically block malicious malware from entering your software development lifecycle (SDLC), mitigating the number one security threat in 2023. The platform also provides security policy automation with instant developer feedback at all stages of the development process.

Recommended AI News: Qrvey Ranked Among Top Embedded Business Intelligence Vendors by Dresner Advisory Services

[To share your insights with us, please write to sghosh@martechseries.com]