[bsfp-cryptocurrency style=”widget-18″ align=”marquee” columns=”6″ coins=”selected” coins-count=”6″ coins-selected=”BTC,ETH,XRP,LTC,EOS,ADA,XLM,NEO,LTC,EOS,XEM,DASH,USDT,BNB,QTUM,XVG,ONT,ZEC,STEEM” currency=”USD” title=”Cryptocurrency Widget” show_title=”0″ icon=”” scheme=”light” bs-show-desktop=”1″ bs-show-tablet=”1″ bs-show-phone=”1″ custom-css-class=”” custom-id=”” css=”.vc_custom_1523079266073{margin-bottom: 0px !important;padding-top: 0px !important;padding-bottom: 0px !important;}”]

Sonatype Introduces Guide, the Intelligent Solution for Secure Agentic Development

Machine LearningNews
By GlobeNewswire
New solution connects generative and agentic AI coding assistants to real-time open source intelligence to optimize development speed, reduce security risk, and automate dependency maintenance.

Sonatype, the leader in AI-driven DevSecOps, unveiled Sonatype Guide, a new developer tool that makes AI-assisted software development faster, safer, and more efficient. As organizations rapidly adopt AI coding assistants, Guide serves as the intelligent backbone that steers those tools toward secure, high-quality open source components and autonomously maintains dependencies over time.

AI Coding Assistants Need Guardrails

AI coding assistants are helping developers move faster, but because AI models are trained on public data that may be months or years out of date, they frequently recommend vulnerable, low-quality, or even imagined packages. Detailed in a forthcoming study, Sonatype research found that the leading generative AI LLMs powering today’s coding assistants hallucinate packages up to 27% of the time, which means they attempt to update or develop modern software with nonexistent or malicious open source components. This creates rework for development teams, slows delivery, burns LLM tokens, and introduces unnecessary security risk.

Across the same component sample, Sonatype produced zero hallucinated versions, delivering unmatched accuracy in upgrade guidance. Enterprises using Sonatype Guide have achieved more than a 300% improvement in security outcomes while reducing total security remediation and dependency-upgrade costs by over 5x compared to the leading competitive strategy   measured in both direct spend and developer hours.

Also Read: AiThority Interview Featuring: Pranav Nambiar, Senior Vice President of AI/ML and PaaS at DigitalOcean

“Every organization wants to harness the productivity of AI, but they can’t afford to compromise security or long-term maintainability,” said Bhagwat Swaroop, Chief Executive Officer at Sonatype. “Guide is developer-centric, AI-native, and born in the cloud. It brings discipline and intelligence to AI-assisted development. It empowers teams to move faster and safer by steering AI toward secure, reliable components and automating the tedious dependency work that slows teams down. This is a significant step forward for the industry and for our customers.”

Related Posts

Conduent Launches AI Experience Center to Showcase AI & GenAI-Powered Solutions for Commercial, Transportation and Government Clients

Newo.ai Partners with IONOS to Deliver AI Receptionists for Small Businesses

TeqBlaze Presents TeqMate AI — An Intelligent Assistant Bringing Automation to AdOps Operations

1 of 42,441

Protecting Developers in the AI Era

Sonatype Guide integrates directly with popular AI coding assistants  including GitHub Copilot, Google Antigravity, Claude Code, Windsurf, IntelliJ with Junie, Kiro from AWS, and Cursor  so organizations can keep their existing workflows while upgrading the quality and security of the dependencies pulled in. Guide is powered by Sonatype’s market-leading open source intelligence, already trusted by more than 15 million developers around the world. Core features of Guide include:

 

  • MCP Server for AI Coding Assistants: As a high-speed middleware layer between AI coding assistants and Sonatype intelligence, the MCP server intercepts package recommendations in real time — instantly guiding developers to secure, reliable versions before code reaches the repo. It turbocharges development and delivers the ultimate shift-left by optimizing component choices in real-time.
  • Enhanced Open Source Software (OSS) Search for Instant Decisions: A modern search experience that instantly surfaces the lowest-effort, highest-impact fixes and upgrade choices  giving developers fast insight into component health, security risks, and recommended alternatives.
  • Enterprise-Grade API: Access to the Nexus One Platform API  including the Sonatype OSSI Index API format  delivers complete, unrestricted, and backward-compatible access to the reliable data your systems and integrations already depend on.

 

“Developers love the speed AI coding assistants unlock, but they’re also the ones stuck untangling bad package recommendations or chasing down dependency issues later,” said Mitchell Johnson, Chief Product Development Officer at Sonatype. “Guide gives developers the help they actually want — real-time intelligence that steers AI toward secure, well-maintained components and cuts out hours of research and rework. It means fewer interruptions, cleaner code from the start, and more time spent building the things that matter.”

Guide is built on Sonatype Intelligence  the industry’s most trusted source of real-time data on open source quality, security, and project health. Drawing on decades of expert curation and analysis, it identifies vulnerabilities, deprecations, and malicious packages long before they spread. By embedding this intelligence directly into AI workflows, Guide ensures developers make safe, informed decisions from the start.

Also Read: The End Of Serendipity: What Happens When AI Predicts Every Choice?

[To share your insights with us, please write to psen@itechseries.com]

GlobeNewswire

GlobeNewswire is one of the world's largest newswire distribution networks, specializing in the delivery of corporate press releases, financial disclosures and multimedia content to media, investors, and consumers worldwide.

You might also like More from author

Comments are closed.