“Open source governance has to work with developers and security practitioners alike — not against them. With Sonatype, we've eliminated thousands of hours of manual processes and created automated controls that have improved productivity and reduced risk across the board.”
"We are dealing with patient data and healthcare data. Security comes above everything. The fact that we can trace vulnerabilities and their dependencies with Nexus Lifecycle alleviates this from our list of things do."
"The biggest advantage of using IQ Server is to be able to report to our project team what specific libraries are used within our applications. We have immediate visibility into security issues."
“We can produce functionality and new applications really, really fast, and that's gone exponential.”
“If you start out with a tool like Sonatype’s Nexus Lifecycle, it's going to work out well. You’ll know immediately the version of a component, whether it has a license that you want to use, or if it has known vulnerabilities.”
“If there is a known problem and someone in the open source community has fixed it, we should fix it. If you don’t stay on top of it, you’re going to miss something that’s really important. We are leveraging Nexus Lifecycle to make sure we’re staying on top of that. Nexus Lifecycle gives us confidence that we’re not missing anything.”
“Using Sonatype Lifecycle, we’re able to identify risks earlier than ever before in the development process — especially compared to six months ago. Sonatype Lifecycle works very well within our DevOps practice.”
“Kredi Kayıt Bürosu selected Sonatype Nexus Lifecycle because it has a very, very detailed explanation of the open source vulnerabilities and dependencies compared to the other products."
“The Nexus Platform is consistent with our gradual rise in maturity. The product brings richness from the very first use. Whether you're a beginner or a Nexus expert, it gives you the ability to find the solutions you need. It's just really great. All our teams are delighted to be able to use it.”
“We had a meeting in our DevSecOps community a couple months ago. Different teams are actually working with their source code and the repositories and the way they're merging and branching and they're releasing and all that. There are five or six different ways that teams are doing it.”
“Thanks to Sonatype we have improved the security of software products, in particular the security of Open libraries within a staging logic.”
"The reason we picked Lifecycle over the other products is Nexus has low false-positive results, which gives us a high confidence factor."
"Nexus has improved the time it takes us to release secure apps to market by saving us weeks of rework."
"We now have a well-documented process on where to find any build result produced within the last two years."
“[Sonatype] has helped developer productivity. It’s like working in the dark and all of a sudden you’ve got visibility. You can see exactly what you’re using and you have suggestions so that if you can’t use something, you’ve got alternatives. That is huge.”
FeaturedCustomers has 1,804,782+ validated customer references
including reviews, case studies, success stories, customer stories,
testimonials and customer videos that will help you make better
software purchasing decisions.