Sonatype has announced its Enterprise-Class Software Bill of Materials (SBOM) solution, Sonatype SBOM Manager, is now available in AWS Marketplace.

Sonatype’s pre-eminent artefact repository manager, Nexus Repository, is also available on the same platform.

What can AWS customers expect?

AWS customers will now have access to the full Sonatype platform, including Sonatype Firewall Repository’s open source malware protection and Sonatype Lifecycle’s software composition analysis solution, directly within AWS Marketplace.

Sonatype’s availability provides AWS customers with the ability to streamline the purchase and management of the full Sonatype platform within their AWS Marketplace account.

AWS customers can now manage open source components and risk throughout the software development life cycle (SDLC) at the enterprise level.

This helps eliminate uncertainty in SBOM collection, monitoring and compliance, automatically blocks malicious code and open source malware, streamlines policy enforcement, enhances incident response times and accelerates code delivery, the company says.

Enterprises partnering with Sonatype benefit from 26x faster identification and remediation of open source software (OSS) components, a 70% reduction in exploitability windows from adversary attacks and a 99% decrease in developer time spent on researching, securing approval and downloading quality OSS components.

A trusted partner

“In today’s world, where enterprise software is constituted of more than 85% open source and secure development regulations are increasing, organisations need a trusted partner like Sonatype to empower their developers to innovate, securely at lightning speed,” said Mitchell Johnson, Chief Product Development Officer at Sonatype.

“With Sonatype’s full platform and suite of solutions available in AWS Marketplace, we’re making it easier than ever for businesses to harness the power of open source and fortify their software supply chains against risk, all powered by Sonatype’s unrivalled open source data and security research.”

More Security News