Sonatype présente la gestion des dépendances nouvelle génération | Communiqué de presse

GitHub, say Hello to the Nexus Platform

Sonatype’s Nexus Intelligence has long been the world’s premier source of health and hygiene data pertaining to open source and third party dependencies.

It’s now integrated with GitHub and allows developers to efficiently manage third-party dependencies and accurately control open source risk. 

Watch this video to learn more

Nexus Intelligence integrated with Github

For Developers, by Developers:
Free Tools to Protect Your Applications

Nexus Repo Icon

Our free artifact repository with universal support for popular formats. 




Identify open source dependencies. See if there are known vulnerabilities in your applications.




DepShield checks for open source vulnerabilities in your dependencies at the commit-level in GitHub. Available for Apache Maven, Node.js npm, and Go projects.

Try our integrations with GitHub Action


À l'aide d'OSS Index, Nancy vérifie les vulnérabilités de vos dépendances Go. Téléchargez-la dans GitHub pour l'exécuter sur votre projet privé ou sur votre machine locale.


Run a Nexus IQ policy evaluation as part of your GitHub Actions workflow.

Nexus Repo Icon

Publish components from GitHub Actions workflow to Nexus Repository.


We're Hiring! 

We're building something big and looking for A+ players!

Consistently recognized by industry leaders for our distributed workforce, investment into our people, competitive salary and benefits, and open, transparent and diverse workforce Sonatype is a great place to work.

Join US

Ready to secure your entire SDLC? See how the platform works!



Hear from our Customers

Sonatype, une meilleure façon de construire