Cigniti Technologies announced a partnership with Sonatype to help enterprise customers innovate faster and easily mitigate security risk inherent in open source.
By partnering with Sonatype, Cigniti is able to offer its clients the powerful Nexus Platform, in turn, enabling them to automatically enforce open source governance and control risk across every phase of the software development lifecycle (SDLC). Fueled by Nexus Intelligence, which includes in-depth security, license, and quality information on more than 100M open source components across dozens of ecosystems, the Nexus Platform precisely identifies open source risk and provides expert remediation guidance, empowering developers to innovate faster. Only Nexus secures the perimeter and every phase of your SDLC, including production, by continuously monitoring for new risk based on your open source policies.
"As experts in continuous delivery, Cigniti has worked hard to help its customers implement a mature DevSec pipeline. As such, many of our global customers have inquired about software composition analysis to help protect their toolchains," said Pradeep Govindasamy, CTO & President at Cigniti Technologies. "Partnering with Sonatype, who has the in-depth, precise intelligence around open source vulnerabilities, allows us to offer an ever-deeper sense of security to our customers. There is a clear synergy between Sonatype and Cigniti to create a successful partnership."
The Sonatype Nexus Platform provides myriad benefits to its users, that enable them to focus on innovating, and harnessing the power of open source, rather than worrying about its risk.
"Sonatype has been working with global enterprise customers for over a decade to identify and mitigate millions of security vulnerabilities and protect their software supply chains," said Wai Man Yau, GM International, Sonatype. "Through our partnership with Cigniti, we'll be able to further enhance DevSecOps in new regions, providing customers with the continued automated security features they need to build secure software."