SOURCE: Sonatype


February 15, 2012 08:30 ET

Sonatype Nexus Professional 2.0 Brings Component Intelligence to Repository Management

Real-Time Security, Licensing and Popularity Feeds Improve Visibility and Control for Component-Based Software Development

SILVER SPRING, MD--(Marketwire - Feb 15, 2012) - Sonatype, the company that is transforming software development, today announced the availability of Sonatype Nexus Professional 2.0. The latest release of Sonatype Nexus Professional -- an integrated, enhanced and supported version of Nexus, the most widely used open-source repository manager -- now includes actionable information about the open-source components used in development. This unique insight into component security, licensing and popularity information enables organizations to capture the value of open source without risk. Sonatype Nexus Professional 2.0 also adds improved availability and performance with the new Nexus Availability Architecture and the ability to manage both Java and .NET components from a single Nexus repository.

"Thousands of development shops rely on Nexus to reduce build times, improve collaboration and increase control of open-source artifacts," said Jason van Zyl, CTO and Founder of Sonatype. "Sonatype Nexus Professional 2.0 adds a whole new dimension to the repository market. Now development teams can know far more about the contents of their repositories with integrated security, licensing and popularity information."

Component-based development projects that consume or need to provide binary software artifacts have long turned to Sonatype for an efficient, stable and scalable system to manage their software artifacts, speed builds and simplify the distribution process. Building on the previous version of Sonatype Nexus Professional, key features available in version 2.0 include:

  • Repository Health Awareness: A detailed component report powered by Sonatype Insight™, the suite of software products and information services launched on Sept. 19, 2011 that identifies problematic components throughout the application development process and into production. With real-time component licensing and security information in hand, Sonatype Nexus Professional users can intelligently create white and black lists to avoid unnecessary risks associated with flawed components.

    Later this year, Sonatype will release Sonatype Insight for Nexus, a plug-in which combines real-time quality, security and licensing information with a rules engine to enable effective governance of component usage. Combined with Sonatype Nexus Professional, this new plug-in will enable the automated management of white and black lists based on a variety of component information including license type, security vulnerabilities and quality metrics.

  • Nexus Availability Architecture: The availability feature ensures that components are always available for consumption, eliminates development delays caused when the network is down and keeps geographically distributed teams in sync. Developers always use the most up-to-date components because proxy repositories are updated immediately with changes in the master.

  • .NET Support: Store .NET components in Nexus and access them packaged with NuGet, the extension that makes it easy to install and update third-party components into .NET projects, to improve performance, collaboration and control, while reducing development time when using the .NET Framework. Because Sonatype Nexus Professional 2.0 supports Java, OSGi and .NET repositories, organizations can now standardize on a single repository manager for all development.

In addition to the enterprise-class features available in the latest release of Sonatype Nexus Professional, Sonatype has made significant enhancements to the open-source software version of Nexus 2.0. Developers can now customize their repositories with less effort using a simplified plug-in API, while more flexible licensing for plug-ins serves to enhance the overall plug-in ecosystem by encouraging more community contributions. The open-source version of Nexus offers summary repository health awareness data to make better decisions about artifact use during development. Product testing shows a dramatic 40 percent reduction in build times from version 1.9.2 to version 2.0, a benefit shared by both open source and Sonatype Nexus Professional users.

To view a demonstration of the new features available in Sonatype Nexus Professional 2.0, register to attend the webinar on Tuesday, Feb. 21 at 11:00 a.m. ET here:

Pricing for Sonatype Nexus Professional 2.0 is $120 per user. For more information visit:

About Sonatype Inc.
Sonatype ensures the integrity of the modern software supply chain. Sonatype's tools and information services improve visibility and control over component-based software development, enabling collaboration while reducing quality, security and licensing risks. Sonatype operates the Central Repository, the industry's primary source for open-source components and is a leader in such open-source projects as Nexus, Apache Maven, m2eclipse and Hudson. The company was founded by Jason van Zyl, the creator of Apache Maven and is privately held with investments from Accel Partners, Bay Partners, Hummer Winblad Venture Partners and Morgenthaler Ventures. Visit: or follow Sonatype on Twitter @SonatypeCM.

Apache, Apache Maven and Maven are trademarks of the Apache Software Foundation.

Contact Information

  • Media Contact:
    April Harned
    PR for Sonatype
    Email Contact