Sonatype Integrates Nexus Lifecycle with Microsoft Visual Studio
June 21, 2017

Sonatype has released a new version of Nexus Lifecycle that includes an extension to Microsoft Visual Studio, an integrated development environment (IDE).

This new Nexus Lifecycle integration empowers millions of Visual Studio developers with direct access to Sonatype's open source intelligence engine so they can easily vet component quality and automatically ensure compliance with defined security, licensing and architectural policies such as component age or popularity.

Furthermore, because Sonatype has long delivered component intelligence for NuGet packages and since Sonatype’s popular Nexus Repository Manager is already capable of being integrated with Microsoft Team Foundation Server and Visual Studio Team Services -- Sonatype now offers Microsoft development teams a fully automated open source governance and security platform that scales early and everywhere across every phase of the modern DevOps pipeline.

DevOps-native development teams equipped with Microsoft Visual Studio, Microsoft Team Foundation Server, Nexus Repository Manager, and Nexus Lifecycle can automatically and continuously govern the flow of open source components from the very beginning, to the very end, of the software development lifecycle. The result is that teams will make better choices early in the value chain and eliminate waste and friction associated with late-stage application security practices, legacy software component analysis tools, and waterfall-native development processes.

Wayne Jackson, CEO, Sonatype, said: “Our Nexus platform integrated with popular Microsoft development tools empowers organizations with a comprehensive component governance service early and everywhere across the development lifecycle. By embracing the supply chain automation principles taught by Deming and applying them to modern software development, DevOps-native teams can automatically ensure that all open source libraries in an application are of the highest standards.”

Sam Guckenheimmer, Group Product Planner, Microsoft, added: “The development community using Microsoft Visual Studio Team Services and Team Foundation Server can now rely on the intelligence built into Sonatype’s Nexus products to improve the quality, security, and speed of their software supply chains. We’re pleased to see Sonatype continuing to extend their support for our DevOps and developer solutions as part of our partner ecosystem.”

The Latest

July 20, 2017

Financial services organizations are high value targets for cyber criminals all over the world. Because of this, it is imperative that the keys and certificates used by financial service DevOps teams are properly protected. If not, bad actors can easily exploit cryptographic assets and wreak havoc on sensitive corporate data, all while remaining undetected ...

July 18, 2017

In the last year, businesses around the globe significantly increased their use of open source and although they readily acknowledge growing concerns about open source-related security and operational risks, the effective management of open source is not keeping pace with the increase in use ...

July 17, 2017

A Forrester survey confirmed what high-performance organizations have already said – DevOps is here to stay. Diving into the details, however, the study also shows that the DevOps journey may be in for a rude awakening. Companies in all industries are embracing DevOps for superior productivity, but many organizations struggle to overcome barriers that prevent them from translating these programs into improved business results ...

July 14, 2017

Despite the pervasive belief that security and development teams have conflicting priorities, initiatives such as creating DevOps environments and focusing on product innovation have the two teams aligned toward a common goal of creating secure software, according to a new study from Veracode ...

July 12, 2017

Gartner, Inc. highlighted the top technologies for information security and their implications for security organizations in 2017 ...

July 10, 2017

DevOps practices lead to higher IT performance, according to the 2017 State of DevOps report This higher performance delivers improved business outcomes, as measured by productivity, profitability, and market share ...

June 28, 2017

Why Agile? DEVOPSdigest asked the experts for their opinions on what are the most important advantages of being Agile. Part 5, the final installment, covers how Agile improves product quality and the customer experience ...

June 26, 2017

Why Agile? DEVOPSdigest asked the experts for their opinions on what are the most important advantages of being Agile. Part 4 covers how Agile impacts team productivity ...

June 23, 2017

Why Agile? DEVOPSdigest asked the experts for their opinions on what are the most important advantages of being Agile. Part 3 covers how Agile enables you to grow and adapt to change ...

June 21, 2017

Why Agile? DEVOPSdigest asked the experts for their opinions on what are the most important advantages of being Agile. Part 2 is all about speed ...

Share this