DEVOPSdigest

Adaptavist has joined the Sonatype partner program as a Platinum Enterprise Partner.

The strategic partnership allows Adaptavist to offer improved application development security features to accelerate enterprise company’s go-to-market plans.

Using the Sonatype Nexus repository management and developer-first security capabilities, Adaptavist can ensure its customers integrate the right tools, processes and compliance to achieve secure continuous delivery.

“To support the pressure on businesses to accelerate their digital transformation journey, software development needs to happen more quickly, but it also has to be done safely,” says Simon Haighton-Williams, CEO of Adaptavist. “Our strategic partnership with Sonatype will further strengthen our DevOps expertise and allow us to offer customers greater confidence in delivering software not only faster but more securely.”

Through Adaptavist’s partnership with Sonatype, developers will be able to triage open source policy violations in daily workflows with automatically created Jira tickets to build secure software.

“Public databases, like the National Vulnerability Database (NVD), provide a relatively small and typically outdated view of open source security vulnerabilities. Nexus Intelligence, which powers Nexus Lifecycle, delivers a universal and timely understanding of open source security, license, and architectural risk. Our data collection engine has ingested and analyzed more than 100 million components, by dynamically monitoring dozens of ecosystems like GitHub commit, every open source project, advisory websites, Google search alerts, OSS Index, and a plethora of vulnerability sites; and it never stops learning,”explains Wai Man Yau, GM International, Sonatype.

The Sonatype Nexus platform integrates into GitHub, GitLab and Bitbucket (both server and cloud), adding automation and precise component intelligence into developer pull requests and daily workflows. With improved Bitbucket pull request experience and VS Code integration, you can also bring information from Jira Software right into the same SCM and IDE. These integration capabilities help developers improve secure coding practices and build safer applications faster.