Sonatype, the leader in software supply chain automation, today introduced the latest version of Nexus Repository Pro. The 3.2 version of Nexus Repository Pro will include built-in support for active-active high availability configurations and enhanced security and license analysis for open source components. Sonatype has also expanded Nexus Repository’s free, universal component support to include PyPI and RubyGems.
The new features of Nexus Repository Pro will be demonstrated at Jenkins World (Sept 14 – 15) and JavaOne (Sept 18 – 22). The product is currently being tested in private beta and will be commercially available in Q4 2016.
With over 100,000 active installations, Sonatype’s Nexus Repository Pro now offers expanded capabilities including:
- High-availability which is uniquely affordable, rapidly configured, and easily managed
- Universal support for all popular component formats
- Precise component intelligence for repositories and applications
“We are excited to offer high-availability with the latest version of our Nexus Repository Pro to ensure that companies can achieve their continuous delivery goals,” said Wayne Jackson, CEO, Sonatype. “Our customers will be able to seamlessly integrate high-availability into their existing production environments with this sophisticated, yet cost-effective offering that minimizes downtime and improves reliability. When coupled with our precise component intelligence and ever-expanding component support, Nexus Repository Pro makes building and releasing the best software easy.”
Meeting continuous delivery needs through high availability
Active-active high availability is a requirement for organizations seeking 99.999% up-time across their Continuous Delivery and DevOps toolchains. The latest version of Nexus Repository Pro supports the active-active high availability ensuring that if one server goes down, the other will continue running without interruption. The high availability feature is built into Nexus Repository Pro 3.2 and is remarkably easy to configure. Pricing starts at $1200 per year.
Expanding component support to PyPI and RubyGems
Nexus Repository is the only repository manager to offer free support for the world’s most popular component-based development languages including Java, npm, Bower, NuGet, and Docker, and now PyPI and RubyGems.
Providing precise component intelligence
Everyday, Nexus Repository customers evaluate the quality and security of millions of open source and third-party components across 70,000 repositories using Repository Health Check (RHC). RHC provides intelligence about the components, including license types, known security vulnerabilities, and other data such as relative usage popularity and age. This feature of Nexus Repository 2.x is now being made freely available to Nexus Repository 3.2 users.
Sonatype has now integrated the ability to perform a detailed analysis of the components and applications in Nexus Repository. Application Health Check (AHC) will enable Nexus Repository users to quickly evaluate components used in the applications. According to the 2016 State of the Software Supply Chain Report, 1 in 15 components used in applications includes a known security vulnerability. More advanced policy-based analysis of applications is available from Sonatype’s Nexus Lifecycle and Nexus Auditor solutions.
Upgrading Nexus Repository 2.x to 3.x
Starting with the release of Nexus Repository 3.1, Sonatype has included a seamless upgrade path for customers who are currently using Nexus Repository 2.14. Built-in upgrade tooling and documentation provide the current installed base an easy way to upgrade to take advantage of the latest features, including support for private Docker registries, high-availability, repository health check and universal component support.