Sonatype Platform Browser Extension

How to install an extension Open in Chrome Web Store

CRX ID

kahnhlonadjlllgnilndafpajaiepdag

Description from extension meta

Shift Security Left with the Sonatype Platform Browser Extension - Scan Open Source Repositories for known Vulnerabilities.

Image from store

Description from store

This extension for Chromium browsers works with the Sonatype Platform to empower Developers to make better choices earlier in the Software Development Lifecycle.

Connect this extension to your Organization's Sonatype Lifecycle Server and get instant risk insight as you browse public Open Source Registries such as Maven Central (for Java), NPM (for Javascript), PyPi (for Python), Huggingface and many many more.

Version 3 of this Extension brings numerous improvements based on Customer feedback.

This extension supersedes our previous extension (Nexus IQ Chrome Extension) which was retired at the end of 2023.

Latest reviews

Chris Wolters 2024-05-09: I use this all the time. As developers are initially considering which component to use in their application, they get information while looking at the component in the OSS repository without doing anything. Awesome for shifting left selecting the best component rather than remediating downstream!
Neil Schloth 2023-08-16: A great tool for analyzing OSS components on the web for high-risk security vulnerabilities prior to downloading for use. Prevent mistakes early on in the SDLC by alerting on insecure packages before they are built in to application code.
Neil Schloth 2023-08-16: A great tool for analyzing OSS components on the web for high-risk security vulnerabilities prior to downloading for use. Prevent mistakes early on in the SDLC by alerting on insecure packages before they are built in to application code.
Roy Decker 2023-08-10: An awesome solution for researching open source components that are being considered for an application.
Ben Hartley 2023-07-14: The ultimate in shifting left!
Ben Hartley 2023-07-14: The ultimate in shifting left!
Patrick Kiessling 2023-07-14: Nice!
Patrick Kiessling 2023-07-14: Nice!
Paul Meharg 2023-07-14: I find this very useful to get a preview of the security and legal implications of acomponent before I start to write code! Keeps me from creating technical debt from the git-go.
Paul Meharg 2023-07-14: I find this very useful to get a preview of the security and legal implications of acomponent before I start to write code! Keeps me from creating technical debt from the git-go.
Adam Such 2023-07-14: Very useful plugin!
Adam Such 2023-07-14: Very useful plugin!
Alexander Plattel 2023-07-14: Excellent tool for looking at Open Source packages before you download them.
Alexander Plattel 2023-07-14: Excellent tool for looking at Open Source packages before you download them.
Joseph Bernie 2023-07-11: An extremely useful plugin for Sonatype customers!!

Extension Actions