Nexus Lifecycle

Application security and dependency management solution

About Nexus Lifecycle

Nexus Lifecycle by Sonatype is an application security and dependency management solution designed to help organizations manage open-source governance and automatically find and fix vulnerabilities across the entire software development lifecycle (SDLC). The platform enables developers to monitor security standards in the development process and access a centralized vulnerabilities database to implement best practices and detect and avoid online attacks or hack attempts.

Nexus Lifecycle includes a comparison functionality, which enables users to evaluate various components of an application to identify suitable versions and manually resolve any issues, or dependencies. Administrators can automatically generate software bill of materials (SBOM) for individual applications to gain visibility into the usage of various software modules and ensure compliance with app development guidelines. Security professionals can also create and establish custom policies for licenses, security, and architectural practices at every stage of the software development process.

Nexus Lifecycle allows managers to gain insights into violation trends, mean time to resolution (MTTR), remediation time, and other data via analytics and graphs. It also supports integration with various third-party applications such as Azure DevOps, Gitlab, AuditJS, Jira, ThreadFix, and more.


Images

Nexus Lifecycle Software - Nexus Lifecycle custom policies
Nexus Lifecycle Software - Nexus Lifecycle component evaluation
Nexus Lifecycle Software - Nexus Lifecycle analytics
View 4 more
Nexus Lifecycle video
Nexus Lifecycle Software - Nexus Lifecycle custom policies
Nexus Lifecycle Software - Nexus Lifecycle component evaluation
Nexus Lifecycle Software - Nexus Lifecycle analytics

Not sure about Nexus Lifecycle? Compare with a popular alternative

Nexus Lifecycle

4 (4)
VS.
Highly reviewed

Starting Price

US$775,00
year
US$7,75
month

Pricing Options

Free version
Free trial
Free version
Free trial

Features

27
160

Integrations

17
20

Ease of Use

3,8 (4)
4,0 (14 025)

Value for Money

3,3 (4)
4,3 (14 025)

Customer Service

3,3 (4)
4,2 (14 025)
Green rating bars show the winning product based on the average rating and number of reviews.

Alternatives

Jira

4,4
#1 Alternative to Nexus Lifecycle
JIRA is the tracker for teams planning & building great products. Millions choose JIRA to capture & organize issues,...

Artifactory

4,7
#2 Alternative to Nexus Lifecycle
JFrog Artifactory is a binary repository management SaaS solution that provides software development and DevOps teams...

GitHub

4,8
#3 Alternative to Nexus Lifecycle
GitHub is a place to share code with friends, co-workers, classmates, and complete strangers, helping individuals and...

GuardRails

5
#4 Alternative to Nexus Lifecycle
With GuardRails, you can finally feel safe on every level of your security. The platform enhances development processes...

Reviews

Overall rating

4 /5
(4)
Value for Money
3,3/5
Features
4/5
Ease of Use
3,8/5
Customer Support
3,3/5

Already have Nexus Lifecycle?

Software buyers need your help! Product reviews help the rest of us make great decisions.

Showing 4 reviews of 4
Basile
Basile
Overall rating
  • Industry: Computer Software
  • Company size: 2–10 Employees
  • Used Weekly for 1+ year
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 8.0 /10

vulnerability analysis tool

Reviewed on 2022/09/16

my experience with Nexus Lifecycle is that it allows me to identify and secure vulnerable devices...

my experience with Nexus Lifecycle is that it allows me to identify and secure vulnerable devices when doing development, which really allows me to work with peace of mind and confidence

Pros

Firstly, what is good about Nexus Lifecycle is that it is easy to install and use, it supports several types of packages, has very good documentation and is available in several languages.
secondly, the vulnerability feature is excellent when it comes to application vulnerability analysis

Cons

First of all, Nexus Lifecycle is more expensive than its competitors, so access to the paid version is not available to everyone,
Then, its interface is often heavy when adding several components

Alternatives Considered

GitHub

Reasons for Switching to Nexus Lifecycle

because of its ease of use and its ability to detect application vulnerabilities
Gil
Overall rating
  • Industry: Electrical/Electronic Manufacturing
  • Company size: 5 001–10 000 Employees
  • Used Daily for Free Trial
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Likelihood to recommend 7.0 /10

Binary Repository for the large enterprise

Reviewed on 2020/04/23

It's fairly easy to install, pricy from the enterprise version, supports all packages types.

It's fairly easy to install, pricy from the enterprise version, supports all packages types.

Pros

The Open Source version has enough functionality (comparing to competitors) to be one of the best in its field. It has vast support for all packages type and the installation is fairly easy

Cons

The issue will begin once you like to move from the Open Source version to the commercial one, it is pricy (again comparing to the competitors) it has a business module of per user per year cost and if your budget is limited you would find yourself with an issue of funding it. It is not the best in line with the enterprise versions out there.

Alternatives Considered

Artifactory

Reasons for Choosing Nexus Lifecycle

The Open Source version of Nexus repository has much more functionality (for the free option), might return back if we decide to go for the enterprise version.

Switched From

Artifactory
Verified Reviewer
Overall rating
  • Industry: Computer Software
  • Company size: 501–1 000 Employees
  • Used Daily for Free Trial
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 6.0 /10

Automatic vulnerability detection and mitigation tool in software development process

Reviewed on 2022/08/18

I primarily used the tool to detect supply chain vulnerability to mitigate attacks for the...

I primarily used the tool to detect supply chain vulnerability to mitigate attacks for the development team.

Pros

Easier to install, and use and helping our team in mitigating supply chain attacks.

Cons

It has a high per-year basis subscription and is not up to the mark with the other competitor with similar costs

Alternatives Considered

GuardRails, Vulcan Cyber and Trava

Reasons for Choosing Nexus Lifecycle

Only feasible for large-scale IT organizations

Switched From

GuardRails, Vulcan Cyber and Trava

Reasons for Switching to Nexus Lifecycle

It detects updated open source software vulnerabilities in the source code and fixes them instantly. Feasible for small organizations as well.
Verified Reviewer
Overall rating
  • Industry: Biotechnology
  • Company size: 51–200 Employees
  • Used for 1-5 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support

Powerful artifact manager, but has some rough edges

Reviewed on 2018/05/04

Pros

Supports all major artifact types, such as npm, helm, docker, etc. Powerful integrations with major 3rd party tools.

Cons

Open source version does not allow integrating with non-Maven deployment types, making it difficult to evaluate even for those preparing to use enterprise version.

Nexus Lifecycle FAQs

Below are some frequently asked questions for Nexus Lifecycle.

Nexus Lifecycle offers the following pricing plans:

  • Starting from: US$775,00/year
  • Pricing model: Free Version, Subscription
  • Free Trial: Available

Nexus Lifecycle has the following typical customers:

2–10, 11–50, 51–200, 201–500, 501–1 000, 1 001–5 000

Nexus Lifecycle supports the following languages:

English

Nexus Lifecycle supports the following devices:

Nexus Lifecycle integrates with the following applications:

Azure DevOps Services, Bitbucket, CircleCI, Docker, Eclipse IDE, Fugue, GitHub, GitLab, Jenkins, Jira, Kenna, Microsoft Visual Studio, OpenShift, PyCharm, Slack, ThreadFix, WebStorm

Nexus Lifecycle offers the following support options:

24/7 (Live rep), Chat

Related categories

See all software categories found for Nexus Lifecycle.