Sonatype Nexus Lifecycle Data Quality

What are your impressions of the solution’s data quality? Does it help you solve problems faster?

Charles Chani
DevSecOps at a financial services firm with 10,001+ employees
The data is as good as can be. It's online, which means if a change is made to the Nexus database today, or within the hour, my developers will benefit instantly. The security features are discovered continuously. So if Nexus finds out that a library is no longer safe, they just have to flag it and, automatically, my developers will know. In addition to that, anything that I've used in the past will also flag up. Because it's proactive and it's live data, you know instantly if any part of your application is now vulnerable. Not only that but when you get the information about the vulnerability, part of the lifecycle mechanism actually gives you alternatives that you can use.
View full review »
Axel Niering
Achitekt at SV Informatik GmbH
The data quality is really very good. We have also checked other other products that do not provide such good quality data. Still, we must look very closely at the single vulnerability from a single issue. We have to understand what problem it's indicating. However, without this tool there would be no way to do this. The data quality is really very good.
View full review »
Devin Duffy
Information Security Specialist at a financial services firm with 1,001-5,000 employees
The data integrity of the feeds that we get from them is a solid eight or nine out of ten. There have been some discrepancies but when we brought them up to them they have fixed them immediately. Their data is good enough to run a lot of orchestrated frameworks off of. It's been good.
View full review »
EdwinKwan
Security Team Lead at Tyro Payments Limited
The data quality is generally pretty good. We're pretty happy with it... across the board, we feel that Nexus has been the most accurate so far compared to all the other ones that we have used.
View full review »
Russell Webster
VP and Sr. Manager at a financial services firm with 1,001-5,000 employees
The data quality is really good. They've got some of the best in the industry as far as that is concerned. As a result, it helps us to resolve problems faster. The visibility of the data, as well as their features that allow you to query and search - and even use it in the development IDE - allow you to remediate and find things faster.
View full review »
JavaDevef0ca
Java Development Manager at a government with 10,001+ employees
The solution's data quality shows in the way that it recommends the correct artifact that we should use and the different versions that are available. Based on that data we can make better decisions.
View full review »
ConfigManag73548
Configuration Manager at a health, wellness and fitness company with 5,001-10,000 employees
There's a very interactive view where there's a recommendation, as part of the reporting. You can click on a certain vulnerability and it will give you a recommendation. For example, if you're using something that's not licensed or has a certain license type, it will recommend to you, "You should go onto this license," which covers this vulnerability, or, "Go to this version, which covers this vulnerability." There are actual recommendations that are synchronized with the database in the States.
View full review »
SrLeadSo5b76
Sr Lead Solution Services at a financial services firm with 201-500 employees
It provides all up-to-date data information on the vulnerable issues for the various components that are available. I am able to see that various versions of the application are clear. Sometimes, there is a direct reference , so we can see what the issue is and what are the workarounds, if any, that there are available. It will even suggest certain steps which could be taken to remediate the issue. This helps streamline all the information available instead of us going to multiple sources and having to correlate information. Everything is easily available in a streamline manner. It is easy to access, review, make decisions, and proceed with fixes.
View full review »
Sign Up with Email