Sonatype Lifecycle

License risk analysis for development teams
Buy now Contact

Publisher

Sonatype

About this software

An add-on to Sonatype Nexus Lifecycle that extends open-source license and legal-risk analysis for development teams. It helps teams identify license obligations, enforce license policies, and surface potential legal issues tied to components used in builds. Designed for development, security, and legal stakeholders, the pack integrates with existing Nexus Lifecycle workflows to provide policy-driven reporting and remediation guidance for open source components in CI/CD pipelines.

Licenses & prices

Lifecycle cloud

Lifecycle Cloud edition offers hosted Sonatype Lifecycle services with continuous open-source risk monitoring and CI/CD integration.

Iq 1 user

Single-user Nexus IQ license providing a single-seat instance of IQ's scanning, policy evaluation, and remediation recommendations.

Iq private 1 user

Single-user private Nexus IQ license granting full feature access for one named user, suitable for evaluations or developers.

Purchase

Sonatype Lifecycle

Sonatype Lifecycle
In Stock
Delivery: 1 working day
Loading...
€1,046.19
Free and without obligation

Do you need more information or looking for another license?

envelope Get in contact phone Call me calendar Schedule a meeting

Benefits

  • License risk visibility: Identifies license obligations and potential conflicts across components.
  • Policy enforcement: Applies configurable license policies to block or flag noncompliant components.
  • Developer-focused reporting: Provides actionable reports for developers to remediate license issues.
  • CI/CD integration: Integrates with build pipelines to surface legal risks early.
  • Audit-ready records: Generates records and reports useful for legal and compliance reviews.

Available languages

  • English

Support information

  • Documentation: Official product documentation explains configuration, policy setup, and reporting features.
  • Knowledge base: Help articles provide troubleshooting steps and common configuration examples.
  • Community resources: Community forums discuss use cases and integration patterns.
  • Product updates: Publisher posts product updates and change notes on the official site.
  • Professional services available: Professional services are offered by Sonatype and partners for complex deployments.

Frequently asked questions

What is the Advanced Legal Pack add-on?
It is an add-on for Sonatype Nexus Lifecycle that extends license and legal-risk analysis, enabling deeper license policy enforcement and reporting within existing workflows.
Which Sonatype product does it integrate with?
It integrates with Sonatype Nexus Lifecycle (Nexus IQ) for policy enforcement and component analysis across build and delivery pipelines.
Who should use this add-on?
Legal, security, and development teams managing open-source license compliance and governance in software delivery should consider this add-on.
How does it surface license issues?
It scans component metadata against configured license policies and reports violations to developers and policy owners for remediation.
Can it produce compliance reports for audits?
Yes, it produces policy-driven reports and records intended to support compliance and legal review workflows.