Exciting news! Through its acquisition of Tidelift, Sonar enhances its existing security capabilities by extending coverage to open-source software, which makes up over 90% of modern software.

With these additional capabilities from Tidelift, Sonar now provides a comprehensive solution for managing code quality and security throughout the software supply chain, and you can:

• Reduce security risk by eliminating attack entry points through bad packages
• Improve productivity by reducing vulnerability fire drills from insecure or undermaintained packages
• Improve application quality by building with healthy and resilient open source packages
• Increase operational efficiency by saving costly manual package evaluation time