Sonatype logo

Sonatype

Sonatype provides software supply chain management solutions including Sonatype Lifecycle (IQ Server), Sonatype Repository Firewall, SBOM Manager, and Nexus Repository. The Lifecycle Public REST API provides 188 endpoints for application portfolio management, policy enforcement, vulnerability reporting, component analysis, SBOM generation, source control integration, and software composition analysis across the SDLC.

1 APIs 1 Capabilities 0 Features
Software Supply ChainSecurityVulnerability ManagementSBOMSoftware Composition AnalysisDevSecOps

APIs

Sonatype Lifecycle API

The Sonatype Lifecycle Public REST API (v1.201.0) provides 188 endpoints for managing applications, organizations, policies, policy violations, waivers, vulnerability analysis, ...

Capabilities

Sonatype Software Supply Chain Security

Workflow capability for software supply chain security using Sonatype Lifecycle. Covers application portfolio management, policy violation monitoring, vulnerability intelligence...

Run with Naftiko

Semantic Vocabularies

Sonatype Context

2 classes · 12 properties

JSON-LD

API Governance Rules

Sonatype API Rules

8 rules · 2 errors 6 warnings

SPECTRAL

Resources

🌐
Portal
Portal
🔗
Documentation
Documentation
🔗
Website
Website
👥
GitHub
GitHub
📰
Blog
Blog
📄
Changelog
Changelog
💬
Support
Support
💰
Pricing
Pricing

Sources

Raw ↑ 
aid: sonatype
name: Sonatype
description: >-
  Sonatype provides software supply chain management solutions including Sonatype Lifecycle
  (IQ Server), Sonatype Repository Firewall, SBOM Manager, and Nexus Repository. The
  Lifecycle Public REST API provides 188 endpoints for application portfolio management,
  policy enforcement, vulnerability reporting, component analysis, SBOM generation,
  source control integration, and software composition analysis across the SDLC.
type: Index
position: Consumer
access: 3rd-Party
image: https://kinlane-productions.s3.amazonaws.com/apis-json/apis-json-logo.jpg
tags:
  - Software Supply Chain
  - Security
  - Vulnerability Management
  - SBOM
  - Software Composition Analysis
  - DevSecOps
url: >-
  https://raw.githubusercontent.com/api-evangelist/sonatype/refs/heads/main/apis.yml
created: '2025-02-12'
modified: '2026-05-02'
specificationVersion: '0.19'
apis:
  - aid: sonatype:sonatype-lifecycle-api
    name: Sonatype Lifecycle API
    description: >-
      The Sonatype Lifecycle Public REST API (v1.201.0) provides 188 endpoints for
      managing applications, organizations, policies, policy violations, waivers,
      vulnerability analysis, SBOM generation (SPDX, CycloneDX), scan management,
      component search, reports, source control integration, users, roles, and
      user tokens. Used by DevSecOps teams to automate software supply chain
      security and compliance workflows.
    humanURL: https://help.sonatype.com/en/iq-api-reference.html
    baseURL: https://{iq-server-host}/
    tags:
      - Software Supply Chain
      - Security
      - Policy
      - Vulnerability Management
      - SBOM
      - Software Composition Analysis
      - Applications
      - Organizations
    properties:
      - type: Documentation
        url: https://help.sonatype.com/en/iq-api-reference.html
      - type: Reference
        url: https://help.sonatype.com/en/rest-apis.html
      - type: OpenAPI
        url: >-
          https://raw.githubusercontent.com/api-evangelist/sonatype/refs/heads/main/openapi/sonatype-lifecycle-openapi.yml
      - type: JSONSchema
        url: >-
          https://raw.githubusercontent.com/api-evangelist/sonatype/refs/heads/main/json-schema/sonatype-application-schema.json
      - type: JSONSchema
        url: >-
          https://raw.githubusercontent.com/api-evangelist/sonatype/refs/heads/main/json-schema/sonatype-policy-violation-schema.json
    contact:
      - FN: Sonatype Support
        url: https://support.sonatype.com/
common:
  - type: Portal
    url: https://www.sonatype.com/
  - type: Documentation
    url: https://help.sonatype.com/
  - type: Website
    url: https://www.sonatype.com/
  - type: GitHub
    url: https://github.com/sonatype-nexus-community
  - type: Blog
    url: https://www.sonatype.com/blog
  - type: Changelog
    url: https://help.sonatype.com/en/sonatype-iq-server-2025-release-notes.html
  - type: Support
    url: https://support.sonatype.com/
  - type: Pricing
    url: https://www.sonatype.com/products/pricing
maintainers:
  - FN: Kin Lane
    email: [email protected]