Sonatype Platform Browser Extension
Shift Security Left with the Sonatype Platform Browser Extension - Scan Open Source Repositories for known Vulnerabilities.
Sonatype Platform Browser Extension - Scan Open Source Repositories
Sonatype Platform Browser Extension is a Chromium browser extension that works with the Sonatype Platform to empower Developers to make better choices earlier in the Software Development Lifecycle. Connect to your Organization's Sonatype Lifecycle Server and get instant risk insight while browsing public Open Source Registries.
Extension stats
Manifest V3
Permissions:
- activeTab
- declarativeContent
- background
- scripting
- storage
- tabs
Size: 5.33M
Email: co*****@sonatype.com
URLs: Website ,Privacy policy
Full description: See detailed description
Ranking
Other platforms
Not available on Android
Not available on Firefox
Not available on Edge
User reviews
These summaries are automatically generated weekly using AI based on recent user reviews.
Chrome Web Store does not verify user reviews, so some user reviews may be inaccurate,
spammy, or outdated. Pros
- Helps identify high-risk security vulnerabilities in OSS components before downloading
- Provides insights into security and legal implications of components
- Facilitates early decision-making in the software development lifecycle (SDLC)
- Useful for researching open source components being considered for applications
Cons
Most mentioned
- Useful plugin for analyzing OSS components
- Prevents mistakes early in the SDLC
- Supports shifting left approach in development
User reviews
I use this all the time. As developers are initially considering which component to use in their application, they get information while looking at the component in the OSS repository without doing anything. Awesome for shifting left selecting the best component rather than remediating downstream!
by 
Chris Wolters, 2024-05-09
Chris Wolters, 2024-05-09A great tool for analyzing OSS components on the web for high-risk security vulnerabilities prior to downloading for use. Prevent mistakes early on in the SDLC by alerting on insecure packages before they are built in to application code.
by 
Neil Schloth, 2023-08-16
Neil Schloth, 2023-08-16The ultimate in shifting left!
by 
Ben Hartley, 2023-07-14
Ben Hartley, 2023-07-14Extension safety
Risk impact
Sonatype Platform Browser Extension requires a few sensitive permissions. Exercise caution before installing.
Risk impact analysis details
- Critical Grants access to browser tabs, which can be used to track user browsing habits and history, presenting a privacy concern.
- High ******* ******* **** *** ****** ***** *** ***** ** ******* **** ********* ********* ** * *********** *****
- Low ******* ****** ** *** ********* ********
Risk likelihood
We don't have sufficient data to confidently determine the risk likelihood of Sonatype Platform Browser Extension. Use it at your own risk.
Risk likelihood analysis details
- High This extension has low user count. Unpopular extensions may not be stable or safe.
- Low **** ********* *** ******* **** **** * ****** **** ***** ******** *** **** ****** ** ** ****** *** *****
- Low **** ********* *** ***** **** **** * ****** **** ***** ********** *** **** ****** ** ** ****** *** *****
- Good **** ********* *** **** **** *******
Upgrade to see full risk analysis details
Promo images
Similar extensions
Here are some Chrome extensions that are similar to Sonatype Platform Browser Extension:
BagToad
60 5.00 
(1)
(1) 
https://www.pointie.ca
132 5.00 (4)
(4) 
Linqbase
44 5.00 (4)
(4) 
https://iteratingly.com
40 0.00 (0)
(0) 
https://gpt-privacy.com
121 5.00 (1)
(1) 
engineering
108 0.00 (0)
(0) 
https://sonatype-nexus-community.github.io/nexus-iq-chrome-extension
769 5.00 (4)
(4) 
https://debricked.com
111 5.00 (5)
(5) 
https://zimzee.com
157 5.00 (6)
(6) 
WoXy-Sensei
48 5.00 (20)
(20) 
camface.developer
99 5.00 (3)
(3) 
https://vind-works.io
79 5.00 (5)
(5)