Skip to main content

Sonatype Lifecycle

Sonatype Lifecycle is the solution to identify open-source risks and to secure your software supply chain. With Lifecycle, you create custom policies which are enforceable across all stages of your software development lifecycle (SDLC).


The Sonatype IQ server powers our Repository Firewall, Lifecycle, and Auditor solutions. License and Features

Lifecycle is available in Self-Hosted, Cloud, or SaaS offerings. Learn more on

Where do I Start?

If you're a new Sonatype Lifecycle user, check out our Getting Started page.

What's New?

To see the latest changes and updates, see the Release Notes.

Our documentation is written to match the latest available release of Sonatype Lifecycle and any associated Integrations.

To download the latest version, see Download and Compatibility.

Need Help?

If you need any further assistance, contact the support team with your questions.