Description
Accelerate Vulnerability Remediation with Sonatype and ServiceNow Integration
ServiceNow’s Vulnerability Response module is now available to Sonatype Lifecycle users. This integration gives development teams a consolidated view of all open-source vulnerabilities for faster remediation and better protection against potential software breaches. Joint customers of ServiceNow and Sonatype can easily incorporate Sonatype Lifecycle’s software composition analysis and open source vulnerability scans directly into their existing workflows to help accelerate the response to application vulnerabilities, particularly in open source software components, thus, enhancing security measures and remediation efforts across enterprise environments. The free integration provides a single-pane-of-glass experience that combines software composition analysis (SCA) data from Lifecycle with SAST and DAST data from other systems.
As vulnerabilities are flagged swiftly, it allows developers to address and remediate issues quickly and reduce associated risks, while improving collaboration between development and security teams.
System Requirements:
-
Requires ServiceNow Application Vulnerability Response(AVR) version 20.0.2 and above, and Lifecycle SaaS/Private Cloud/Self-Hosted v173 or later.
-
The ServiceNow Vulnerability Response plugin must be activated.
Key features
Import Sonatype Vulnerability information about your organizations and applications into Application Vulnerability Response.
Ratings and reviews
Write a review
Be the first one to review this!
Write a review
Log in using your Now Support (HI) credentials
Write a review as a guest
Expand all
Hide All
Links and documents
Licensing requirements
Platform Licenses
Custom Table Requirements:
Free Partner Built Store Downloads:
Free Store features and applications built by ServiceNow partners require Customer have entitlement for the number of included custom tables, either through bundled custom tables that are included within their ServiceNow products or through a Now Platform App Engine subscription product. Out of the Box Free Store Applications of type "Integration" are exempted from the custom table count and do not require custom table entitlement.
Paid Partner Built Store Downloads:
Out of the Box Paid Store features and applications built by ServiceNow partners include embedded entitlements for the custom tables. Paid partner built apps do not consume custom tables and require no additional custom table entitlement, unless the out-of-the-box application is extended.
ServiceNow Built Store Downloads:
Out of the Box Store features and applications built by ServiceNow do not require custom table entitlement unless the out-of-the-box application is extended.
Partner Built Store Downloads - AI:
Apps distributed by ServiceNow partners on the Store with generative AI or agentic AI features ("AI Features") may consume Assists as specified by the ServiceNow partner. Assists consumed by AI Features are deducted against the total number of Assists available to Customer (at the account level) at the time of execution of a given AI Feature. ServiceNow does not determine the number of Assists consumed by AI Features so Customers should carefully review and understand the number of Assists consumed by AI Features before utilizing a partner application.
Partners are required to provide Customers with an estimate of how many assists may be consumed through use of their Apps.
Store downloads may require a separate ServiceNow subscription product to use the Store Application. Contact your ServiceNow Account Manager to determine subscription requirements should you have questions.
Terms and conditions
Contacts
