Sonatype, the software supply chain optimisation company, announced artificial intelligence and machine learning (AI/ML) component detection, a first-of-its-kind capability, available as part of Sonatype Lifecycle.
This technology fundamentally changes the way organisations select and monitor AI/ML software components, enabling them to accelerate software development while effectively managing the risks associated with AI.
Usage of AI/ML Components
The adoption of AI, particularly generative AI, in software development is rapidly growing. According to Sonatype's 9th annual State of the Software Supply Chain report, there was a staggering 135% increase in the usage of AI/ML Components within corporate environments compared to the previous year. By the end of January 2024, this number saw a further 20% increase in a matter of months.
Further, Gartner reported that by 2027, 70% of professional developers will use AI-powered coding tools. The widespread acceptance of AI is not only due to its expanding utility but also its transformative impact on speeding up software development.
Future of software development
“Organisations must be prepared for the wave of behavioural AI and generative AI that is already radically shaping the future of software development, much like open source did when Maven Central first launched in 2003. This is an exciting time for software development productivity and innovation; the data shows that enterprises adopting AI in new product innovation and software supply chains are disrupting competitors and moving faster than ever before,” said Mitchell Johnson, Chief Product Development Officer at Sonatype.
“At the same time, AI/ML introduces a whole new set of risks so it is crucial to have the data, precise identification, legal compliance, and policy enforcement in place to understand where and how these new capabilities are being used - without slowing anyone down.”
Best AI/ML suppliers
New AI/ML component detection offers unrivalled visibility and control of AI/ML in the software
Sonatype’s new AI/ML component detection offers unrivalled visibility and control of AI/ML in the software they build. This enables to safely use the best AI/ML suppliers in the software, transforming the software development lifecycle and security review processes - all with the same Sonatype platform the trust to optimise the open source usage.
Key functions of AI/ML Component detection:
- AI/ML Usage Monitoring and Component Categorisation: Gain visibility into AI usage and monitor its impact through comprehensive data insights and component categorisation. Simply put, answer the question of where and how AI and GenAI are being used in the development organisation.
- AI Usage Management: Set policy constraints based on AI/ML taxonomies to effectively manage and control AI usage. Apply existing Sonatype Lifecycle policies to the AI/ML components for universal consistency.
- Internal Detection of AI Models: Maintain a comprehensive catalog and index of AI/ML models and datasets to detect open-source AI models used internally as well as modified versions of those AI models via our ground-breaking detection technology.
Fast-paced technology landscape
Sonatype's Artificial Intelligence Component Detection is a game-changer for software development teams, providing them with the tools they need to innovate and stay ahead in the fast-paced technology landscape.
With this new feature, organisations can confidently embrace AI/ML components while mitigating security, legal, and quality risks.
