I think this should not be flagged as dupe. Sonatype is the company managing Maven Central, just like Github does for NPM. This is the link I would share to convince people they need to do something now, along with the yesterday submission from a startup blog with a good tech write-up.
