The DXP Scorecard — Independent Platform Evaluation
Independent Platform Evaluation
Scored on implementation experience
Not vendor briefings
← Dashboard

Sanity

Headless CMSTier 2
Visit Website ↗
Overall Capability
70/ 100
#3of 40overall#1of 12Headless CMS

Sanity is the developer-first structured content leader: best-in-class content modeling (85.4 in Core Content Management), Portable Text, real-time collaboration, and an extensibility model few peers match, now amplified by an aggressive AI push (Content Agent, hosted MCP server, native embeddings) that earns 71.1 in AI Enablement.

Head-to-Head

Capability70 : 70
Cost Efficiency76 : 64
Build Simplicity68 : 64
Operational Ease67 : 61

Sanity offers deeper content structure (Portable Text vs rich text), real-time collaboration Contentful lacks, a more powerful query language in GROQ, and a stronger AI-agent story, at a materially lower entry price. Contentful counters with native field-level localization, a larger formal app marketplace, broader compliance certifications including its own ISO 27001, and a gentler learning curve for enterprise teams standardized on GraphQL/REST.

Full Comparison →
Capability70 : 68
Cost Efficiency76 : 56
Build Simplicity68 : 67
Operational Ease67 : 66

Sanity wins decisively on developer experience, extensibility, structured content, and community sentiment, while Contentstack brings enterprise muscle Sanity lacks: built-in workflows with multi-step approvals, broader compliance coverage, a larger enterprise connector catalog, and analyst validation as a Visionary in the 2025 Gartner MQ. Contentstack suits procurement-driven enterprises; Sanity suits product teams who will build on the platform.

Full Comparison →
Capability70 : 63
Cost Efficiency76 : 72
Build Simplicity68 : 70
Operational Ease67 : 61

Storyblok's visual editor is genuinely marketer-friendly out of the box with a 4–6 week developer ramp versus Sanity's 12+ weeks, making it the easier choice for marketing-led teams. Sanity offers far deeper content structure, real-time collaboration, a stronger event/Functions system, and a substantially more advanced AI-agent surface, rewarding teams who invest in the platform.

Full Comparison →
Capability70 : 48
Cost Efficiency76 : 76
Build Simplicity68 : 69
Operational Ease67 : 49

Strapi's open-source, self-hostable model gives full infrastructure control and eliminates SaaS lock-in — a decisive advantage where data sovereignty or air-gapped deployment matters, since Sanity's Content Lake is SaaS-only. Sanity delivers a far more polished managed experience: real-time collaboration, near-zero ops burden, superior structured rich text, and a mature AI/agentic layer Strapi cannot match.

Full Comparison →
Compare Sanity against any of 40 platforms →

Use-Case Fit

Top Fit
Marketing
49#26 of 40
Commerce
38#23 of 40
Intranet
32#22 of 40
Multi-Brand
45#22 of 40
Ideal For
  • 93Product and engineering-led organizations building content-driven applications on React/Next.js
  • 87Editorial teams needing real-time collaborative structured content at scale
  • 85Teams building AI-agent-driven content operations
  • 76Shopify and headless commerce brands enriching product content with editorial storytelling
  • 68Multi-brand and multi-site organizations with dedicated development resources
Look Elsewhere If
  • 22Marketing organizations expecting an integrated DXP suite
  • 24Companies building intranets or employee portals
  • 32Content teams without developer support wanting turnkey page building
  • 35Regulated enterprises requiring HIPAA BAAs, own-platform ISO 27001, or FedRAMP

Strengths & Weaknesses

Strengths
  • +
    Best-in-class structured content and Portable Text

    Schema-as-code content modeling scores 95 with 20+ field types and unlimited nesting, and Portable Text (95) is the rubric's named exemplar for structured rich text — a fully structured JSON AST rather than HTML blobs. Rich text extensibility (93) and true multi-channel output (90) mean the same content renders to web, mobile, email, and AI-agent channels without loss of structure.

    93.3
  • +
    Exceptional developer experience and extensibility

    The extensibility model (92) is best-in-class among headless CMS platforms — Studio v6 on Vite 8 is fully customizable via React components, with the App SDK, Functions, and Blueprints extending into serverless automation. TypeGen delivers precise types from schema and GROQ queries (90), API design quality scores 88, local dev with 2–9× faster v6 builds scores 88, and documentation quality is 85.

    88.6
  • +
    Industry-leading real-time collaboration

    Real-time co-editing is a core architectural feature of the Content Lake — simultaneous multi-author editing with live presence, field-level conflict resolution, and no document locking scores 90, with the editorial collaboration surface (comments, tasks, @mentions, full revision history) at 78. Sanity has been rated #1 headless CMS on G2 for collaboration-driven satisfaction for four consecutive years.

    84
  • +
    Standout event system: GROQ webhooks plus serverless Functions

    GROQ-powered webhooks (90) support arbitrary filtering, projections, and Delta-GROQ before/after comparisons with signed payloads, exponential backoff retry, and idempotency keys — significantly more powerful than most CMS webhook implementations (78 on event streaming). Sanity Functions add Node.js v22 serverless compute up to 900 seconds, including cron-style Scheduled Functions, spanning both event delivery and managed compute.

    84
  • +
    Leading AI-agent readiness and agentic content operations

    The hosted MCP server (90) is GA with OAuth and 40+ schema-aware tools, shipping as a connector in Claude, Lovable, and Cursor. Content Agent (86) runs multi-step content operations across Dashboard, Slack, and a public API with every edit staged as a reviewable draft, and the Content Agent API plus Agent Context and native GROQ-queryable embeddings give an exceptional developer AI surface (85) alongside mature schema-aware text generation (82).

    85.8
  • +
    Elite release velocity backed by strong sentiment and funding

    Customer sentiment is exceptional (89) — 4.7/5 on G2 across 900+ reviews and #1 headless CMS for four straight years — while an $85M Series C ($173M total) and growing headcount signal stability (86). The release cadence (85) is roughly weekly, including a disciplined v6.0 major release shipped and iterated to v6.3 within three weeks in June 2026.

    86.7
Weaknesses
  • No native personalization, segmentation, or experimentation engine

    Audience segmentation scores 10 and recommendations 5 — there is simply no native engine for either. The official personalization plugin provides Studio-side variant management (35) and A/B experiment wiring (25), but all targeting, traffic allocation, and statistical measurement must be delegated to external tools like GrowthBook, LaunchDarkly, or Croct (42 and 45 on the use-case side).

    27
  • Missing marketing execution stack: forms, email, automation, CDP

    There is no native form builder (15), no email/ESP integration (20), no marketing automation (15), and no CDP connectivity (20) — every one of these requires external tools or custom Functions-based development. Performance marketing tooling (35) is likewise entirely a frontend or third-party concern, making Sanity a content layer within a MarTech stack rather than a marketing platform.

    21
  • Poor fit for intranet and employee experience use cases

    Sanity has no end-user portal features: employee experience scores 30, internal communications 22, people directory 28, enterprise search for end-users 25, LMS integration 18, and social features 20. Everything editor-facing is strong, but content-consumer experiences require building an entire custom frontend, making traditional intranet deployments impractical.

    23.8
  • Thin compliance certification portfolio for regulated industries

    Sanity holds no ISO 27001 of its own (38) — the security page cites only Google Cloud's certifications, which do not transfer to the SaaS layer — and its SOC 2 Type II covers the Security criterion only. There is no PCI DSS, FedRAMP, CSA STAR, or HITRUST (48), and despite a new healthcare landing page no public BAA is offered for HIPAA workloads (54).

    46.7
  • Aggressive Enterprise feature gating and overage-driven cost risk

    Content Releases, custom roles, full audit trail, cross-dataset references, and SLA are Enterprise-only, and SAML SSO costs $1,399/month as a Growth add-on (60 on feature gating). The pricing model (62) carries spike risk: non-CDN API requests cost 10× CDN requests, and the Growth document quota is a hard cap forcing a $299/month add-on or an Enterprise contract.

    61
  • Steep proprietary learning curve

    Concept complexity scores just 30 — teams must learn GROQ, Portable Text, Content Lake, Structure Builder, and an expanding surface of App SDK, Functions, and MCP concepts, none of which transfer from other platforms. Editors cannot create new page types or layouts without developer schema work (55 on cross-functional complexity), and 2026 comparisons report a 12+ week path to full proficiency versus 4–6 weeks for Storyblok (62).

    51.3

Deep Dive

Full Analyst Assessment

Sanity is the developer-first structured content leader: best-in-class content modeling (85.4 in Core Content Management), Portable Text, real-time collaboration, and an extensibility model few peers match, now amplified by an aggressive AI push (Content Agent, hosted MCP server, native embeddings) that earns 71.1 in AI Enablement. Its weaknesses are the mirror image — Platform Capabilities scores just 49.4 and Use-Case Fit 41 because it ships no native personalization, testing, forms, email, or marketing automation, and enterprise compliance depth (no own ISO 27001, no BAA) trails DXP peers. It is an exceptional content backbone for product-led teams with React/TypeScript talent, and a poor fit for marketing organizations expecting an integrated DXP suite.

1Core Content Management85
Content Modeling
1.1.1
Content type flexibility
95H

Sanity's schema-as-code model remains best-in-class. Developers define content types in JS/TS with 20+ field types including string, number, date, reference, image, file, geopoint, slug, URL, object, array, and block (Portable Text), with unlimited nesting, programmatic schema generation, and TypeScript inference. Studio v6.0-v6.3 (June 2026) continued schema tooling refinements (e.g. geopoint collapsible options in v6.1); the only minor gap remains the absence of a native discriminated-union type.

1.1.2
Content relationships
82H

Strong reference type with cross-content-type references, filtered references, and weak references for soft linking. GROQ enables reverse-reference lookups via the references() function, but references are unidirectional at the data layer — bidirectional traversal requires GROQ queries rather than being a first-class schema concept, and there is no native graph-traversal syntax.

1.1.3
Structured content support
95H

Portable Text remains the most sophisticated structured rich text format in the CMS market and is the named exemplar in this rubric — content is a fully structured JSON AST, not HTML blobs, with custom block types, inline objects, annotations/marks, nested components, and reusable fragments via references, all first-class. Studio v6.0's new groq2024 default search adds full Portable Text search (deeply nested content, wildcards, phrases, negation), and the structured JSON format continues to underpin Sanity's MCP server and Content Agent tooling.

1.1.4
Content validation
88H

Synchronous and asynchronous custom validation functions at field level with full document context for cross-field validation, plus built-in rules for required, min/max, regex, and custom predicates, custom error messages, and warning-level (non-blocking) validation. Content Releases adds release-level validation before publishing; the only minor gap is that validation is entirely imperative JS with no declarative validation schema.

1.1.5
Content versioning
80H

Content Releases support bundled multi-document changes with preview, validation, and scheduled publishing; Scheduled Drafts are available on all paid plans and the History API provides version history with plan-based retention. Studio v6.0-v6.1 improved Content Release validation-error highlighting and jump-to-field navigation, and programmatic release management continues to deepen via the MCP server and React App SDK — but there is still no visual diff in core Studio and no git-style content branching, and some advanced Releases features remain Enterprise-gated.

Authoring Experience
1.2.1
Visual/WYSIWYG editing
76M

The Presentation tool with the Live Content API enables click-to-edit overlays on the live frontend and drag-and-drop section rearrangement that updates underlying Content Lake array items, and Canvas's free-form AI editor auto-maps drafts to Studio schema in real time. Studio v6.0-v6.1 (June 2026) shipped visual-editing bugfixes for Portable Text (including re-focusing a PT block on repeated click in the preview), but it still requires per-frontend developer wiring and is not a turnkey out-of-the-box page builder for marketers.

1.2.2
Rich text capabilities
93H

The Portable Text Editor is fully extensible with custom block types, custom marks/annotations, inline objects, and configurable formatting, and its output is a structured JSON AST rather than HTML, making it truly portable. Studio v6.3.0 (June 30, 2026) cleaned up legacy attributes in the PTE and the v6.x line continues iterative editor refinements; minor gaps remain in editor-UX polish versus dedicated editors like TipTap and in advanced table support requiring custom work.

1.2.3
Media management
83H

Media Library combines AI-powered semantic search, custom 'Aspects' (schema-like asset metadata), cross-project sharing, folders (public beta, built on the Content Lake hierarchy primitive), and native video management — videos uploaded via defineVideoField are processed into streaming playback IDs with aspect-ratio/duration/framerate metadata (MP4, MOV, AVI, MKV, WebM). Image hotspot/crop and URL transforms (WebP/AVIF) remain strong; not higher because folders are still beta and it remains a lightweight DAM rather than a full replacement for Bynder/Brandfolder.

1.2.4
Real-time collaboration
90H

Real-time collaboration is a core architectural feature of the Content Lake — multiple editors work on the same document simultaneously with live presence indicators and automatic field-level conflict resolution, with no document locking required, and Content Releases adds collaborative release management. This is genuinely best-in-class among headless CMS platforms.

1.2.5
Content workflows
68M

Content Releases provide coordinated multi-document publishing with scheduling and validation, and Content Agent plus the App SDK and Workflow Manager plugin (kanban stages) enable custom workflow apps, with User Attributes improving role-based access granularity. Still no built-in multi-step approval chains or configurable workflow stages in core — custom approval flows require development work.

Content Delivery
1.3.1
API delivery model
88H

GROQ remains one of the most flexible query languages in the CMS market — projections, joins, filtering, sorting, slicing, and computed fields in a single query, with full TypeGen support for custom functions and Delta-GROQ before()/after() for change reasoning; GraphQL is auto-generated from schema and next-sanity v13 adds Next.js Cache Components support. Main limitations: GROQ is proprietary and the GraphQL API is read-only.

1.3.2
CDN and edge delivery
82M

Sanity's API CDN (apicdn.sanity.io) provides global edge caching with automatic per-document cache invalidation on content changes, included on all plans, with TTL and stale-while-revalidate controls, and Sync Tag Invalidate Functions plus next-sanity v13 Cache Components improve framework-level cache coordination. Not higher because there is no edge-compute layer for edge-side personalization or transforms, and cache behavior for complex GROQ queries can be surprising.

1.3.3
Webhooks and event system
90H

Among the strongest event systems in the headless CMS space: GROQ-powered webhooks support filtering, projections, and Delta-GROQ before()/after()/changedAny()/operation() comparisons with automatic retry, and Sanity Functions (document, asset, sync-tag-invalidate, and cron-style Scheduled Functions) run Node.js v22 up to 900s with 10GB memory, deployable via Blueprints and GitHub Actions. This spans both webhook delivery and serverless compute, which few peers match.

1.3.4
Multi-channel output
90H

Sanity is a true headless CMS with Portable Text as a format-agnostic structured content format that renders to HTML, React, Vue, native mobile, or email without loss of structure, and @sanity/client works across Node, browser, and edge runtimes. The MCP server (MCP apps, 24+ releases) exposes structured content to AI agents as another delivery target, and Sanity Connect for Salesforce Commerce Cloud joins the Shopify connector; the main gap is that official SDKs are limited to the JS/TS ecosystem, with other languages community-maintained.

2Platform Capabilities49
Personalization & Experimentation
2.1.1
Audience segmentation
10H

Sanity has no native audience segmentation engine. The @sanity/personalization-plugin enables field-level audience variants but does not include segment building, behavioral targeting, or CDP integration. Segmentation must be handled entirely by external tools (Segment, CDP platforms).

2.1.2
Content personalization
35M

The official @sanity/personalization-plugin enables field-level content variants directly in Studio — editors can create variant content per field and map them to audiences or experiments, and page-level personalization is possible by experimenting on reference fields. The targeting decision still requires an external tool (GrowthBook, LaunchDarkly, Amplitude, Croct). This is Studio-integrated variant management with external decision engines, not native personalization.

2.1.3
A/B and multivariate testing
25M

The @sanity/personalization-plugin supports A/B/n experiments with field-level experiment IDs and variant arrays managed in Studio, with documented integration patterns for GrowthBook, LaunchDarkly, and Amplitude. Traffic allocation, statistical significance, and results reporting all require these external tools. The plugin bridges content variant management into Studio but experimentation logic is fully external.

2.1.4
Recommendation engine
5H

No recommendation engine. GROQ can query related content by shared references or tags, but this is manual query logic, not algorithmic recommendations. There are no ML-based, collaborative filtering, or weighted editorial recommendation features.

Search & Discovery
2.2.1
Built-in search
58H

Studio v6 (June 11, 2026) promoted groq2024 to the default search strategy (replacing groqLegacy): Google-style queries with wildcards, phrases, and negation, full Portable Text search across deeply nested content, and faster performance on large datasets, alongside GROQ's existing match operator and score() relevance ranking. It remains a query/index layer, not a consumer search product — no faceted search UI, no typo tolerance, no autocomplete, and no search analytics — so it sits at the top of the basic full-text band rather than the relevance-tuning-plus-faceting band.

2.2.2
Search extensibility
65M

Sanity's GROQ-powered webhook system, real-time listener API, and export capabilities make it straightforward to sync content to Algolia, Elasticsearch, Typesense, or Meilisearch. Well-documented community patterns exist, especially for Algolia. However, there is no official pre-built connector or marketplace integration for any search platform — integration follows documented patterns but is custom work.

Commerce Integration
2.3.1
Native commerce
15H

Sanity has no native commerce capabilities — no PIM, no cart, no checkout, no order management, no pricing engine. It is a content platform. Product data can be modeled using flexible content types but there are no commerce-specific features or transactional capabilities.

2.3.2
Commerce platform integration
55M

Sanity Connect for Shopify is an official integration syncing product data into Sanity as documents with a product picker UI in Studio, but sync is one-way (Shopify → Sanity) — editing a product in Studio does not push back, so Shopify stays canonical and Sanity handles enrichment. Official starters and partner integrations (Patchworks, The Commerce Partnership) cover commercetools, and patterns exist for Medusa. These remain content-enrichment integrations, not deep bidirectional commerce sync with live pricing/inventory federation.

2.3.3
Product content management
50M

Sanity's flexible schema supports product content modeling — descriptions, media, attributes, variant/SKU arrays as nested objects. However, there is no purpose-built PIM interface, no variant matrix UI, no attribute management, and no product-specific workflows. It's generic content modeling applied to products, which works but requires schema design effort.

Analytics & Intelligence
2.4.1
Built-in analytics
42M

Sanity Insights provides six content operations analytics modules on the Dashboard: Work in Progress, Releases, Document Types distribution, Documents Created velocity, Recently Published activity (1–12 weeks), and Last Updated staleness detection. Content Agent (2026) can surface these insights via Slack and API. This is genuine content lifecycle analytics, but it lacks content performance metrics (engagement, page views) and author productivity scoring.

2.4.2
Analytics integration
55M

Dashboard supports custom apps and widgets that can pull in external analytics data, and Functions (serverless event handlers) can stream content events to analytics platforms. An official Datadog integration exists for operational observability. However, there are no pre-built connectors to GA4, Segment, or Amplitude — content analytics integration is custom work via webhooks and the API-first architecture.

Multi-Site & Localization
2.5.1
Multi-site management
68M

Sanity supports multi-site through multiple datasets with cross-dataset references for content sharing. Studio workspaces allow per-site configuration. The Dashboard provides cross-project and cross-studio visibility. Content sharing is native but governance is largely custom — there's no centralized content hub UI making multi-site governance intuitive out of the box.

2.5.2
Localization framework
62M

Both localization patterns are covered by officially maintained plugins: @sanity/document-internationalization v6 for document-level and sanity-plugin-internationalized-array v5 (March 2026) for field-level localization that scales to many languages. Neither is native core functionality, and fallback locale chains still require custom implementation, keeping it behind Contentful's native field-level locale support.

2.5.3
Translation integration
62M

Smartling offers an official Sanity connector (sanity-io/sanity-plugin-studio-smartling) supporting both field-level and document-level localization with automated push/pull, cost estimates, and job authorization. Transifex also documents a Sanity integration, though it is incompatible with the v5/v6 plugin generation as of 2026. AI Assist provides schema-aware translation. No in-platform translation memory, and the TMS catalog remains narrower than Contentful's or Contentstack's.

2.5.4
Multi-brand governance
52L

Multi-brand is achievable via project/dataset architecture and the roles system. Dashboard provides cross-project visibility and Media Library (Enterprise) enables cross-brand asset sharing. But there's no purpose-built multi-brand governance layer — no cross-brand approval workflows, no global style/policy enforcement, no centralized component library management.

Digital Asset Management
2.6.1
Native DAM capabilities
58M

Sanity Media Library provides organization-level asset management with custom metadata schemas (Aspects: usage rights, copyright, approval status), collections, role-based access, versioning, usage tracking (active vs. orphaned assets), rights/expiry governance, and cross-project sharing with rich previews for video, PDF, audio, and Lottie/Rive. However, it is an Enterprise-plan add-on — non-Enterprise customers rely on the basic asset store plus the free sanity-plugin-media for tagging/filtering. Flat structure (no hierarchical folders) and the Enterprise gating keep this out of the 70+ band.

2.6.2
Asset delivery & CDN optimization
75H

Sanity serves all assets through a global CDN with content-hash-based indefinite caching. The image pipeline supports on-the-fly transforms via URL parameters — resize, crop, format conversion (AVIF, WebP, JPG, PNG, GIF), compression, and focal point/hotspot preservation for smart cropping. Supports 256-megapixel archival originals. This is genuinely strong CDN + transform capability for a headless CMS.

2.6.3
Video & rich media management
45M

Media Library includes integrated streaming video: uploads are automatically transcoded for adaptive bitrate streaming and delivered via global CDN with playback IDs, thumbnails, and duration/aspect/framerate metadata — but it is part of the Enterprise add-on and transcoded source files cannot be re-downloaded. For other plans, the Mux Video Input plugin provides 4K, static MP4 renditions, signed URLs, captions, and watermarking via a third-party service. Materially stronger than upload-only storage but gated and partly dependent on Mux.

Authoring & Editorial Experience
2.7.1
Visual page builder & layout editing
62H

Sanity's Presentation tool enables Visual Editing with live overlay editing — clicking any element in the preview navigates to the corresponding Studio field with real-time updates. Drag-and-drop page building lets editors add, move, remove, and reorder sections directly in the preview with right-click context menus, framework-agnostic and updating structured content directly (docs current as of May 2026). Still requires developer setup of overlays and components, is not touch-compatible, and is not a no-code layout editor.

2.7.2
Editorial workflow & approvals
50M

Sanity ships Tasks built-in for lightweight review assignment, @mentions, and inline comments. The third-party Workflow Manager plugin adds custom workflow states, kanban board, and user assignments. Content Releases provides coordinated multi-document approval with role-based sign-off but became an Enterprise-only add-on in November 2025. Native workflow is limited to draft/published states — full multi-step custom routing requires the plugin, and there is no SLA tracking or formal audit trail of approval actions.

2.7.3
Publishing calendar & scheduling
58H

Scheduled Drafts (all paid plans) supports future-dated publishing with timezone awareness directly from the document pane, replacing the deprecated Scheduled Publishing plugin. Content Releases provides atomic multi-document bundled publishing with scheduling, pre-publish validation, and coordinated unpublishing — but as of November 2025 it is an Enterprise-only add-on, narrowing access to release bundles and embargo/unpublish for most customers. A community calendar plugin offers editorial overview.

2.7.4
Real-time collaboration
78H

Sanity is industry-recognized for real-time collaboration: every keystroke is stored and shared instantly enabling true simultaneous multi-author editing without lockouts, live presence indicators, inline comments and tasks built-in, @mentions and notifications, and full document revision history with side-by-side comparison and restore. Studio v6 (promoted June 11, 2026; v6.3.0 on June 30) continues the frequent iterative release cadence. Sanity has been rated #1 on G2 for collaboration-driven satisfaction for multiple years.

Marketing & Engagement
2.8.1
Forms & data capture
15H

Sanity has no native form builder. Building forms requires embedding external tools (HubSpot Forms, Formspree, Typeform) or custom development via Sanity APIs. There is no submission storage, conditional logic, progressive profiling, or CAPTCHA natively in the platform.

2.8.2
Email marketing & ESP integration
20H

Sanity has no native email send capabilities and no pre-built ESP connectors. HubSpot and Mailchimp integration requires custom API development. Functions can trigger outbound API calls to ESPs on content events, but this is fully custom implementation.

2.8.3
Marketing automation
15H

No native marketing automation capability. Functions (serverless event handlers) can trigger external automation platforms via webhooks, but there are no behavioral triggers, drip campaigns, lead scoring, or nurture flows built into the platform. This is expected for a headless CMS.

2.8.4
CDP & customer data integration
20M

No native CDP or pre-built CDP connectors. Segment integration requires custom webhook-based event streaming via Functions. There is no unified customer profile access in the CMS, no audience sync for personalization from a CDP, and no real-time identity resolution. Fully external implementation pattern.

Integration & Extensibility
2.9.1
App marketplace & ecosystem
72M

Sanity's Exchange at sanity.io/plugins has hundreds of community and official plugins covering Shopify, Mux, Cloudinary, Smartling, Bynder, and more, with first-party plugins well-maintained on the frequent Studio release cadence (now v6). 2026 added official AI-tool connectors: Claude (web/desktop/mobile and Claude Code via Remote MCP), Lovable, and Cursor, plus Content Agent in Slack. Traditional marketplace breadth remains smaller than Contentful's, and the enterprise connector catalog is lighter than Contentstack's.

2.9.2
Webhooks & event streaming
78H

Sanity's GROQ-powered webhooks are a standout capability: every document create/update/delete event can trigger webhooks filtered by any GROQ expression, with signed payloads (Stripe-style secret header), exponential backoff retry up to 30 minutes, idempotency-key headers, IP whitelisting, and webhook logs in Dashboard. Functions add serverless event-driven automation including Media Library Asset Functions and Blueprints. The GROQ filter system makes Sanity's webhooks significantly more powerful than most CMS webhook implementations.

2.9.3
Headless preview & staging environments
70H

The Presentation tool provides live preview of any headless frontend with overlay editing, shareable draft preview links, desktop/mobile toggle, and draft vs. published comparison. Multiple datasets serve as staging/production environments. Preview works across any frontend framework with the visual-editing SDK, with current quickstarts for Next.js, Remix, Astro, SvelteKit, Nuxt, and React Native. Branch-based environment promotion is custom rather than built-in.

2.9.4
Role-based permissions & governance
65M

Sanity offers custom roles via the Access API with dataset-level permissions, document-level ACL via GROQ-filtered content resources, organization-level token management, and SAML/SSO (Okta, Azure AD, Google Workspace) on Business and Enterprise plans with automated IdP group-based role mapping and JIT provisioning. Custom role mapping rules are Enterprise-only. SCIM is not supported on any plan, leaving user lifecycle management (deprovisioning, role sync) gaps, and field-level permissions are not part of the documented core role model.

3Technical Architecture79
API & Integration
3.1.1
API design quality
88H

GROQ remains a well-designed, consistent query language with a full specification, cheat sheet, and interactive examples; the Query HTTP API and @sanity/client fetch expose the complete GROQ pipeline (joins, sub-queries, dereferencing, score()/order()). GraphQL is available as a secondary option and HTTP mutations follow clear REST conventions with descriptive errors and rate-limit headers. The proprietary nature of GROQ is the main criticism, but design quality and documentation are excellent.

3.1.2
API performance
80M

API CDN provides good global read performance with sub-100ms cached query responses, rate limits documented per plan, and GROQ pagination via slicing plus batch mutations. Studio v6's groq2024 default search improves query performance on large datasets (wildcards, phrases, negation, full Portable Text). Complex GROQ queries can still be slow without optimization, non-CDN API has variable latency, and there are no published response-time SLAs.

3.1.3
SDK ecosystem
82H

The JS/TS ecosystem is excellent and current: @sanity/client (v7.x, typed, real-time listeners, releases/versions helpers), next-sanity with visual editing, @sanity/image-url, @portabletext/react, and the App SDK with React hooks and data stores. Quality is exceptional but official SDKs remain JS/TS only — PHP, Python, Go, and .NET clients are community-maintained or absent, so non-JS backends must call the HTTP API directly, limiting the score.

3.1.4
Integration marketplace
64M

AI/agent integrations continue to expand: the MCP Server is GA (published to the official MCP Registry) with OAuth and managed infrastructure, and Content Agent is available in Slack and via an API/ContentAgent class that mixes client and server tools in one agent loop. The plugin directory at sanity.io/plugins covers core needs with active community development, and Functions enable serverless integrations. It still lacks a formal marketplace with reviews/ratings/quality tiers compared to Contentful or WordPress, keeping it mid-range.

3.1.5
Extensibility model
92H

Sanity's extensibility is best-in-class among headless CMS platforms. Studio v6 (v6.3.0 as of June 30, 2026, on Vite 8 with 2–9× faster builds and React strict mode) is fully extensible via React components: custom inputs, document views, document actions, tools, and structure builder. The App SDK enables standalone custom React apps with built-in auth/caching/live updates, Functions and Scheduled Functions provide serverless and cron-based automation defined in Blueprints, and the MCP server extends this to AI-agent-driven content operations.

Security & Compliance
3.2.1
Authentication
72M

SSO via SAML is available on Enterprise plans with automatic role mapping from IdP groups (Azure AD, Okta); Google and GitHub OAuth are on all plans; API and robot tokens are managed via the dashboard. Studio v6 changed custom auth providers to replace (rather than append to) the built-ins, clarifying custom auth configuration. OIDC is less clearly documented than SAML and SSO remains Enterprise-gated, keeping this in the 60–75 band.

3.2.2
Authorization model
78M

User Attributes add attribute-based access control: roles can filter content by user::attributes() (e.g., a 'Market Editor' seeing only documents matching their market), bringing genuine content-instance-level scoping. Combined with field-level permissions and custom roles with document filters, the model approaches the 80+ rubric bar for field-level plus instance-level control. Enterprise gating of advanced permissions keeps it just below.

3.2.3
Compliance certifications
78H

Sanity holds both SOC 2 Type II and ISO 27001 certifications, is GDPR/CCPA compliant with a DPA, and offers US and EU data residency. It is hosted on Google Cloud Platform, which carries additional certifications (ISO 27017, 27018, PCI DSS, HIPAA). HIPAA readiness is inherited via GCP rather than documented as a Sanity BAA, so it sits just below the 80+ threshold.

3.2.4
Security track record
75M

Clean security track record with no major publicized breaches through mid-2026, and an active Vulnerability Disclosure Program at sanity.io/responsible-disclosure with a 3-business-day response commitment. The bug bounty pilot has closed (no monetary rewards currently) but vulnerability reports are still accepted, and the SaaS model limits attack surface. The lack of an active paid bounty program keeps it below top scorers.

Infrastructure & Reliability
3.3.1
Hosting model
60H

Content Lake remains SaaS-only on Google Cloud — there is no self-hosted backend option, a firm architectural boundary and a blocker for air-gapped or fully on-premise requirements. Studio can be self-hosted anywhere as a static React app, and US and EU regions are available. Per the rubric, SaaS-only scores 50–60; the hybrid Studio flexibility and multi-region options justify the top of that range.

3.3.2
SLA and uptime
72M

99.9% uptime SLA on Enterprise plans with a public status page at sanity-status.com. After a stream of H1 2026 incidents (Content Releases, Content Agent, Asset CDN, SSO/SAML login, MCP Server 500s through May 1), stability has held: the status page reported 'All Systems Operational' with no new incidents through June 30, 2026. The sustained clean run supports a small uptick, but a 99.9% (not 99.95%+) SLA keeps it within the 60–75 band.

3.3.3
Scalability architecture
82M

The managed Content Lake handles auto-scaling for content storage, querying, and real-time sync, with an API CDN for global edge distribution and proven enterprise customers (Nike, Figma, Cloudflare). Functions and Scheduled Functions add managed compute on Sanity's Composable Cloud. Documented hard scale limits are thinner than some competitors, keeping it short of higher scores.

3.3.4
Disaster recovery
72M

Full data export via CLI (sanity dataset export) in NDJSON format with all assets, plus automated backups by Sanity and an Enterprise dataset backup feature for migration safety. The content migration CLI supports scripted, dry-run-capable migrations that improve recovery workflows. RTO/RPO documentation is limited to Enterprise agreements rather than published, keeping it below 75.

Developer Experience
3.4.1
Local development
88H

Excellent local DX, further improved by Studio v6 (Vite 8), which delivers 2–9× faster builds, smaller bundles, and React strict mode by default. The Sanity CLI handles scaffolding, local Studio with hot reload, dataset management, and deployment, and local Studio connects to the cloud Content Lake for full data access with high environment parity. The remaining gap is no offline mode — connectivity to Content Lake is required.

3.4.2
CI/CD integration
75M

The content migration CLI lets teams scaffold migrations as code in JS/TS and run them in dry or production mode within CI/CD, and sanity schema validate provides CI-friendly schema checks. Automatic CI detection prevents interactive prompts from hanging and global --project-id/--dataset flags allow running commands outside a project directory. It still lacks branch-based content environments and native content deploy previews, keeping it below platforms like Contentful Merge.

3.4.3
Documentation quality
85H

Documentation remains comprehensive, well-organized, and actively updated through 2026, with a public product changelog at sanity.io/docs/changelog reflecting the Studio v6 release and per-context GROQ feature-support tables. Code examples cover most features, with a GROQ cheat sheet and framework-specific guides (Next.js, React), plus current docs for App SDK, Functions, Blueprints, MCP server, Content Agent, and the migration CLI. Minor gaps in advanced topics persist, but it is one of the stronger doc sets in the headless space.

3.4.4
TypeScript support
90H

TypeGen generates precise types from schema and GROQ query strings (defineQuery → typed fetch results), with auto-regeneration during sanity dev, custom GROQ function support, type hoisting for reused objects, and parsing of .svelte/.vue/.astro files. @sanity/client (v7.x) is fully typed and the App SDK's hooks add strong TS support. Studio v6 keeps the type stack current on the latest React and Vite 8 baseline.

4Platform Velocity & Health78
Release Cadence
4.1.1
Release frequency
85H

Sanity's release cadence remains elite — the vendor feed shows a continuous stream from v5.22.0 (Apr 22) through the v6.0.0 major release (Jun 11, 2026) and four more releases (v6.1.0–v6.3.0) by Jun 30, roughly weekly output plus a full major version in one quarter. This sits atop the March 2026 AI Content Operating System launch wave (Content Agent, Agent Context, MCP server, Scheduled Functions). Not higher because the cadence, while elite, is comparable to top-tier SaaS CMS peers like Contentful and Storyblok.

4.1.2
Changelog quality
80M

Sanity maintains a structured changelog at sanity.io/docs/changelog with product-specific filtering (Studio, Functions, Dashboard, TypeGen) and per-entry migration context; the v6.0.0 breaking release shipped with a dedicated changelog entry and upgrade guide. GitHub releases provide granular technical notes per version. Not higher because the changelog is split across multiple surfaces (docs, GitHub, blog) rather than unified into a single canonical feed.

4.1.3
Roadmap transparency
70M

Sanity communicates direction through seasonal release events, frequent blog posts telegraphing AI/agent work, and a public 'Are We V6 Ready' tracker that surfaced plugin-migration and Node 20 progress ahead of the v6.0.0 cutover. However, there is still no public roadmap board with community voting, no formal feature preview program, and delivery timelines are not publicly committed. Better than opaque but behind competitors with public Canny/GitHub Discussions roadmaps.

4.1.4
Breaking change handling
77M

The June 2026 v6.0.0 'focused breaking release' demonstrated markedly improved discipline: breaking changes (groq2024 default search, React strict-mode default, Node 20, monorepo runtime) were confined to a semver major, made opt-in (v6 does not roll out automatically — teams pin ^6.0.0 and redeploy), and paired with a public 'Are We V6 Ready' readiness tracker plus documented upgrade guides. Multiple npm dist-tags allow staged adoption. Not higher because deprecation windows remain shorter than 12 months and automated codemods are still limited relative to enterprise DXPs.

Ecosystem & Community
4.2.1
Community size
80H

Sanity's community is substantial: ~6k GitHub stars on sanity-io/sanity, 35k+ members migrated from Slack to Discord in 2025, and strong npm download numbers for @sanity/client, next-sanity, and sanity. G2 review volume above 900 corroborates a large active user base. Smaller than WordPress/Drupal but among the largest in the headless CMS segment, competitive with Contentful.

4.2.2
Community engagement
75M

Sanity team members remain actively present in Discord and on GitHub; the Slack-to-Discord migration shows deliberate community management investment. The r/sanity_io subreddit is small but team-monitored, and community digests continue surfacing member work. Issue response times generally run in days. Community plugin contributions exist via the Exchange, but core Studio PRs remain mostly team-driven.

4.2.3
Partner ecosystem
70M

Sanity's partner ecosystem has meaningfully expanded: first CMS to achieve Shopify Certified Plus Partner status, with agencies like Accenture Song, SDG, and We Make Websites in the network. The agency partner directory lists certified implementation partners with direct Sanity team access; technology partners include Vercel, Netlify, and Shopify. Not higher because the partner network still lacks formal certification exams and is smaller than enterprise DXPs or Contentful.

4.2.4
Third-party content
76M

Strong and growing third-party content ecosystem: agency blogs (Pagepro, Represent, WeframeTech, Webstacks, ted&gustaf), YouTube tutorials, Udemy courses, and conference talks. The March 2026 AI Content Operating System launch generated fresh independent coverage (PR Newswire syndication, CMS Wire, The AI Journal, Tracxn) and agency deep-dives, and curated agency directories keep appearing. Content still skews toward JavaScript/React developers; dedicated books are absent and enterprise analyst coverage is limited.

Market Signals
4.3.1
Talent availability
66M

Sanity's talent pool is growing but still niche. The JavaScript-native, schema-as-code architecture means experienced React/Next.js developers can onboard in weeks, effectively expanding the addressable talent pool beyond dedicated Sanity specialists. Job postings mentioning Sanity continue to grow, particularly in agencies. Dedicated Sanity specialists remain harder to find than WordPress, Drupal, or Contentful developers.

4.3.2
Customer momentum
80M

Sanity's customer momentum continues with fresh, quantified case studies tied to its AI content operations — loveholidays cut translation costs 97% and market launch cycles from 3 months to 3 days, and Complex fully automated its e-commerce editorial ops — alongside named logos including Burger King, Expedia, Riot Games, and Morning Brew. Headcount grew from 218 (2024) to 294 (Apr 2026) and G2 review volume keeps climbing past 900. Not higher because Sanity still publishes fewer net-new enterprise logo announcements than tier-1 vendors like Contentful.

4.3.3
Funding and stability
86H

Sanity closed an $85M Series C in April 2025 led by Bullhound Capital with participation from Shopify, ICONIQ Growth, Heavybit, and Threshold, bringing total funding to $173M over 5 rounds. Headcount continues to climb — 218 (2024) → 277 (Jan 2026) → 294 (Apr 2026) — with no layoff or acquisition-risk signals in any source. Stable founding-team leadership. Not higher because the company has not signaled profitability and remains venture-dependent.

4.3.4
Competitive positioning
79M

Sanity has consolidated its repositioning as the 'Content Operating System for the AI era' with shipped, maturing differentiation — the March 2026 launch plus the January 2026 Agent Context feature that compresses the schema so agents understand (not just retrieve) content, backed by an MCP server and Scheduled Functions — a concrete edge over Contentful, Contentstack, and Storyblok. Shopify Certified Plus Partner status reinforces commerce positioning. Not higher because Sanity remains absent from Gartner MQ, Forrester Wave, and IDC MarketScape while rival Contentstack entered the 2025 MQ as a Visionary.

4.3.5
Customer sentiment
89H

Sanity maintains exceptional customer sentiment: highest G2 rating in the headless CMS category at 4.7/5 across 900+ verified reviews, #1 headless CMS on G2 for four consecutive years. Gartner Peer Insights shows 4.5/5 with 271 reviews. Praise centers on real-time collaboration, customizable Studio, and GROQ; the main negative theme remains the learning curve for non-developers. Score exceeds the 75-85 guideline range due to the exceptional combination of high rating, high review volume, and sustained #1 category positioning.

5Total Cost of Ownership76
Licensing
5.1.1
Pricing transparency
80H

Sanity publishes full pricing at sanity.io/pricing with clear tiers: Free $0, Growth $15/seat/mo (~$12 on annual, capped at 50 seats), Enterprise custom. All pay-as-you-go overage rates remain documented ($1/250K CDN requests, $1/25K API requests, $0.30/1GB bandwidth, $0.50/1GB assets) and add-on pricing is visible (SSO $1,399/mo, extra dataset $999/mo, quota bundle $299/mo). Enterprise stays sales-gated, which is the only reason it does not score higher.

5.1.2
Pricing model fit
62M

Per-seat pricing ($15/seat/mo on Growth) is predictable, but pay-as-you-go overages on API requests, bandwidth, and assets create spike risk — non-CDN API requests cost 10× CDN requests per unit, so a misconfigured client routing traffic to api.sanity.io can inflate bills by an order of magnitude, a pattern still flagged as the top hidden-cost driver in 2026 TCO analyses. The Growth document quota is a hard cap with no overage path: exceeding it forces the $299/mo quota add-on (50K docs) or an Enterprise contract, a documented inflection point that catches content-rich teams off guard during migrations.

5.1.3
Feature gating
60H

Gating remains tight: content releases, dataset hot swap, cross-dataset references, custom roles, full audit trail, custom access controls, and uptime SLA sit Enterprise-only. SAML SSO is technically a Growth add-on but at $1,399/mo is effectively Enterprise-gated and remains a sustained complaint signal — 2026 coverage notes that if SSO or audit logs are required there is no workaround short of Enterprise. Growth still gates comments, task management, scheduled publishing, and private datasets.

5.1.4
Contract flexibility
75M

Growth is self-serve with monthly billing at $15/seat and no annual commitment required; per-seat scaling lets teams ramp up or down without renegotiation, and annual billing offers a ~20% discount. Enterprise contracts are annual but generally negotiable, with startup and education programs available. No punitive exit clauses surfaced in 2026 reporting — flexibility remains solidly above SaaS DXP norms, held below 80 only by the sales-gated Enterprise tier.

5.1.5
Free / Hobby Tier
81M

Sanity's free tier stays among the most generous in headless CMS — official docs list 20 seats, 10,000 documents, generous API/bandwidth/asset quotas, free-forever with commercial use permitted — and G2 reviewers still rate it above Contentful and DatoCMS free plans. However, 2026 sources conflict on the current limits: official docs now cite a single dataset (down from two), and some third-party breakdowns report tighter bandwidth (10GB) and asset (20GB) ceilings, introducing uncertainty about recent tightening. The dataset reduction and conflicting quota reports pull the score down slightly from its prior level.

Implementation Cost Signals
5.2.1
Time-to-first-value
86H

`npm create sanity@latest` still produces a working Studio in under five minutes, with 85+ starter templates and a large Exchange plugin ecosystem covering Next.js, Remix, Astro, and SvelteKit, plus the Sanity Connector for Claude that scaffolds schemas and GROQ from natural language. Studio v6 (June 2026) cuts build times 2–9× via Vite 8, tightening the edit-preview loop, and the free tier removes procurement friction entirely; the v6 Node 22.12+ requirement is a non-issue for new projects.

5.2.2
Typical implementation timeline
75M

2026 agency reporting puts a standard marketing site with a well-defined schema at 6–10 weeks, headless commerce at 10–16 weeks, and enterprise migrations from Drupal/AEM at 16–24 weeks — a modestly longer band than previously credited, driven by the schemas-as-code approach requiring more upfront content modeling than template-driven CMSes. Timelines remain in the adequate range and Studio v6 visual editing keeps projects on track, but the consistent lengthening across 2026 sources pulls the score down slightly.

5.2.3
Specialist cost premium
70M

The React/TypeScript foundation keeps the hiring premium low — contract rates run roughly 10–15% above generalist React rates, far below Sitecore or AEM premiums — and the Sanity Connector for Claude lowers GROQ/schema authoring friction for non-specialists. However, 2026 comparisons still report a 12+ week path to full proficiency (GROQ, Portable Text serialization, Studio customization) versus 4–6 weeks for Storyblok, a steeper ramp than framework familiarity suggests; the talent pool is broad but true depth takes longer to build.

Operational Cost Signals
5.3.1
Hosting costs
88H

Content Lake hosting is included in the subscription — zero backend infrastructure to manage. Studio deploys as a static app to Vercel, Netlify, or Cloudflare Pages for free or near-free, and Studio v6's smaller Vite 8 bundles reduce that footprint further, leaving only the frontend application as a hosting line item, which is standard for any headless architecture. Generous included bandwidth and asset storage plus the SaaS model eliminate database, server, and scaling decisions entirely.

5.3.2
Ops team requirements
85M

Near-zero ops burden. The Content Lake is fully managed SaaS — no database management, no patching, no scaling decisions — and Studio is a static React app with no runtime servers. A single developer can maintain a production Sanity instance without dedicated ops; the only ongoing operational surfaces are the frontend deployment pipeline and keeping pace with the Studio release cadence, and the v6 upgrade (Node 22.12+, React strict mode compliance) adds a one-time breaking-upgrade step that is routine web-dev work.

5.3.3
Vendor lock-in and exit cost
72M

Data export is comprehensive — the Sanity CLI exports full datasets in NDJSON with all assets attached, and content is accessible via API at any time, so the content data itself is highly portable. Lock-in vectors persist at the query and presentation layers: GROQ queries must be rewritten for any other platform, Portable Text is a Sanity-specific rich-text format requiring transformation, and Studio customizations (custom inputs, structure builder, plugins) are non-portable. Migration off is feasible with planning but not trivial.

6Build Simplicity68
Learning Curve
6.1.1
Concept complexity
30H

Sanity still requires learning GROQ (proprietary query language), Portable Text (non-standard rich text model), Content Lake, schema-as-code, Structure Builder, and document actions, with Canvas, App SDK, Functions, and MCP-managed Studios adding further surface. Studio v6 (June 2026) is explicitly a 'focused breaking release' — Vite 8, groq2024 default search, React strict mode — that consolidates rather than adding new concepts, so the underlying concept count is stable but remains high relative to platforms that map to standard web dev mental models.

6.1.2
Onboarding resources
80H

sanity.io/learn provides structured learning paths including a dedicated 'Integrated Visual Editing with Next.js' course, and the 2026 CLI supports global --project-id/--dataset flags plus automatic detection of AI tooling (Gemini, GitHub Copilot CLI, Codex CLI) during setup, strengthening AI-assisted onboarding beyond the Connector for Claude. Framework-specific guides cover Next.js, Astro, Nuxt, and SvelteKit. Still no formal certification program and the post-basics learning path remains fragmented given the expanding platform surface.

6.1.3
Framework familiarity
82H

Excellent alignment with the React/Next.js ecosystem — next-sanity is a first-class integration with visual editing support, and Studio v6 now enables React strict mode by default and runs on Vite 8, keeping the platform current with modern React and build tooling. Official templates cover Next.js, Astro (clean), Nuxt (Nuxt 4), and SvelteKit. Non-React frameworks have less official depth, which keeps this below the top of the range.

Implementation Complexity
6.2.1
Boilerplate and starter quality
78H

Sanity provides polished official clean starters installable via npm create sanity@latest for Next.js, Astro, and Nuxt 4, each bundling a co-located Studio with real-time collaboration and side-by-side preview. Community starters like SanityPress (Next.js 15, Tailwind 4, auto-generated TypeScript types) extend coverage, and Vercel/Netlify integration templates enable one-click deployment. The Next.js starters include preview mode, visual editing, and typed queries; non-Next.js starters remain functional but less feature-rich.

6.2.2
Configuration complexity
78M

sanity.config.ts provides a single configuration entry point with sensible defaults — a minimal config works with 2-3 env vars, and Studio v6 further simplifies setup by making React strict mode the default (removing the reactStrictMode flag) and having custom auth providers replace built-ins rather than append. The config-as-code model is version-controllable. However, production configurations still accumulate complexity: plugin configuration, Presentation tool setup, App SDK integration, and Studio customizations can become verbose.

6.2.3
Data modeling constraints
80M

Schema changes are additive and safe — new fields, types, and validation rules don't break existing content, and there are no field count limits (unlike Contentful's 50-field limit). Sanity's migration tool handles schema and content migrations, and recent releases improved the schema deploy experience for MCP-managed Studios. Schema changes are still live (no staging environment for schema) and complex restructuring still requires scripted migrations, but overall constraints are minimal.

6.2.4
Preview and editing integration
58H

The Presentation tool provides visual editing with click-to-edit overlays and real-time preview, and defineLive/sanityFetch handle draft mode, caching, revalidation, and stega encoding for Next.js with official App Router and Pages Router docs; Studio v6.1 fixed visual editing bugs with Portable Text blocks. However, it still requires frontend code changes — draft mode API routes, defineLive setup, visual editing annotations, and Presentation tool document-to-URL mapping — and non-Next.js frameworks need more manual integration work.

Team & Talent
6.3.1
Required specialization
62M

A React/TypeScript developer can become productive with basic Sanity work in 1-2 weeks. GROQ, Portable Text patterns, and Studio customization are platform-specific skills that don't transfer, and the expanding platform (App SDK, Functions, Agent Actions, MCP integrations) means more specialization for advanced use cases. No certification is required and generalist web developers can build standard sites, but power features demand deep platform knowledge.

6.3.2
Team size requirements
82M

A solo full-stack developer can build and ship a production Sanity site — the managed SaaS backend eliminates ops roles, and a typical small project needs 1-2 developers. Complex projects with visual editing setup, App SDK customizations, and Functions increasingly benefit from 2-3 developers with different specializations. No separate DBA or ops engineer is required.

6.3.3
Cross-functional complexity
55M

Content editors can self-serve day-to-day content operations — text, images, and structured content updates without developer involvement. Real-time collaboration, the Canvas AI editor, and the Connector for Claude reduce friction for non-developers. However, creating new page types, content models, or templates still requires developer schema changes, and the Studio is form-based rather than a visual page builder, so editors cannot create new layouts independently.

7Operational Ease67
Upgrade & Patching
7.1.1
Upgrade difficulty
74H

Studio v6.0 (Jun 11, 2026) is the third consecutive 'focused' major bump — Vite 8 (2–9× faster builds), React strict mode by default, and a Node 20→22.12 requirement — with schemas, config, and content APIs explicitly unchanged, mirroring v4 (Node) and v5 (React 19.2). Auto-updates remain on by default for new Studios and handle the weekly minor/patch stream (v6.0→v6.3 shipped in ~3 weeks). Not scored higher because existing projects without auto-updates still need a manual major redeploy, CI must move to Node 22, and v6 carries two breaking changes to check (custom auth providers now replace rather than append; strict mode surfacing latent bugs).

7.1.2
Security patching
85M

The Content Lake is SaaS and auto-patched by Sanity — security fixes are applied without customer action. No Sanity-specific CVEs surfaced in NVD/CVE database searches for 2025–2026. Studio dependencies (React, npm packages) require standard npm audit workflows. The split responsibility model (Sanity handles backend, customer handles Studio deps) is clear and well-documented via the responsible disclosure program.

7.1.3
Vendor-forced migrations
48M

The v2→v3 Studio sunset remains the only genuinely painful forced migration and it had a multi-year deprecation window. Since then majors have been trivial dependency bumps — v3→v4 (Node), v4→v5 (React 19.2), v5→v6 (Vite 8 + Node 22, Jun 11, 2026) — each leaving schemas and content APIs untouched. The Content Lake API uses explicit date-based versioning with backward compatibility. Not scored higher because majors now land roughly every six months (v5 Dec 2025, v6 Jun 2026), each forcing a runtime/dependency update, and v6 drops Node 20 and requires ESM-only plugins.

7.1.4
Dependency management
48M

Hybrid model: the Content Lake has zero dependency management for users (fully SaaS). The Studio is a React application with a moderate npm dependency tree — the sanity package pulls in significant transitive dependencies requiring regular npm audit attention. v6 modernizes the build to Vite 8 and standardizes React 19.2 + Node 22 + ESM-only packaging. Not scored higher because Studio dependency burden is real; not scored lower because the SaaS backend eliminates most operational dependencies.

Operational Overhead
7.2.1
Monitoring requirements
72M

Sanity provides status.sanity.io for service health, project dashboard with API usage metrics, and the Sanity Dashboard (Spring 2025) offering centralized visibility across Studios, content operations, and team activity. Third-party monitors show 100% 30-day uptime as of Jun 2026, with only minor incidents (May 1 MCP server 500s, May 29 Content Agent thread delivery) resolved quickly. Not scored higher because integration with external APM tools requires custom setup and no native webhook delivery health monitoring is provided.

7.2.2
Content operations burden
71M

Reference tracking is built into the Content Lake, schema-as-code makes content models version-controlled, and the Media Library (2025) adds asset versioning and role-based access. The Sanity Connector for Claude (Apr 2026 update) ships with a UI inside Studio, letting editors and developers run AI-assisted content audits, bulk edits, and reference cleanup through natural language — meaningfully reducing manual content hygiene work. Not scored higher because there is still no automated orphan detection, content expiry workflow, or health dashboard out of the box.

7.2.3
Performance management
78M

The API CDN handles caching and global distribution automatically — most performance management is near-zero effort. The Image URL API provides responsive image optimization out of the box, and v6's groq2024 default search adds wildcards, phrases, and negation without extra configuration. The primary performance concern remains GROQ query optimization — complex queries with deep joins can be slow and need restructuring. Over 20 billion API/CDN requests per month demonstrates proven scaling. Not scored higher because GROQ optimization is a recurring concern for complex projects.

Support & Resolution
7.3.1
Support tier quality
44M

Enterprise plan provides dedicated support with >99.9% uptime SLA and custom contractual terms. Growth plan offers a $799/month dedicated support add-on, making quality support accessible without full Enterprise commitment. Free tier is community-only. G2 scores quality of support at 8.9, but reviewers explicitly cite faster response times as a needed improvement. Not scored higher because base Growth plan support remains community-driven and good support still requires Enterprise or a paid add-on.

7.3.2
Community support quality
80H

Sanity maintains a 35K+ member Discord community (migrated from Slack in 2025) with a full-time community support engineer. Core engineers actively participate and answer questions quickly. The sanity.io/answers Q&A portal provides a searchable knowledge base. G2 consistently rates Sanity #1 headless CMS for 4 years, with the large community a commonly praised aspect. Primary limitation is timezone-dependent availability. Community support remains a genuine differentiator among headless CMS peers.

7.3.3
Issue resolution velocity
67H

The weekly release cadence has now sustained for ~7 months — through the v6 line (v6.0.0 Jun 11 → v6.3.0 Jun 30, 2026) on top of 31 v5 minors. Same-day patching continues (v5.31.1 shipped ~2 hours after v5.31.0 on Jun 10). Not scored higher because feature request throughput remains slower than community demand and some non-critical bugs still linger.

8Use-Case Fit41
Marketing Sites
8.1.1
Landing page tooling
63H

Sanity's Presentation tool provides mature visual editing — click any element on the live site to edit it in Studio. Editors can reorder component-based page sections without code. However, there is no drag-and-drop page builder or pre-built marketing component library; new layouts still require developer involvement. Canvas adds AI-assisted content creation but doesn't address layout autonomy. Marketers can edit effectively but cannot create new page structures independently.

8.1.2
Campaign management
38M

Content Releases allow teams to stage collections of changes, preview them together, and publish on schedule — a meaningful step beyond basic scheduled publishing. Scheduled Functions (May 2026) add cron-based time triggers but these are developer infrastructure, not campaign tooling. There is still no content calendar, no campaign analytics, no multi-channel coordination, and no campaign lifecycle management. Campaign orchestration beyond coordinated content publishing requires external tools.

8.1.3
SEO tooling
55M

SEO remains plugin-driven: community plugins add meta field management and SEO validation. Slug field type is built-in. Redirect management is achievable via custom document types but not built-in. Sitemap generation requires community tools or custom implementation. No built-in SEO validation, structured data helpers, or canonical URL management. The ecosystem is maturing but all SEO tooling is still manual or plugin-based.

8.1.4
Performance marketing
35L

No native form handling, CTA management, conversion tracking, or lead capture. All performance marketing capabilities are frontend or third-party concerns. Sanity can model form configurations and CTA content, but execution is entirely external. Functions could enable server-side form processing but this is custom development, not built-in tooling.

8.1.5
Personalization and targeting
42M

Sanity has an official first-party @sanity/personalization-plugin that enables field-level A/B/N experiments and personalization criteria assignment within Studio. It integrates with LaunchDarkly, GrowthBook, Amplitude, and Croct for actual variant delivery and measurement. Canvas and Agent Actions can automate variant content generation. However, there is no native real-time behavioral targeting or audience segmentation — the platform provides the content-side variant model while delivery logic lives in external experimentation tools. This is integration-dependent, not native.

8.1.6
A/B testing and experimentation
45M

The @sanity/personalization-plugin supports A/B and multivariate content experiments at the field level — test headline variants, CTA copy, and body content without duplicating full documents. Page-level experiments are supported by experimenting on reference fields. GrowthBook integration enables statistical significance and winner selection via the external platform. Croct and Uniform also provide tight integrations with Sanity for edge-side A/B testing. However, Sanity provides no native A/B testing engine, no built-in statistical reporting, and no auto-winner selection — all measurement and routing is delegated to external tools.

8.1.7
Content velocity
63H

Canvas provides AI-assisted free-form writing that maps directly to structured schemas, with field labels (May 2026) helping teams structure AI-drafted content for publishing. Agent Actions enable bulk content operations — tagging, translation, gap analysis — at scale via API. Content Agent, launched in the Dashboard and extended to Slack and an API in March 2026, performs multi-step content operations conversationally, with file/image upload and custom instructions added in April 2026. The Remote MCP Server (GA January 2026) and Sanity Connector for Claude give additional AI surfaces. Studio v6 (June 2026) adds 2–9× faster builds and a stronger default search (groq2024). Content Releases coordinate staged changes; template cloning and reusable blocks reduce per-page overhead. Eurostar reports CMS tasks dropping from 2-3 weeks to 2-3 days. Creating net-new page layouts still requires developer involvement, capping velocity for fully independent marketing teams.

8.1.8
Multi-channel publishing
67H

Sanity's Content Operating System positioning is explicitly omnichannel: structured content models define channel-agnostic data rendered differently per channel via APIs. GROQ queries and the CDN serve web, mobile, email, IoT, and digital signage from the same content store. Portable Text renders differently per channel renderer. Agent Context extends delivery to AI agent channels — structured content packaged for consumption by AI shopping and support agents — adding a genuinely new channel class. The platform is designed around 'model once, deliver everywhere' and this remains one of the strongest channel-agnostic content layers among headless CMS platforms.

8.1.9
Marketing analytics integration
43M

Sanity Insights surfaces content lifecycle visibility — unpublished content, bottlenecks, editorial velocity — within the Dashboard. Agent Context Insights (May 2026) adds a Studio dashboard that captures AI agent conversations and runs AI classification to extract success scores, sentiment, and content gaps — the first in-platform signal connecting content to audience-facing performance, albeit limited to the AI agent channel. Integration with GA4, Adobe Analytics, and Mixpanel remains standard frontend tagging with no CMS-side dashboard for web performance metrics. No content decay signals or page-level engagement data within Studio for web channels.

8.1.10
Brand and design consistency
45M

Schema-based content modeling enforces structural consistency — editors work within defined content types and field constraints. Studio can be customized to present only relevant fields per brand/role, with tenant-specific views easy to configure in current Studio (v6). However, there are no brand guardrails at the platform level for visual design — no locked style tokens, no approved component palettes, no design token enforcement. Consistency depends on the frontend implementation and how well schemas restrict what editors can do, not platform-enforced brand governance.

8.1.11
Social and sharing integration
35M

OG and Twitter card meta fields can be modeled as custom fields in document schemas, and community plugins assist with meta tag management. However, there is no built-in social media preview card management, no social scheduling or push-to-social workflows, no UGC embed management, and no social proof widgets. All social sharing features are implementable by developers but not native platform capabilities.

8.1.12
Marketing asset management
58H

Media Library is a native DAM with structured metadata (Aspects), global search, and cross-dataset access that eliminates asset duplication across brands and properties. Media Library+ adds enterprise capabilities: unlimited custom metadata fields, role-based access control, asset usage tracking across content, in-place asset replacement, and authenticated/private assets. A Function type responds to media library change events for automation. Image transforms are available via the Sanity Image API. This is substantially better than a simple file upload system, though not quite a full enterprise DAM with rights management and watermarking.

8.1.13
Marketing localization
45M

Sanity supports document-level and field-level locale variants, with the @sanity/document-internationalization plugin providing multi-locale document management. Integration with Phrase, Weglot, and other TMS systems is available via plugins. Agent Actions can automate translation at scale. Content Releases can stage locale-specific campaign variants for coordinated publishing. However, there are no transcreation-specific workflows, no market-level scheduling automation, and no built-in regional compliance tooling (cookie consent, legal disclaimers). Localization is generic and applied equally to marketing content — no marketing-specific locale features.

8.1.14
MarTech ecosystem connectivity
47M

Sanity Functions provide event-driven serverless integration replacing webhooks with more scalable automation — usable for MarTech event triggers, now including time-based Scheduled Functions. Agent Actions can push content to external systems. The Sanity Exchange marketplace lists integrations including HubSpot and Salesforce CRM. However, pre-built, production-grade MarTech connectors are limited — most integrations are community plugins or custom implementations. No native MAP (Marketo, Pardot) integration, no CDP connector, no ad platform integration out of the box. Functions lower the integration development burden but don't replace missing pre-built connectors.

Commerce
8.2.1
Product content depth
52M

Flexible content modeling handles products, variants, and attributes effectively. Bi-directional Shopify sync via Sanity Connect enriches product data with editorial content — custom fields and document types sync back into Shopify as metafields and metaobjects — reinforced by Shopify's strategic investment in Sanity as its preferred content platform. The Media Library with structured metadata and cross-dataset access improves product media management. However, there are still no PIM-specific features: no variant matrix UI, no attribute management interface, and no product relationship tools. Generic content modeling repurposed for products.

8.2.2
Merchandising tools
20I

No merchandising features. No category management UI, no promotional content scheduling tools, no cross-sell/upsell features, no search merchandising, and no content-driven product discovery. All merchandising must be handled by the commerce platform or built from scratch. Expected for a content platform.

8.2.3
Commerce platform synergy
53H

Sanity Connect for Shopify is a mature official integration with bi-directional product data sync, backed by Shopify's strategic investment in Sanity as its first and only content platform investment. It supports both Liquid-based Online Stores and Hydrogen custom storefronts. commercetools and BigCommerce integrations are also available. The pattern is content enrichment: editorial content in Sanity, transactions in commerce platform. Product picker UI enables content editors to reference commerce products. However, no real-time pricing, cart, or inventory sync — integration depth is content-layer only.

8.2.4
Content-driven storytelling
55M

Portable Text with inline product references via Shopify Connect is a first-class authoring pattern for editorial commerce. Content editors can reference Shopify products directly in rich text, enabling lookbooks, buying guides, and shop-the-look content. The product picker UI is built into Studio for content-commerce blending. Canvas supports AI-assisted editorial writing that incorporates structured product references. This is a genuine Sanity strength — the composable architecture is well-suited to blending rich editorial with inline product references.

8.2.5
Checkout and cart content
20I

Sanity has no mechanism to inject CMS-managed content into commerce transactional flows. Trust badges, shipping callouts, upsell banners in cart, and post-add modals are not manageable from Sanity without significant custom development. Commerce platform templates control the checkout experience. Sanity could theoretically serve content to a headless checkout via API, but this requires full custom implementation with no built-in authoring patterns or tooling for it.

8.2.6
Post-purchase content
18I

Sanity has no native capability for CMS-managed post-purchase content tied to order events. Order confirmation content, delivery tracking pages, product onboarding sequences, and review solicitation flows are fully outside Sanity's scope. Order event-triggered content would require custom Functions integration with commerce platform webhooks — a non-trivial custom build. No documented case studies or patterns for post-purchase content management in Sanity.

8.2.7
B2B commerce content
32L

Custom roles and field-level access control could be repurposed to gate B2B-specific content — restricting certain product documentation or pricing content to authenticated editor roles. However, this is editor-side access control, not audience-based content visibility for B2B buyers. No native customer-specific pricing display, no quote-request flow management, no account-based content segmentation, and no gated catalog tooling. B2B content patterns are entirely custom-built.

8.2.8
Search and discovery content
38M

GROQ provides powerful content querying for backend content retrieval and can enrich search indexes with editorial content. Algolia and Typesense integrations via community plugins enable faceted product-content blended search for frontends. Agent Context for e-commerce positions product content for consumption by AI shopping agents — an emerging discovery channel, though too early to treat as a mature discovery capability. Sanity still has no built-in end-user search, no native search landing page authoring, and no synonym management tooling. Search functionality for end-users is entirely a frontend concern.

8.2.9
Promotional content management
40M

Content Releases can stage time-based promotional content — sale banners, promotional messaging, campaign pages — with coordinated publish and unpublish. Scheduled publishing enables time-activated promotional content, and Scheduled Functions (May 2026) add cron or natural-language time triggers defined in Blueprints, making automated promo activation/deactivation easier to implement (though still developer-configured). Custom document types can model promo codes and countdown timers that frontend components render. However, there are no built-in countdown timer components, no native promo code messaging, no channel-specific targeting, and no tiered pricing table authoring.

8.2.10
Multi-storefront content
55M

Sanity's multi-dataset architecture is well-suited for multi-storefront deployments. Shared product content in a central dataset, with cross-dataset references pulling into storefront-specific datasets. Regional and brand editorial content can be isolated per storefront while sharing product descriptions and media via the Media Library. Multi-tenant documentation explicitly covers multi-storefront patterns. Studio views are configurable per storefront team. The pattern is well-established if not entirely zero-config.

8.2.11
Visual commerce and media
42M

Sanity Image API provides image transforms (resize, crop, focal point, format conversion) and Cloudinary integration is available for advanced media transformation. Portable Text supports video embeds. Media Library stores video and rich media with structured metadata. However, native 360-degree product views, AR/3D model references, and image hotspot commerce features are not built-in — these require custom frontend implementations or third-party services. Basic to intermediate visual commerce is achievable; advanced visual commerce requires custom development.

8.2.12
Marketplace and seller content
27I

Sanity has no marketplace-specific features. Multi-author content is achievable through custom roles and dataset partitioning, but there is no seller profile management, no seller-contributed content moderation queue, no review aggregation, and no content quality enforcement at marketplace scale. Implementing marketplace content patterns would require significant custom development to build seller portals, moderation workflows, and aggregation systems on top of Sanity's general-purpose content layer.

8.2.13
Commerce content localization
43M

Generic localization via the @sanity/document-internationalization plugin applies to product content as to any other content type. Locale-specific product descriptions, regional editorial copy, and market-specific promotional content are all achievable. However, there are no currency-aware content blocks, no EU product label management, no CA Prop 65 regulatory content tooling, and no market-specific promotional calendar management. Localization is content-type-agnostic — the same generic locale variant system applies to products as to any other document.

8.2.14
Commerce conversion analytics
20I

Sanity has no mechanism to connect content engagement to commerce outcomes. No revenue attribution to content pages, no content-assisted conversion tracking, and no product content performance data within the CMS. Commerce analytics live in Shopify, commercetools, or dedicated analytics platforms. Frontend tracking via GA4 or similar can capture some content-to-conversion paths, but this data never surfaces within Sanity Studio. Sanity Insights covers editorial workflow metrics, not commerce performance. Agent Context Insights tracks AI agent conversation quality, not revenue attribution.

Intranet & Internal
8.3.1
Access control depth
62M

Custom roles with document filters provide granular editor-side access control beyond basic RBAC. The Access API centralizes organization-level role management and simplifies audits. Field-level access control restricts specific fields within documents. SSO integration on Enterprise plan. However, access control is designed for content editors, not content consumers — audience-based content visibility for end-users remains a frontend concern, limiting intranet reader-side use cases.

8.3.2
Knowledge management
55M

Strong content modeling for knowledge bases with taxonomy support via references and tags. GROQ provides powerful content retrieval, further improved by the groq2024 default search in Studio v6 (June 2026). Insights adds visibility into content bottlenecks and unpublished content, offering lightweight lifecycle awareness. However, there are no knowledge base templates, no archival workflows, no content expiry management, and no knowledge-specific UX. Building a knowledge base on Sanity requires custom modeling and frontend development.

8.3.3
Employee experience
30I

Sanity is not designed for employee-facing portal experiences. No notification system, no social features, no employee directory integration, no mobile intranet app, and no personalized dashboards for end-users. Studio and Dashboard features are for content editors, not employees consuming content. Building an intranet frontend requires extensive custom development. This is a poor fit for traditional intranet use cases.

8.3.4
Internal communications
22I

Sanity can publish company news and announcements through custom content types, but there are no targeted internal comms features. No read receipts, no acknowledgment tracking, no mandatory-read workflows, no department-level audience segmentation for communications, and no notification delivery to employees. Internal comms published in Sanity requires a custom frontend portal to display and track engagement. Functions could theoretically trigger notification delivery via Slack or email, but this is custom development.

8.3.5
People directory and org chart
28I

An employee directory could be modeled using Sanity's flexible content types — employee documents with name, role, department, and profile photo. However, there is no org chart visualization, no HR system integration (Workday, BambooHR), no skills/expertise search, and no pre-built people directory templates. Everything must be custom-built. The content modeling capability is there but the purpose-built tooling is entirely absent.

8.3.6
Policy and document management
33I

Sanity provides version history for content changes, which enables audit trails for policy documents. Document types can model policies with version tracking via revision history. However, there are no dedicated policy management features: no approval workflow for policy updates, no mandatory acknowledgment tracking, no automated review/expiry reminders, and no compliance-oriented document controls. Policy management on Sanity requires significant custom workflow development.

8.3.7
Onboarding content delivery
28I

Onboarding content — role-specific guides, FAQs, reference materials — can be structured as custom content types in Sanity. However, there are no progressive disclosure mechanisms, no 30/60/90-day content path scheduling, no task checklist integration, no HR-triggered new-hire portal automation, and no onboarding journey templates. Building structured onboarding delivery on Sanity requires custom frontend and workflow development from scratch.

8.3.8
Enterprise search quality
25I

Sanity's GROQ query language provides powerful structured content search within Sanity's own dataset — and Studio v6 (June 2026) upgraded the default search to groq2024 with wildcards, phrases, negation, and full Portable Text support — but this is editor/developer-facing, not end-user search. For intranet end-users, no built-in search UI exists. There is no federated search across SharePoint, Confluence, or Google Drive. No AI-powered relevance tuning, no faceted filtering UI, and no search analytics. Building enterprise-quality internal search on Sanity requires custom implementation with a dedicated search platform like Algolia or Elasticsearch.

8.3.9
Mobile and frontline access
28I

Sanity Studio is browser-based and responsive but is primarily designed for desktop editorial workflows. There is no native mobile app for content consumers. API-first delivery means Sanity could theoretically power a custom mobile intranet app, but this requires extensive custom frontend development. No offline support, no push notifications to end-users, no kiosk or shared-device mode, and no frontline worker optimizations. Accessing Sanity content on mobile requires a custom-built mobile application.

8.3.10
Learning and training integration
18I

Sanity has no LMS integration capabilities and no native micro-learning features. Training content can be hosted as structured documents, but there is no course assignment, completion tracking, certification management, or integration with Cornerstone, Workday Learning, or similar LMS platforms. Learning content hosting is purely static — editorial content without any learner tracking or adaptive learning capability.

8.3.11
Social and collaboration features
20I

Sanity Studio has collaborative editing features for content editors (real-time co-editing, comments, tasks), but these are authoring-side features, not employee engagement features for content consumers. There are no social features for end-users: no likes/reactions on published content, no discussion forums, no polls or surveys, no peer recognition, no idea submission, and no community spaces. Building a social intranet layer on Sanity would require a fully custom frontend.

8.3.12
Workplace tool integration
35M

Content Agent became available in Slack (March 2026) — an official, pre-built bot-driven Slack integration that lets teams run content operations conversationally from their workplace tool. This is a genuine first-party Slack presence, though it serves content editors rather than employee content consumption. Sanity Functions additionally enable event-triggered webhook notifications to Slack and Microsoft Teams. However, there is still no Teams bot, no Google Workspace embedding, no embedded content cards for end-users, and no single-pane workplace experience. M365 integration remains custom development.

8.3.13
Content lifecycle and archival
34M

Sanity Insights surfaces content bottlenecks and unpublished content, providing lightweight lifecycle visibility within the Dashboard. Version history tracks all document revisions. Scheduled Functions (May 2026) make it practical to implement automated review-date checks and stale content sweeps via cron triggers — though this remains a custom build, not built-in tooling. There are still no native automated review dates, no stale content flagging based on age or engagement, no archival workflows with ownership assignment, and no expiry reminders. Content lifecycle management is manually tracked by editors rather than platform-enforced.

8.3.14
Internal analytics and engagement
22I

Sanity Insights provides editorial analytics — content creation velocity, bottlenecks, unpublished content volume — but not end-user engagement analytics. There is no department-level view analytics, no failed internal search term analysis, no engagement heatmaps for intranet content, and no adoption dashboards. Measuring intranet ROI with Sanity would require implementing external analytics tooling and building custom reporting.

Multi-Brand / Multi-Tenant
8.4.1
Tenant isolation
67H

Multi-tenancy is documented as a first-class capability. Projects and datasets provide hard isolation boundaries. Studio supports tenant-specific views so editors see only relevant fields. Cross-dataset references enable controlled content sharing. Functions automate policy enforcement at tenant boundaries. The Media Library supports cross-dataset access. However, there's no single-pane multi-tenant admin console, and managing many tenants still requires per-project configuration.

8.4.2
Shared component library
57M

Shared schemas and plugins distributed via npm enable component reuse across brand instances. Cross-dataset references allow shared content. The Media Library provides cross-dataset asset access, eliminating the need to duplicate media per brand. App SDK enables custom shared applications. However, sharing is developer-driven (npm packages), not content-author-accessible. No built-in concept of global templates with brand overrides or design system integration.

8.4.3
Governance model
53M

Functions enable automated policy enforcement across tenants — validating cross-tenant boundaries without manual oversight. The Access API centralizes organization-level role management across projects. The Dashboard provides a shared space for all of an organization's studios and custom apps. However, there are still no cross-project approval workflows, no global content governance dashboard, and no centralized policy configuration UI. Governance improvements are real but infrastructure-level (API/Functions), not workflow-level.

8.4.4
Scale economics
55M

Per-user pricing on Growth plan with project-level costs. Cross-dataset Media Library reduces asset duplication costs across brands. Shared Studio code and schemas via npm reduce development costs. Enterprise agreements offer custom multi-project pricing. However, standard pricing remains essentially linear per brand/project — each new brand adds comparable cost. Meaningful savings require enterprise-level negotiation.

8.4.5
Brand theming and style isolation
42M

Sanity Studio supports per-project visual customization including logo, color palette, and custom CSS — editors for each brand see a Studio environment styled to their brand. Tenant-specific Studio views ensure editors see only brand-relevant fields and content types. However, per-brand theming is a developer configuration task; there is no self-service brand theming for non-developers. Content delivery theming (what consumers see) is entirely a frontend concern — the platform provides no design token enforcement or visual identity management at the delivery layer.

8.4.6
Localized content governance
37M

Locale variants per project provide basic brand-locale intersection management. Each brand project can have independent translation workflows using Phrase or Weglot integrations. However, there is no brand-aware translation approval routing (routing Brand A content to Brand A's translators vs Brand B's), no centralized governance across brand x locale combinations, no per-brand translation workflow configuration UI, and no regional legal content governance per brand. The brand-locale intersection is managed by separate project configurations rather than a unified governance model.

8.4.7
Cross-brand analytics
28I

Sanity Insights provides editorial analytics per project/studio but there is no portfolio-level dashboard aggregating metrics across brands. Cross-brand content velocity, publishing cadence comparison, and editorial performance benchmarking require manual data export and aggregation from individual project Insights. No API for aggregate analytics across projects. Building cross-brand editorial analytics requires custom tooling.

8.4.8
Brand-specific workflows
42M

Each Sanity project can have independently configured Studio workflows — content types, publishing flow, review stages — with brand-specific schemas and role configurations. Content Releases can be scoped per project for brand-specific staged publishing. Functions can enforce brand-specific validation rules. However, there is no central audit view across all brand workflows, no workflow templates that can be rolled out across brands consistently, and cross-brand workflow governance is entirely manual.

8.4.9
Content syndication and sharing
43M

Cross-dataset references enable corporate-to-brand content sharing — press releases, product announcements, and legal disclaimers can be authored centrally and referenced in brand-specific datasets. The Media Library's cross-dataset access enables shared assets without duplication. Functions can automate content push from corporate to brand datasets. However, there is no built-in override system at the authoring level — local brand adaptation of syndicated content requires custom implementation. The pattern is well-documented but not zero-configuration.

8.4.10
Regional compliance controls
37M

Sanity Functions can enforce compliance validation rules per dataset/brand — validating required consent fields, mandatory legal disclaimers, or GDPR-relevant content elements before publish. Per-project role configurations can be used to manage regional compliance responsibilities. However, there are no built-in compliance guardrails, no GDPR consent field enforcement, no accessibility standards checking, and no data residency controls at the authoring layer. Compliance enforcement is achievable via Functions but requires custom implementation.

8.4.11
Design system management
38M

Shared schemas and Studio components distributed via npm packages enable a centralized component library with brand-level extensions via project configuration. Schema inheritance patterns allow global base models extended per brand. However, there is no native design system management UI, no component versioning dashboard, no update propagation automation across tenants, and no visual design token management. The npm-based sharing model requires developer-managed versioning and brand-by-brand package updates.

8.4.12
Cross-brand user management
52M

The Access API centralizes organization-level user management across all projects, enabling central admins to manage users across all brand projects from one API interface. SSO is available on Enterprise for consistent authentication across brand Studios. Custom roles per project provide brand team autonomy. However, there is no unified UI for cross-brand user administration — management is API-driven. Cross-brand contributor roles (a user with access to multiple brand datasets) require explicit per-project configuration.

8.4.13
Multi-brand content modeling
55M

Sanity's recommended multi-tenancy approach is to define canonical schemas with tenant-aware fields and extend per brand only where necessary — avoiding full schema forking. Tenant-specific Studio views present brand-relevant fields without requiring separate schemas. npm-based plugin distribution allows base models to be versioned and consumed per brand with brand-specific extensions layered on top. This is a genuine architectural advantage over platforms that force full schema duplication per brand.

8.4.14
Portfolio-level reporting
18I

Sanity has no portfolio-level reporting capability. Insights provides per-project editorial metrics but there is no aggregation across brand projects. No executive dashboard for content freshness by brand, publishing SLA adherence, cost allocation per tenant, or capacity planning. Cross-brand reporting would require building a custom analytics layer consuming Sanity APIs across all brand projects.

9Regulatory Readiness & Trust63
Data Privacy & Regulatory
9.1.1
GDPR & EU data protection
80H

Sanity is structurally GDPR-aligned: Norwegian (Oslo) HQ inside the EEA, sanity.io/security explicitly states 'Sanity.io is fully GDPR-compliant', and EU/EEA data residency is available via GCP hosting in Belgium with contractual residency for paying customers. Privacy policy covers GDPR and UK GDPR with SCCs for transfers; GROQ-based data retrieval and deletion APIs support data-subject requests. Not higher because right-to-erasure remains API/CLI-driven rather than a self-service DSR portal, and no public standalone sub-processor index exists — GCP is named as sub-processor only inside the security page.

9.1.2
HIPAA & healthcare compliance
54M

Sanity now publishes a dedicated healthcare landing page ('The Content Operating System for Healthcare') that documents healthcare use and highlights granular access controls, full audit trails, and version history — but still offers no public BAA, and the security page mentions HIPAA only as a Google Cloud audited standard. Per the anti-pattern, GCP HIPAA-eligibility does not transfer to the SaaS layer, and an enterprise BAA is not publicly advertised. Newly documented healthcare use lifts this within the 40–60 'could support with configuration, no explicit BAA' band, but the absent BAA keeps it below the 70+ tier.

9.1.3
Regional & industry regulations
60M

Coverage is solid across the essential commercial frameworks — EU/EEA via Norwegian HQ, a detailed CCPA section in the privacy policy with category-by-category disclosure charts, UK GDPR incorporated alongside EU GDPR, and SCC-based transfer safeguards — but lacks depth for regulated verticals. No FedRAMP, no IRAP, no C5, no HITRUST, and LGPD is not prominently documented. The 60 sits in the rubric's 'GDPR + CCPA only' band with credit for UK GDPR coverage, below peers like Contentful and Contentstack that document broader regional coverage.

Security Certifications
9.2.1
SOC 2 Type II
72H

Sanity holds a current SOC 2 Type 2 attestation but it covers the Security trust service criterion only — Availability, Confidentiality, Processing Integrity, and Privacy are out of scope. Annual cadence, reports available under NDA, scope includes Content Lake and APIs. The single-TSC scope places Sanity at the upper end of the rubric's 60–75 'Security TSC only' band but below the 85+ tier that requires multi-TSC coverage typical of enterprise DXP peers.

9.2.2
ISO 27001 / ISO 27018
38H

Sanity still does not hold its own ISO 27001 or ISO 27018 certification. The sanity.io/security page enumerates ISO 27001, 27017, and 27018 as certifications of Google Cloud Platform (the hosting provider) — not of Sanity itself. Per scoring anti-pattern, cloud provider certifications do not transfer to the SaaS platform. This places Sanity in the rubric's 'no ISO 27001' band and is a meaningful gap versus enterprise procurement requirements.

9.2.3
Additional certifications
48H

Beyond SOC 2 Type 2 (Security TSC only), Sanity holds no additional platform-level certifications — no PCI DSS, FedRAMP, CSA STAR Level 2, Cyber Essentials Plus, IRAP, or C5. GCP's underlying certifications do not transfer to Sanity per anti-pattern rules, and Stripe's PCI DSS Level 1 covers payment processing only, not the CMS platform. The 48 sits in the rubric's base 45–55 band for vendors without a broader cert portfolio.

Data Governance
9.3.1
Data residency & sovereignty
75M

Sanity offers Content Lake residency in EU/EEA (GCP Belgium) and US, with enterprise customers able to negotiate contractually bound residency in additional regions where Sanity operates. The security page notes backend systems currently run across three data centers in a single EU region (Belgium) with a planned move to customer-controlled data placement. CDN edge caches distribute globally — a residual concern for strict sovereignty scenarios — and user database plus email processing remain in the US. The 75 sits at the top of the EU/US binary band with credit for contractual enterprise residency.

9.3.2
Data lifecycle & deletion
65M

Self-service content export is available via GROQ API and the sanity dataset export CLI in NDJSON format, with documented post-cancellation deletion ('removed or anonymized as soon as possible after deletion or service cancellation, with a short grace period and backup retention') and plan-determined version-history retention that users can shorten or purge per document via API. Right-to-erasure is API-driven rather than a dedicated DSR portal, requiring developer implementation. The 65 sits in the rubric's 'API export with documented retention' band — solid for GDPR compliance but not self-service for non-technical operators.

9.3.3
Audit logging & compliance reporting
68H

Activity logs in Sanity Manage capture content mutations and user actions, and a complete version history records every transaction with plan-based retention. Self-serve plans can download recent request logs; Enterprise plans receive continuous automated delivery of compressed NDJSON to a customer-owned GCS bucket — a meaningful step above API polling for SIEM ingestion via BigQuery. Not higher because native SIEM push connectors (Splunk, Datadog) are not offered, GCS is the only supported destination, and standard-tier retention is undocumented.

Platform Accessibility
9.4.1
Authoring UI accessibility
62M

Sanity conducted formal WCAG 2.1 AA conformance reviews of Sanity Studio, with two VPATs published at accessibility.sanity.io (August 2022 and September 2022); the September report found Studio partially conformant with WCAG 2.1 A+AA, meeting 39 of 50 success criteria with the remainder partially or not supporting. The Sanity UI component library uses accessible React primitives. The reports are now nearly four years old and predate Studio v3 and v5 (current release v5.x, 2026) — actual current conformance is likely improved but is undocumented, limiting confidence and capping the score in the 'stated commitment with dated formal report' band.

9.4.2
Accessibility documentation
56M

Sanity publishes formal VPAT/ACR documents at a dedicated accessibility microsite — both an August 2022 and a September 2022 report covering WCAG 2.1 and EN 301 549, created with the OpenACR editor, plus an accessibility statement linked from the main site footer. The dedicated microsite plus two formal reports elevate the score above 'page-only' vendors, but the most recent report remains September 2022, nearly four years out of date with no update for Studio v3/v5, which holds the score below the 70+ band that requires a current VPAT for procurement.

10AI Enablement71
AI Content Creation
10.1.1
AI text generation & editing
82H

AI Assist (GA) provides schema-aware generation with reusable instructions and brand voice style guide integration; Content Agent (GA January 2026) executes natural language writing, rewriting, and summarization at scale across Dashboard, Slack, and API. Admin-configurable custom instructions at organization and user level govern how the agent writes and responds, closing the earlier no-code prompt-governance gap. Not higher because bulk generation controls and template libraries remain less mature than top-tier competitors.

10.1.2
AI image & media generation
73H

Agent Actions support AI image generation against asset paths; AI Assist auto-generates alt text and captions. Content Agent can generate and transform images directly within documents — adjusting product photos to match variant colors, adapting visuals for different markets, and updating imagery to match brand guidelines. Not higher because AI video and advanced DAM media processing remain unconfirmed.

10.1.3
AI translation assistance
72H

AI Assist translates entire complex documents or specific fields with a single click, retaining formatting; a dedicated 'Content translation with AI Assist' docs flow and an AI-translations-that-follow-terminology guide extend this, while Agent Actions trigger automated or on-demand document translation integrated with Sanity's document-level localization model. Not higher because brand voice preservation across locales and MT quality scoring remain undocumented as shipped features.

10.1.4
AI metadata & SEO automation
70H

AI Assist fine-tunes meta tags, generates image captions, and improves content descriptions; Content Agent surfaces SEO gaps and missing metadata across thousands of pages, backed by a dedicated automated content audit offering. Automated alt text is built in. Not higher because on-page SEO scoring dashboards and schema markup suggestions are not confirmed native features.

AI Workflow Automation
10.2.1
AI-assisted content operations
74H

Agent Actions are event-driven, schema-aware APIs automating AI enrichment, translation, and syncs on any dataset change; Content Agent performs bulk updates across hundreds of records in one conversation. Scheduled Functions (cron or natural-language time triggers inside Blueprints) and Canvas AI auto-labeling of documents to schema fields extend lifecycle automation. Not higher because several automations still require developer configuration rather than no-code editor setup.

10.2.2
Agentic workflow automation
86H

Content Agent (GA January 2026) runs multi-step content operations end-to-end — auditing thousands of pages, making hundreds of changes, searching the web and synthesizing external data — now surfaced across the Dashboard, Slack (@Sanity in-thread), and a public API, with formal governance gates confirmed: every edit is staged as a draft requiring review before publish. Sanity positions itself as 'the AI Content Operating System' (March 2026), with a Content Agent API, org/user-level custom instructions, and the Pioneers program. Not higher because cross-agent orchestration and an agent marketplace are still absent.

10.2.3
Content intelligence & insights
67M

Content Agent audits thousands of pages, surfacing strategy gaps, SEO gaps, missing metadata, stale content, and editorial priority recommendations via natural language; Sanity markets a dedicated automated content audit offering, and Agent Context compresses schema for intelligent querying. Not higher because there is still no always-on content intelligence dashboard, topic clustering, or ROI attribution — intelligence is conversational and on-demand.

10.2.4
AI content auditing & quality
70M

Content Agent performs large-scale audits covering missing metadata, SEO issues, stale and thin content, productized as a dedicated automated content audit offering; org-level custom instructions let teams encode brand/tone rules the agent applies to every conversation, and all changes stage as reviewable drafts. Not higher because accessibility scanning and formal brand-compliance scoring as audit dimensions remain unconfirmed.

AI Search & Personalization
10.3.1
AI/semantic search
75H

Native Dataset Embeddings are GA in the Content Lake and queryable directly through GROQ — semantic scoring works alongside existing filters and boosts with no external vector database, and the older Embeddings Index API is now deprecated in favor of this native path. Agent Context provides schema-compressed, RAG-ready retrieval with semantic search for production agents. Not higher because a turn-key semantic search UI for editors remains absent.

10.3.2
AI-powered personalization
38M

Native dataset embeddings enable developer-built semantic matching for personalization (e.g., matching user intent against content vectors in real time), and Sanity documents an AI-at-the-front-end pattern where an external AI API decides which content to render per visitor, but Sanity still ships no named ML personalization engine, real-time audience scoring, predictive segmentation, or next-best-content recommendations as product features. Not lower because the embedding infrastructure is production-grade; not higher because personalization remains entirely developer-built.

AI Platform & Extensibility
10.4.1
MCP server availability
90H

Official hosted MCP server at mcp.sanity.io (GA) with OAuth and token auth, 40+ schema-aware tools spanning documents, schema, releases, GROQ, and AI media generation; Agent Context adds a second hosted MCP server for read-only, scoped dataset access. Sanity ships as a connector in Claude and Lovable and via a Cursor plugin. Not higher only because per-tool permission scoping and rate-limit governance remain incompletely documented.

10.4.2
Bring your own AI model/key (BYOM/BYOK)
60M

Agent Context explicitly supports BYOK — users supply their own Anthropic, OpenAI, or other provider keys — and the agent-toolkit references customer-managed keys. However, AI Assist and Content Agent run on Sanity's managed infrastructure (billed via AI credits) with no documented BYOK for editor-facing features. Not higher because BYOK covers developer/agentic use cases only, without multi-provider choice or data residency controls across all AI features.

10.4.3
AI developer extensibility & agent APIs
85H

Exceptional developer AI surface: public Content Agent API with HTTP reference (streaming via streamText, custom mid-conversation tools, GROQ-scoped permissions), official agent-toolkit and sanity-io/context repos, hosted MCP server with 40+ schema-aware tools, Agent Context for RAG-ready retrieval, native GROQ-queryable embeddings, and a dedicated 'Build with AI' docs hub. Sanity explicitly positions itself as infrastructure for AI agents. Not higher because official LangChain/LlamaIndex/CrewAI integration guides remain unconfirmed.

10.4.4
AI governance, safety & audit trails
63M

AI Assist has permission-based guardrails and undoable changes; Content Agent enforces human-in-the-loop review (all edits staged as drafts across Dashboard, Slack, and API; agent respects role permissions) and org-level custom instructions provide brand enforcement. Enterprise tier adds audit logs and history API; SOC 2 Type II certified. Not higher because hallucination detection/confidence scoring, IP indemnification for AI output, and a dedicated AI-specific audit trail separate from document history remain unconfirmed.

10.4.5
AI observability & usage analytics
62H

The sanity.io/manage Usage tab provides detailed AI analytics: total credits used broken down by Agent Actions, Content Agent Queries, and Content Agent Actions, with daily trends and per-user breakdowns; administrators set monthly spending caps that pause AI features when reached, with remaining-budget visibility and per-task cost estimates. Not higher because model performance dashboards, prompt effectiveness analytics, and quality trend monitoring are still absent.

Score History

How composite scores (0–100) have changed over time. Click legend items to show/hide metrics.

+25.8 capability
analyst note

Recent Updates

July 20261 score change

Sanity's momentum this cycle is essentially stable, with Capability, Platform Velocity, Cost Efficiency, Build Simplicity, and Operational Ease all holding flat since the last review. The only movement is a marginal dip in Compliance & Trust (63 to 62.9), driven entirely by a two-point decline on the HIPAA and healthcare compliance item, notable because it coincides with Sanity publishing a dedicated healthcare landing page that clarifies its actual compliance posture. Practitioners evaluating Sanity for regulated healthcare workloads should scrutinize that new documentation closely, but for all other use cases the platform's profile is unchanged.

Score Changes

HIPAA & healthcare compliance5452(-2)

Sanity now publishes a dedicated healthcare landing page ('The Content Operating System for Healthcare') that documents healthcare use and highlights granular access controls, full audit trails, and version history — but still offers no public BAA, and the security page mentions HIPAA only as a Google Cloud audited standard. Per the anti-pattern, GCP HIPAA-eligibility does not transfer to the SaaS layer, and an enterprise BAA is not publicly advertised. Newly documented healthcare use lifts this within the 40–60 'could support with configuration, no explicit BAA' band, but the absent BAA keeps it below the 70+ tier.

June 20266 score changes

Sanity's momentum is stable, with Capability, Platform Velocity, Cost Efficiency, Build Simplicity, Operational Ease, and Compliance & Trust all holding flat this review. Beneath the steady composites, a cluster of small declines in workplace tool integration, content velocity, and marketing analytics integration suggests Sanity's recent additions — Content Agent in Slack, Canvas, and Insights — are being outpaced by peers tightening their collaboration and analytics stories rather than reflecting product regressions. Practitioners evaluating Sanity should weigh that its omnichannel and promotional staging story (Content Releases, structured channel-agnostic models) remains intact but is no longer differentiated enough to lift scores against a faster-moving competitive set.

Score Changes

Workplace tool integration3530(-5)

Content Agent became available in Slack (March 2026) — an official, pre-built bot-driven Slack integration that lets teams run content operations conversationally from their workplace tool. This is a genuine first-party Slack presence, though it serves content editors rather than employee content consumption. Sanity Functions additionally enable event-triggered webhook notifications to Slack and Microsoft Teams. However, there is still no Teams bot, no Google Workspace embedding, no embedded content cards for end-users, and no single-pane workplace experience. M365 integration remains custom development.

Content velocity6360(-3)

Canvas provides AI-assisted free-form writing that maps directly to structured schemas, with field labels (May 2026) helping teams structure AI-drafted content for publishing. Agent Actions enable bulk content operations — tagging, translation, gap analysis — at scale via API. Content Agent, launched in the Dashboard and extended to Slack and an API in March 2026, performs multi-step content operations conversationally, with file/image upload and custom instructions added in April 2026. The Remote MCP Server (GA January 2026) and Sanity Connector for Claude give additional AI surfaces. Content Releases coordinate staged changes; template cloning and reusable blocks reduce per-page overhead. Eurostar reports CMS tasks dropping from 2-3 weeks to 2-3 days. Creating net-new page layouts still requires developer involvement, capping velocity for fully independent marketing teams.

Marketing analytics integration4340(-3)

Sanity Insights surfaces content lifecycle visibility — unpublished content, bottlenecks, editorial velocity — within the Dashboard. Agent Context Insights (May 2026) adds a Studio dashboard that captures AI agent conversations and runs AI classification to extract success scores, sentiment, and content gaps — the first in-platform signal connecting content to audience-facing performance, albeit limited to the AI agent channel. Integration with GA4, Adobe Analytics, and Mixpanel remains standard frontend tagging with no CMS-side dashboard for web performance metrics. No content decay signals or page-level engagement data within Studio for web channels.

Multi-channel publishing6765(-2)

Sanity's Content Operating System positioning is explicitly omnichannel: structured content models define channel-agnostic data rendered differently per channel via APIs. GROQ queries and the CDN serve web, mobile, email, IoT, and digital signage from the same content store. Portable Text renders differently per channel renderer. Agent Context extends delivery to AI agent channels — structured content packaged for consumption by AI shopping and support agents — adding a genuinely new channel class. The platform is designed around 'model once, deliver everywhere' and this remains one of the strongest channel-agnostic content layers among headless CMS platforms.

Promotional content management4038(-2)

Content Releases can stage time-based promotional content — sale banners, promotional messaging, campaign pages — with coordinated publish and unpublish. Scheduled publishing enables time-activated promotional content, and Scheduled Functions (May 2026) add cron or natural-language time triggers defined in Blueprints, making automated promo activation/deactivation easier to implement (though still developer-configured). Custom document types can model promo codes and countdown timers that frontend components render. However, there are no built-in countdown timer components, no native promo code messaging, no channel-specific targeting, and no tiered pricing table authoring.

Content lifecycle and archival3432(-2)

Sanity Insights surfaces content bottlenecks and unpublished content, providing lightweight lifecycle visibility within the Dashboard. Version history tracks all document revisions. Scheduled Functions (May 2026) make it practical to implement automated review-date checks and stale content sweeps via cron triggers — though this remains a custom build, not built-in tooling. There are still no native automated review dates, no stale content flagging based on age or engagement, no archival workflows with ownership assignment, and no expiry reminders. Content lifecycle management is manually tracked by editors rather than platform-enforced.

May 20268 score changes

Sanity's momentum is modestly positive but largely stable, with incremental gains in Capability and Compliance & Trust offsetting a softer reliability picture. The Capability lift is driven by tangible editorial improvements — Scheduled Drafts replacing the deprecated plugin, Content Releases enabling coordinated multi-document publishing, and Presentation tool enhancements for visual editing — while Compliance & Trust nudges up on stronger role-based governance via the Access API and GROQ-filtered document ACLs. The standout caveat for practitioners is the SLA and uptime drop from 73 to 70, reflecting a recurring stream of 2026 incidents that warrants scrutiny for teams with strict availability requirements.

Score Changes

Publishing calendar & scheduling5560(+5)

Scheduled Drafts (available on all paid plans) replaced the deprecated Scheduled Publishing plugin in October 2025 and supports future-dated publishing with timezone awareness directly from the document pane. Content Releases provides atomic multi-document bundled publishing with set date/time or manual trigger, validation before publication, and coordinated unpublishing. A community calendar plugin offers editorial overview. Embargo/auto-unpublish is supported via Content Releases but not as a generic per-document feature.

Content workflows6568(+3)

Content Releases provide coordinated multi-document publishing with scheduling and validation. The Content Agent reached general availability in Feb 2026, accessible via Slack and an API, enabling content operations and editorial coordination through conversational interfaces (bulk operations, custom instructions, file uploads in chat). App SDK and Workflow Manager plugin remain available for custom workflow apps with kanban stages. Still no built-in multi-step approval chains or configurable workflow stages in core — custom approval flows require development work.

Role-based permissions & governance6265(+3)

Sanity offers custom roles via the Access API with dataset-level permissions, document-level ACL via GROQ filters (fine-grained content resource access), organization-level token management for auditability, and SAML/SSO integration (Okta, Azure AD, Google Workspace) on Business and Enterprise plans with automated role mapping based on IdP group membership. The Roles system provides strong default permission groups plus custom role creation. Field-level permissions are not documented, and SCIM for automated user lifecycle management is not confirmed.

SLA and uptime7370(-3)

99.9% uptime SLA on Enterprise plans with public status page at sanity-status.com. 2026 has seen a recurring stream of customer-impacting incidents — Content Releases (Jan), Content Agent error rate (Feb), Asset CDN errors and SSO/SAML login (Mar), org/project creation, plan changes, Studio loading, and elevated API error rates (Apr), and MCP Server unavailability (May). Per the rubric, 99.9% SLA with status page scores 60–75; the elevated incident frequency through 2026 pulls toward the lower-middle of that range.

Visual/WYSIWYG editing7476(+2)

Presentation tool with Live Content API enables click-to-edit overlays on the live frontend. April 2026 brought a comprehensive overhaul of visual editing documentation with framework-specific quickstarts and conceptual guides for drag-and-drop section rearrangement (updates underlying array items in the Content Lake rather than DOM manipulation). Canvas's free-form AI editor now auto-maps drafts to Studio schema in real time. Still requires developer setup to wire visual editing per-frontend — not a turnkey out-of-the-box page builder for marketers.

Webhooks and event system8688(+2)

Among the strongest event systems in the headless CMS space. Sanity Functions (Node.js v22, up to 900s, 10GB memory) trigger on document and asset operations, with Media Library Asset Functions (Nov 2025) and Sync Tag Invalidate Functions (April 2026) added. October 2025 brought higher rate limits, and Feb 2026 introduced color-coded system logging for failure diagnosis. GROQ-powered webhooks support filtering, projections, and Delta-GROQ before()/after() comparisons; April 2026 added an automatic retry mechanism (2 retries at 30s intervals). Official GitHub Actions for Blueprints (Feb 2026) streamline function deployment via Git.

Rich text capabilities9293(+1)

Portable Text Editor remains fully extensible: custom block types, custom marks/annotations, inline objects, and configurable formatting options. Output is structured JSON AST, not HTML, making it truly portable. Studio v5.6.0 (Jan 2026) and subsequent v5.x releases through May 2026 continue refining DEFAULT_ANNOTATIONS/DEFAULT_DECORATORS imports and editor ergonomics. A typography plugin (smart quotes etc.) is available across all Portable Text inputs. Minor gaps: editor UX slightly less polished than dedicated editors like TipTap, and advanced table support requires custom work.

Accessibility documentation5556(+1)

Sanity publishes formal VPAT/ACR documents at accessibility.sanity.io — both an August 2022 and a September 2022 report covering WCAG 2.1 and EN 301 549 in VPAT 2.4 format, with an explicit accessibility contact ([email protected]). The dedicated accessibility microsite plus two formal reports elevate the score above 'page-only' vendors, but the most recent report is from September 2022, well outside the 'current' threshold, which holds the score below the 70+ band that requires a current VPAT for procurement.

April 2026

Sanity's momentum is stable, with all six composite dimensions holding flat since the last review. Capability (67.7), Platform Velocity (77.8), Cost Efficiency (76), Build Simplicity (67.8), Operational Ease (66), and Compliance & Trust (62.8) are all unchanged, reflecting a platform in a steady-state period with no meaningful shifts in any scoring dimension. Platform Velocity and Cost Efficiency remain Sanity's strongest areas, while Compliance & Trust continues to trail as its weakest composite, a gap worth monitoring if the platform pursues enterprise adoption.

March 20267 score changes

Sanity's overall momentum is stable, with five of six composite dimensions unchanged and a modest uplift in Compliance & Trust (+3.1), driven primarily by improved accessibility documentation and authoring UI accessibility scores. However, this gain masks meaningful declines within the same dimension: the ISO 27001/27018 item dropped sharply (-27) after closer scrutiny revealed that Sanity relies on infrastructure-provider certifications rather than holding its own, and SOC 2 Type II was marked down (-10) for covering only the Security trust service criterion. Practitioners evaluating Sanity for compliance-sensitive deployments should note that while accessibility posture is strengthening, the platform's own certification footprint is narrower than its security page initially suggests.

Score Changes

ISO 27001 / ISO 270186538(-27)

Sanity does not hold its own ISO 27001 certification. The sanity.io/security page lists ISO 27001, 27017, and 27018 as certifications of their hosting provider Google Cloud Platform, not of Sanity itself. Per scoring anti-pattern: cloud provider certifications do not transfer to the SaaS platform. Some community sources conflate GCP's ISO 27001 with Sanity's own, but the official security page clearly distinguishes them. This is a significant gap for enterprise procurement that requires platform-level ISO 27001.

SOC 2 Type II8272(-10)

Sanity holds SOC 2 Type II attestation covering the Security trust service criterion only — not Availability or Confidentiality. Reports available to customers under NDA. Annual audit cadence maintained. The scope covers the Sanity Content Lake, Studio, APIs, and hosting infrastructure. Security-only TSC scope is narrower than enterprise DXP peers who typically cover 3–5 criteria. Solid for a growth-stage vendor but the single-TSC scope limits the score per rubric guidelines.

Accessibility documentation4555(+10)

Sanity publishes a formal VPAT/ACR at accessibility.sanity.io covering WCAG 2.1 and Revised Section 508. The report uses VPAT 2.4 format and was generated via WCAG-EM methodology with the OpenACR Editor. However, the most recent report is from August 2022 — nearly 4 years old and predating major Studio versions. No updated VPAT for Studio v3+. Dedicated accessibility contact at [email protected] exists. The dated report reduces procurement utility but its existence elevates the score above vendors with no VPAT at all.

Additional certifications5548(-7)

Beyond SOC 2 Type II (Security TSC only), Sanity holds no additional platform-level certifications. No PCI DSS, no FedRAMP, no CSA STAR Level 2, no Cyber Essentials Plus. GCP's underlying certifications (CSA STAR, PCI DSS, etc.) do not transfer to Sanity per anti-pattern rules. Stripe PCI DSS Level 1 covers payment processing only, not the CMS platform. The additional certification portfolio is minimal for an enterprise-tier vendor.

Authoring UI accessibility5862(+4)

Sanity conducted a formal accessibility conformance review and published results at accessibility.sanity.io. The August 2022 VPAT shows Sanity Studio meets 39 of 50 WCAG 2.1 Level A+AA success criteria (partial conformance). The Sanity UI component library uses accessible React primitives. Known gaps include missing alt text on some graphical elements, navigation structure for screen readers, and unnamed buttons. The report is nearly 4 years old and may not reflect current Studio v3/v5 state, which limits confidence.

HIPAA & healthcare compliance5552(-3)

Sanity does not prominently offer a BAA or market HIPAA-compliant workloads. Standard plans explicitly prohibit PHI in terms of service. Enterprise plans may offer custom BAAs but this is not publicly documented on the security or legal pages. The platform runs on GCP HIPAA-eligible infrastructure, but per the anti-pattern rule, infrastructure HIPAA eligibility does not transfer to the SaaS layer. Healthcare content website use cases exist but regulated PHI workloads are not supported without significant custom legal arrangements.

Audit logging & compliance reporting6568(+3)

Sanity provides activity logs in Sanity Manage for content mutations and user actions. Enterprise plans offer request logs delivered as compressed NDJSON files to customer-owned GCS buckets, enabling ingestion into BigQuery or other data analysis tools. This is a meaningful step beyond basic API polling for SIEM integration. Log retention period not prominently documented for standard tiers. Admin action and user session logging available. Not native SIEM push but the GCS delivery mechanism is a solid enterprise feature.

July 2025

Sanity continues steady maturation as a Tier 1 headless CMS. Platform capabilities remain constrained by its API-first headless approach — no built-in commerce, personalization, or search — but the core content management and architecture scores reach near-peak levels. The competitive landscape intensifies with Contentful and Contentstack also pushing enterprise features.

Platform News

  • Sanity Studio customization improvements

    Continued investment in Studio extensibility and document-level permissions.

  • Expanded marketplace integrations

    Deeper integrations with Vercel, Netlify, Shopify, and commerce platforms via Connect.

October 2024

Sanity deepens its enterprise feature set with Sanity Create — a structured authoring experience that bridges the gap between freeform writing and structured content. Developer experience continues to improve with better TypeScript SDK coverage and GROQ improvements. Regulatory posture strengthens with GDPR tooling enhancements.

Platform News

  • Sanity Create launch

    New authoring tool bridging freeform writing with structured content, targeting content teams unfamiliar with structured CMS.

  • TypeScript SDK improvements

    Enhanced type generation from schemas, better GROQ query type inference.

  • GDPR data residency controls

    EU dataset hosting options and improved data processing documentation for compliance teams.

February 2024

Sanity introduces Visual Editing and the Presentation tool, enabling live preview and click-to-edit across any frontend framework. This significantly improves the editor experience for non-technical users and broadens use-case fit. The platform matures operationally with better monitoring dashboards and webhook reliability.

Platform News

  • Visual Editing and Presentation tool GA

    Click-to-edit overlay system works with Next.js, Remix, Nuxt and other frameworks for live preview.

  • Loaders and Content Source Maps

    New data-fetching primitives that enable Visual Editing by mapping rendered content back to source documents.

June 2023

Studio v3 ecosystem stabilizes as plugins are ported and new integrations ship. Sanity launches AI Assist for content authoring and invests heavily in Content Lake performance. Build simplicity recovers as v3 documentation and migration tooling mature. SOC 2 Type II certification strengthens enterprise positioning.

Platform News

  • Sanity AI Assist launch

    Built-in AI content generation and transformation directly in the Studio editing experience.

  • SOC 2 Type II certification achieved

    Key enterprise compliance milestone, unlocking regulated industry adoption.

  • Content Lake performance improvements

    Significant CDN and query performance upgrades for large-scale content operations.

November 2022

Sanity raises $65M Series C and launches Studio v3 — a full React-based rewrite with TypeScript support and a new plugin architecture. Velocity peaks as the team ships rapidly, but the v2-to-v3 migration creates temporary friction for existing users. The new architecture is technically superior but requires ecosystem rebuilding.

Platform News

  • Sanity raises $65M Series C

    Valued at over $500M, funding targets enterprise expansion and product acceleration.

  • Sanity Studio v3 general availability

    Ground-up rewrite in React with TypeScript, new plugin system, and improved customization APIs.

  • Migration path challenges

    v2 to v3 migration requires significant effort; many plugins need to be rewritten for the new architecture.

March 2022

Post-Series B investment is fueling rapid feature development. Sanity announces plans for Studio v3, a complete ground-up rewrite in React. Community growth accelerates with more integrations and a growing partner ecosystem. Enterprise adoption increases but compliance gaps remain.

Platform News

  • Studio v3 development announced

    Complete rewrite targeting better extensibility, TypeScript-first approach, and modern React patterns.

  • Sanity Exchange marketplace expansion

    Growing library of plugins, starters, and integrations from community and partners.

June 2021

Sanity closes $39M Series B led by ICONIQ Growth, validating its developer-first headless CMS model. The platform has strong core content modeling with GROQ and real-time collaboration, but enterprise capabilities and compliance certifications are still nascent. Studio v2 is mature but the plugin ecosystem is still growing.

Platform News

  • Sanity raises $39M Series B

    Led by ICONIQ Growth, signaling strong enterprise ambitions for the developer-first CMS.

  • GROQ query language gains traction

    Open-source query language becomes a differentiator for Sanity's Content Lake.

  • Real-time collaboration in Studio v2

    Multiplayer editing and presence indicators set Sanity apart from competitors.

How does Sanity stack up against your shortlist?
Side-by-side scoring across all 10 categories and every criterion.
Compare Platforms →