|
By Ciara Carey
Learn how to strengthen and maintain your Zero Trust security posture, improve compliance, and reduce risk with Cloudsmith's armory of access, pipeline, publishing, and monitoring controls.
|
By Karen Gardner
API giant Kong has handed the reins of its software distribution to Cloudsmith. Learn why in this case study recap + video.
|
By Nick Peacock
Prevent buyer's remorse. Use these ‘green flags’ from our Senior Director of Customer Success to find + pick a vendor that’ll keep you moving forward whenever the unexpected threatens to hold you back.
|
By Ciara Carey
At Cloudsmith, we are excited to announce our support for the Chainguard Registry as an upstream source. By consolidating all your artifacts, packages, and now Chainguard Images into Cloudsmith, your organization can: Integrating the Chainguard Registry as an upstream resource in your Cloudsmith account not only enhances security but also boosts efficiency in your artifact management workflow.
|
By Alan Carson
Learn why using Cloudsmith with GitHub extends visibility, control + management beyond source code to your entire supply chain.
|
By Dan McKinney
Use Cloudsmith to store your Helm charts alongside your Docker images thanks to Cloudsmith’s support for multi-format repositories. This gives you a unified platform for all your K8s needs, ensuring all your dependencies are stored, managed, and delivered from a single, secure source.
|
By Ciara Carey
In CI/CD workflows, leaked credentials pose a significant threat, potentially leading to unauthorized access, data breaches, and system compromises, ultimately disrupting development pipelines and undermining the integrity of software deployment processes.
|
By Ciara Carey
On January 4, 2023, CircleCI warned its customers to rotate “any and all secrets” after a compromise by an unauthorized third party.
|
By Glenn Weinstein
CEO Glenn Weinstein highlights Cloudsmith's support of the open source community.
|
By Ciara Carey
Ciara Carey reflects on her experience at the KubeCon event in Paris including her top 10 talks and current industry trends.
|
By Cloudsmith
Optimized for distributed teams working at any scale, Cloudsmith is your single source of truth for software assets. Start your free trial today!
|
By Cloudsmith
The Cloudsmith team is excited to announce our newly released support for Swift! Discover how Cloudsmith's new capabilities can revolutionize the way Swift developers manage dependencies.
|
By Cloudsmith
Check out how to reduce the risk of data breaches by removing long-lived credentials from your CI/CD build pipelines using OpenID Connect (OIDC) authentication.
|
By Cloudsmith
In our first instalment of DevOps Debriefs, join Cloudsmith and special guest Rob Godfrey, Senior Technical Architect at the Financial Times (FT) for a discussion on the crucial role of authentication and credential management in ensuring software pipeline security. We’ll discuss: Innovative strategies that empowered the Financial Times team to overcome software supply chain risks in their pipelines. How the team responded to the fallout of the CircleCI breach by using OIDC with CircleCI and Cloudsmith.
|
By Cloudsmith
Optimized for distributed teams working at any scale, Cloudsmith is your single source of truth for software assets.
|
By Cloudsmith
Open Source Software (OSS) presents boundless opportunities, and organizations face challenges in securely leveraging OSS Join Cloudsmith and Chainguard as we talk about the easy way to securely consume OSS. Discover S2C2F best practices for securely consuming OSS and understand how Cloudsmith's Cloud Native Artifact Management aligns with these standards. Learn about Chainguard zero CVE images drastically reduce vulnerabilities and image attack surface.
|
By Cloudsmith
Worried about supply chain attacks and hidden vulnerabilities compromising your organization's software integrity? Join Alison Sickelka, VP Product, and Ciara Carey, Developer Relations, as they lead our webinar, 'Practical Workflows for Managing Vulnerabilities using Cloudsmith.' Discover how Cloudsmith serves as your organization's central source of truth for builds, mitigating risks, optimizing workflows, and ensuring global distribution.
|
By Cloudsmith
Join us for a demo and Q&A on Cloudsmith's cloud native, global, universal artifact management platform! Learn how Cloudsmith can help you distribute software globally, secure your software supply chain, optimize your workflow and reduce infrastructure costs!
|
By Cloudsmith
Listen to Rust expert Carol Nichols discuss how adopting a memory-safe language like Rust can significantly reduce vulnerabilities.
|
By Cloudsmith
Cloudsmith Navigator helps engineers select the highest quality OSS packages for their projects. Navigator integrates and analyses data on NPM, PyPi, RubyGems and Maven packages, and assigns each one a score based on security, maintenance and documentation.
- July 2024 (4)
- June 2024 (3)
- May 2024 (4)
- April 2024 (2)
- March 2024 (6)
- February 2024 (7)
- January 2024 (6)
- December 2023 (6)
- November 2023 (5)
- October 2023 (3)
- September 2023 (3)
- August 2023 (5)
- July 2023 (5)
- June 2023 (4)
- May 2023 (1)
- April 2023 (1)
- March 2023 (4)
- February 2023 (4)
- January 2023 (3)
- December 2022 (4)
- November 2022 (5)
- October 2022 (2)
- September 2022 (4)
- August 2022 (6)
- July 2022 (4)
- June 2022 (2)
- May 2022 (9)
- April 2022 (3)
- March 2022 (10)
- February 2022 (1)
- January 2022 (6)
- December 2021 (3)
- November 2021 (2)
- October 2021 (3)
- September 2021 (3)
- July 2021 (5)
- June 2021 (5)
- May 2021 (4)
- April 2021 (4)
- March 2021 (4)
- February 2021 (4)
- January 2021 (3)
- November 2020 (10)
- October 2020 (6)
- September 2020 (7)
- August 2020 (6)
- July 2020 (6)
- June 2020 (9)
- May 2020 (9)
- April 2020 (9)
- March 2020 (2)
- February 2020 (6)
- September 2019 (1)
- August 2019 (1)
- July 2019 (2)
- June 2019 (1)
- May 2019 (2)
- April 2019 (1)
- August 2018 (1)
- July 2018 (1)
- November 2017 (1)
Cloudsmith, your friendly neighbourhood Package Management startup, is a fully managed 24/7 Software-as-a-Service (SaaS) for securely storing and sharing assets, packages and containers. We have distributed millions of packages for innovative companies around the world and specifically help with: development, for internal build pipelines and dependencies; deployment, for delivery pipelines to servers; and distribution, for sharing software to entitled users worldwide.
Our main office is in Belfast, UK, but our approach to software development and the Cloud allows people to contribute from all over the world.
Built for Engineers, by Engineers:
- For Dev: Control the dependencies for your build/development pipelines. Share libraries privately with your teams, and develop your software securely.
- For Ops: Deploy the artefacts for your delivery pipelines. Promote through delivery stages, and ignore unstable upstreams that will break you.
- For Vendors: Distribute licensed software to customers, anywhere in the world. Define private access via entitlements, to ensure only entitled users get it.
The new standard in Package Management and Software Distribution.