Cloudsmith (Page 2)

2023 Predictions for DevOps and Supply Chain Security

2023 Predictions for DevOps and Supply Chain Security

Welcome to 2023! The year of the Linux Desktop, the rise of AI, Software Bill of Materials (SBOM), DevOps is Dead, Platform Engineering is Alive, and a CNCF landscape that won’t be getting any simpler! Seriously, the technology and software sector is growing at a faster pace than any

Integrating Cloudsmith with Your Roadie Developer Portal

Integrating Cloudsmith with Your Roadie Developer Portal

Customers can now integrate Cloudsmith with Roadie, letting users monitor key Cloudsmith data within the Roadie developer portal. Cloudsmith has just announced an exciting new integration with Roadie, a start-up that provides SaaS for Backstage, a service catalog open-sourced by Spotify that automatically tracks your microservices. Organizations use Roadie to

State of DevOps | A Look Ahead at 2023 [On-demand Session]

State of DevOps | A Look Ahead at 2023 [On-demand Session]

Join us as we continue our December conversation and discuss our predictions for DevOps and Software Supply Chain Security for the year ahead with community leaders. We will delve into some common and not-so-common opinions and topics you are likely to hear more and more about as the year progresses

Cloudsmith's response to CircleCI security incident

Cloudsmith's response to CircleCI security incident

CircleCI, a Continuous Integration/Continuous Delivery service, disclosed on Wednesday that they were investigating a security incident that impacted their platform and customers. CircleCI included in the disclosure recommended actions all customers should take in response to the incident. Cloudsmith leverage CircleCI as an orchestrator for our build and deployment

Cloudsmith 2022

Cloudsmith 2022

CEO and Co-Founder Alan Carson looks back on 2022 for this year's edition of the Cloudsmith by Numbers Infographic.

Recap: 2022 State of DevOps Webinar

Recap: 2022 State of DevOps Webinar

State of DevOps moderator Ciara Carey recaps the Dec 15 session.

Could 2023 be the year of memory safety?

Deploy Software

Could 2023 be the year of memory safety?

We can completely eliminate software vulnerabilities caused by memory corruption by moving software away from C and C++. The National Security Agency (NSA) is urging developers to shift to memory safe languages – such as C#, Go, Java, Ruby, Rust, and Swift. Could 2023 be the year of memory safety?

2022 State of DevOps [On-demand Session]

Events Featured

2022 State of DevOps [On-demand Session]

We’ve assembled a panel of experts for our final webinar of 2022 to look back on the year and discuss key learnings and trends.

How to Manage Your Package Promotion Workflows with Cloudsmith

How to Manage Your Package Promotion Workflows with Cloudsmith

Package promotion workflows are a great way to isolate and protect production repositories away from public upstreams, so they only receive clear and vetted packages.

Who What Where and Why of Commercial Open Source [Session Recap]

Who What Where and Why of Commercial Open Source [Session Recap]

Why do companies use commercial OSS instead of hosting it themselves? Lætitia Avrot, Field CTO at EDB and David Tuite Founder of Roadie talk about SLAs, security, maintenance, proprietary features, conferences and contributing to the open source ecosystem.

The Who, What & Why of Commercial Open Source [On-demand Session]

The Who, What & Why of Commercial Open Source [On-demand Session]

We've assembled a panel of experts that have a close relationship with open source to discuss bridging the gap between free, open-source software and commercial open-source products

How Do Mature DevOps Teams Manage Software Security? [On-demand Session]

How Do Mature DevOps Teams Manage Software Security? [On-demand Session]

We’ve assembled a panel of experts from the mature DevOps teams of Puppet and Shopify to answer some of your biggest software security questions.

The EU Efforts To Secure Open Source Software [On-demand Session]

The EU Efforts To Secure Open Source Software [On-demand Session]

Watch this session from Open Source Summit Dublin to learn more about the European Union's response to the ever-changing open source security landscape.

SBOMs: The New Standard in Supply Chain Security [On-demand Session]

SBOMs: The New Standard in Supply Chain Security [On-demand Session]

Watch this session from DevOps Con NYC to learn about this emerging standard, how it can improve the security of your supply chain, open source tools to help you generate and analyze SBOMs and the future of SBOMs.

How to Manage Your Vulnerability Workflows with Cloudsmith

How to Manage Your Vulnerability Workflows with Cloudsmith

Scan your packages for vulnerabilities and never miss new vulnerabilities as they get discovered. Create actionable workflows by quarantining packages over defined vulnerability levels

Cloudsmith is headed to Detroit for KubeCon | CloudNativeCon North America!

Cloudsmith is headed to Detroit for KubeCon | CloudNativeCon North America!

The Cloudsmith Team is headed to Detroit for KubeCon CloudNativeCon North America! Stop by the Cloudsmith booth in the expo hall to speak with our universal artifact management experts and pick up some awesome swag. About Cloudsmith: Cloudsmith is the only cloud-native package management platform for software engineers looking to

Cloudsmith is an Open Source Security Foundation (OpenSSF) member!

Cloudsmith Supports OpenSSF's Efforts to Secure OSS

As part of our mission to make it simple to secure software at scale through Continuous Packaging, Cloudsmith is proud to be an Open Source Security Foundation (OpenSSF) member.

Webinar on Software Supply Chain Security Hosted by The Linux Foundation [On-demand Session]

Webinar on Software Supply Chain Security Hosted by The Linux Foundation [On-demand Session]

In this webinar, we’ll continue our discussion with some good news! We’ll highlight the progress being made on OSS efforts that we can all standardize on, and some tooling available to everyone beginning this journey.

10 ways to make your software pipeline more observable

Develop Software

10 ways to make your software pipeline more observable

Ciara lists 10 ways to make your software pipelines more transparent and observable to gain insights, identify unusual behavior and possibly prevent a software supply chain attack.

Software Package Formats

What is Ruby?

Come explore Ruby as a programming language, Ruby Gems, Ruby on Rails, and hosting your own Ruby Gems repository the easy way with Cloudsmith!

Secure Your Software Supply Chain Using Observability Webinar [On-demand Session]

Secure Your Software Supply Chain Using Observability Webinar [On-demand Session]

We’ve assembled a panel of experts from software, security, and data to talk about observability and what it means to your software supply chain security. Watch the 30-minute webinar on-demand.

what to do when the Powershell gallery is down!

Software Package Formats

The PowerShell Gallery is Down Again... Now What?

What if we could find a way to protect ourselves from Powershell Gallery outages, with a more highly-available option? Well, Adil may have just the very solution for you here at Cloudsmith! 😉 😉

Making SBOMs Actionable Webinar [On-demand Session]

Making SBOMs Actionable Webinar [On-demand Session]

Learn how to improve your supply chain security workflow, enhance visibility, and prevent a disaster like Log4J by using Syft, Grype, Cosign, and Cloudsmith as the container registry in this 1-hour webinar available to watch on-demand.

how to analyze sboms

How to Analyze an SBOM

Ciara discusses how to analyze SBOMs for vulnerabilities using Open Source tools, and how Cloudsmith can take actions like quarantining your images if it contains vulnerabilities above a certain level.

How to generate and host SBOMs

How to Generate and Host an SBOM

Ciara details how and when to generate an SBOM with the help of open-source tooling. Learn how to host SBoMs, as well as other SBOM considerations.