Cloudsmith CLI: New vulnerability command
Cloudsmith has introduced a new vulnerabilities command to the CLI, allowing users to retrieve package security scan results through a single command…
Mar 25 2026
Cloudsmith Changelog
All Logs
Stop dependency confusion by defining trusted sources
Upstream Trust prevents attackers from hijacking your internal package names in public repositories. By defining explicit trust boundaries, you ensure that once an artifact is identified as internal, it cannot be replaced by an untrusted externally-sourced version…
Mar 23 2026
Take the complexity out of policy management with new templates
Policy as code is a powerful way to scale security and compliance across modern DevOps pipelines, but writing Rego from scratch is a high barrier to entry. We’ve introduced Policy Templates to provide functional starting points, allowing you to deploy validated security guardrails without coding from scratch…
Mar 9 2026
Filter client logs by edge response (hit/miss)
Following our recent update to include cache data in Client Log Exports, we have now added the ability to filter by Edge Response directly within the Client Logs UI…
Mar 9 2026
Manage your supply chain using natural language with MCP
The Cloudsmith CLI now supports the Model Context Protocol (MCP), allowing you to bridge your package management workflow with AI assistants like Claude, Cursor, and VS Code…
Mar 2 2026
New upstream source: GitHub Releases
You can now proxy and cache binaries, scripts, and other assets directly from GitHub Releases into Cloudsmith…
Feb 26 2026
Upstream publish date added for additional formats
You can now use the upstream publish date in Cloudsmith policies for Python, NuGet, Docker, Ruby, Go, Rust (Cargo), Conda, and Maven packages, expanding on the npm support added earlier this year. This enables you to define policies that automatically quarantine new packages for a specific time period (e.g., three days) after release…
Feb 20 2026
API sandbox added to our documentation website
We've made a significant new upgrade to our documentation website, adding an API sandbox where you get hands-on with all of our API endpoints…
Feb 18 2026
Manage generic upstreams via the Cloudsmith Terraform provider
We’ve added support for generic upstreams to the Cloudsmith Terraform provider. This update allows customers to automate the proxying and caching of any file-based asset - such as raw binaries or scripts - directly via Infrastructure as Code…
Feb 16 2026
Recent quality of life improvements in the Cloudsmith web app
We’ve updated the Cloudsmith web app with several improvements to streamline your daily workflow and provide better visibility into your account usage…
Feb 10 2026
Keep up to date with our monthly product bulletin