We now verify the authenticity of sign-ins from new or unrecognized devices. Because this is a new change, you may be asked to verify a device even if it has accessed Cloudsmith before. By confirming both your login credentials and the device, we help prevent unauthorized access with minimal disruption to your workflow.
If you haven't already, consider enabling multi-factor authentication for an added layer of security. Questions? Please contact us.
Cloudsmith’s Enterprise Policy Management (EPM) now supports the Exploit Prediction Scoring System (EPSS), a data-driven metric designed to estimate the probability of a software vulnerability being exploited in the wild…
Cloudsmith has extended our Swift support to include the native signing of Swift packages. This update brings seamless, secure, and high-performance signing capabilities directly to iOS developers, eliminating the need for third-party workarounds or custom implementations…
Cloudsmith now supports natively signing all NuGet packages using an X.509 certificate. This feature enables consumers to verify a package’s repository signatures in native tooling using the NuGet or .NET CLI, ensuring integrity and authenticity…
Package groups are now available in Cloudsmith’s new web application. This view groups all packages within a repository by their format and name, allowing you to scan over repository contents more easily if you have multiple versions of packages within a repository…
We are pleased to announce dark mode for Cloudsmith’s new web application. Dark mode is an essential feature for modern web applications, and has been a frequent customer request since the new web app was released in Early Access…
Cloudsmith will now automatically generate a Cosign signature when you upload a container image, eliminating the need for manual key management. This simplifies image signing, making it easier to implement image verification in your workflows…
By submitting this form, you agree to our privacy policy
