Platform Features
Enterprise Policy Manager
Enterprise Policy Manager gives you centralized control over your entire software supply chain - every package, dependency, format, and team - before software reaches developers, pipelines, or production.
Enterprise Link
Protect every artifact with automated policy controls that scale with your business. Cloudsmith makes it easy to enforce security, compliance, and governance across every stage of your software supply chain.
Security and Compliance Features
Features to safeguard your teams, customers, and reputation. Cloudsmith is a central checkpoint for software integrity.
Enterprise policy management
Take control over the software flowing to your teams and pipelines with detailed policies written in OPA Rego syntax.
Continuous security
Avoid security dropouts; your policies and controls are evaluated around the clock.
Generate SBOMs for containers
We generate and check a complete software bill of materials for every container added to Cloudsmith.
Host SBOMs
Drive consistency across your software builds by hosting and distributing SBOMs on Cloudsmith.
Geographic location / IP restrictions
Ensure your software doesn't flow to problematic territories or specific IP ranges.
Licence compliance
Gain visibility of the software licenses in use across your workspace, and develop policies to reject unacceptable licenses.
Custom storage regions
Remain in compliance with your corporate standards by specifying storage regions for your software artifacts.
Package quarantine
Prevent packages from being distributed to teams and pipelines when they fail policy checks.
Malware scanning
Block malicious packages from getting to teams with automatic malware checks.
Custom signing keys
Ensure packages have not been tampered with by signing with own custom encryption keys.
Package signing
Lorem ipsum dolor sit amet, consectetur adipiscing elit.
Sigstore cosign support
Automatically verify your packages as part of your build pipeline using Sigstore.
Access Control Features
Features to control who can access the packages, containers, models and data managed in your Cloudsmith workspace.
Single sign-on via social auth
Use your existing social sign-on provider to authenticate against Cloudsmith.
Teams (team-based controls)
Assign privileges and permissions to groups of users organized in teams.
Service accounts
Allow bots and services to interact with your Cloudsmith resources using dedicated service accounts.
Usage statistics
Gain insight into how resources are being used with usage statistics and visualizations.
Audit logs
Look for patterns of interest or concern with a full audit trail of actions taken in your Cloudsmith workspace.
Audit logs API
Get programmatic access to changes made in your Cloudsmith workspace.
Client logs
Observe and interact with detailed logs generated for every request made to Cloudsmith.
Log exports
Take your log data away for further analysis with automated log exports.
OpenID Connect
Use ephemeral OIDC tokens to connect Cloudsmith with third-party services, without long-lasting credentials.
Single sign-on via SAML
Use your existing ID provider like Okta to authenticate Cloudsmith users.
SAML groups
Model your org's teams and permissions in your ID provider, and automatically map to Cloudsmith.
SCIM
Automatically reflect changes to your real-world org in your Cloudsmith teams and users.
API key policies
Mitigate against security breaches by ensuring keys are updated regularly and automatically invalidated.
Documentation and Support
We are here to help!
Speak with one of our experts to see Cloudsmith’s feature set in action and get tailored advice to fit your use case
