Simple, universal package management
Rapid, reliable development demands the software assets you need, available when you need them. Cloudsmith is universal package management. All your packages and dependencies are available to your entire team, all the time and anywhere on the globe. Result: better software, delivered faster.
Your packages available, when you need them
You control a Cloudsmith private repository. You don’t rely on any third party to ensure an asset or package is available when you need it. As a result, you are never left unable to develop and deploy your code.
-
Upstream proxying: Cloudsmith caches upstream packages for you, for convenient consistent access
-
Protect your software and servers from downtime and slowness of official main repositories
Go Cloud-Native, Not Cloud-Hosted
Popular legacy tools provide cloud-hosted solutions that are a hybrid cloud and on-premise offering. The challenges with this type of solution are increased costs, limited observability, and reduced time to scale. With a truly Cloud-Native solution, complexity is stripped away, increasing automation and observability of your pipeline while reducing unnecessary hassle and costs. With Cloudsmith you get:
-
Supporting distributed teams, maintenance windows, version upgrades and scaling of infrastructure is all handled by the service, letting your team focus on what's most important.
-
A service Level Agreement (SLA) guaranteeing uptime
Manage teams and organizations
Collaborate securely with other users in your organization. Structure teams, organizations and permissions to control how and where individual assets are used.
-
No per-seat pricing means no limit to how your business distributes packages with Cloudsmith.
-
Build teams and organizations in seconds
Part of your DevOps ecosystem
We partner with leading DevOps technologies to ensure the fastest, most reliable software pipelines. Integrate your packages and assets directly into CI/CD processes from a single source. Use webhooks to contact your application or integration when events happen, such as new packages being added. Build complex automated CI/CD pipelines in order to accelerate your DevOps practices.
Centralised security and malware scanning
Malware scanning on every package at the point of upload helps to ensure that your ecosystem is free from malware and other potentially unsafe constructs. Meanwhile a single central repository means your assets are easily accessible for security and vulnerability scanning.
-
All communication and storage is encrypted in-transit and at-rest (with 256-bit or hardware-based encryption)
-
Checksums and GPG signatures are provided to detect tampering
Support
With You Every Step Of The Way
We don’t have a customer support team. Our engineers work directly with our customers. We’ve seen exactly how to build and manage modern software asset storage and distribution networks, and we’ll help you do the same.