Formats/PowerShell

Private, secure PowerShell module repositories in the cloud

Cloudsmith gives your teams a fully managed, private PowerShell module repository backed by NuGet-compatible feeds. Push and pull modules with native tooling, enforce security policies, and eliminate the fragility of relying on the public PowerShell Gallery.

Universal format support

PowerShell modules, managed your way. Cloudsmith is a secure, cloud-native store for all your scripts, modules, and software artifacts.

  • Use PowerShell + 30 other formats in one place
  • Store modules alongside containers, raw binaries, and ML models
  • Centrally manage your entire software supply chain from a single platform

How we support PowerShell

Cloudsmith gives your teams a fully managed, NuGet-compatible PowerShell module repository with the access controls, performance, and reliability enterprise pipelines demand.
    NuGet-compatible feeds
    Cloudsmith PowerShell repositories are fully NuGet-compatible. Register your feed with Register-PSRepository using your entitlement token and push or install modules using native PowerShell tooling with no extra plugins required.
    Policy-as-code governance
    Define policy rules to quarantine or block packages based on custom criteria. Combine OPA Rego policies with package insights metadata to enforce governance across every module your teams consume.
    Granular access controls
    Create public or private repositories and manage permissions at the team or user level. Combine entitlement token authentication with HTTP Basic Auth to lock down exactly who can push or pull each module.
    Global CDN delivery
    Cloudsmith serves PowerShell modules from 600+ edge points of presence worldwide. Eliminate the slow, intermittent downloads your teams hit pulling from the public PowerShell Gallery, especially during peak CI/CD periods.
    Full audit and client logs
    Every upload, download, and policy event is logged. Use Cloudsmith's audit trail and client logs to trace exactly which module version was pulled into which pipeline, satisfying compliance and incident-response requirements.

Why teams choose Cloudsmith for PowerShell

The public PowerShell Gallery was not built for enterprise reliability or access control. Cloudsmith gives teams a private, auditable, policy-enforced alternative that fits inside existing CI/CD workflows from day one.
Without CloudsmithTeams pull directly from the public PowerShell Gallery, which has suffered repeated reliability issues, CDN outages, and search indexing failures. Intermittent 503 errors break CI/CD pipelines with no fallback.
With CloudsmithCloudsmith acts as your private, fully managed module registry. Modules are cached and served from a globally distributed CDN, so your pipelines keep running even when public registries have outages.
Without CloudsmithThere is no mechanism to audit who is pulling what from the Gallery or to restrict access to specific modules per team. Any pipeline with internet access can pull any public module with no visibility or governance.
With CloudsmithCloudsmith gives you full entitlement-token and API-key-based access control per repository, with complete audit logs showing every push, pull, and policy event. Tokens are scoped to enforce least-privilege access.
Without CloudsmithSelf-hosted or ad-hoc PowerShell module distribution relies on shared file paths, fragile internal NuGet servers, or OneDrive syncing that is painful to maintain, impossible to scale, and prone to breaking.
With CloudsmithCloudsmith is fully managed with no servers to patch or storage to provision. Push modules once and distribute them globally with authenticated, token-scoped access from any environment or CI runner.

Signs you're ready to switch to Cloudsmith for PowerShell

Teams outgrow the public PowerShell Gallery and self-hosted workarounds quickly. If any of these sound familiar, Cloudsmith is the upgrade your pipeline needs.
    Pipeline failures from Gallery outages
    The public PowerShell Gallery has a documented history of outages, CDN failures, and 503 errors that break pipelines relying on Install-Module. Cloudsmith removes this dependency with a private, SLA-backed registry you control.
    No visibility into what modules teams are pulling
    When engineers install modules directly from public sources, there is no audit trail and no policy enforcement. Cloudsmith gives you complete logs of every pull and the controls to block or quarantine non-compliant packages.
    Self-hosted NuGet servers that are hard to maintain
    Running your own internal PowerShell feed means patching servers, managing storage, and handling availability yourself. Cloudsmith is fully managed so your team focuses on automation, not infrastructure.
    Modules stored separately from the rest of your artifacts
    Storing PowerShell modules in one place and containers or binaries in another creates fragmented tooling and duplicated access controls. Cloudsmith unifies all artifact types in a single platform.
    No control over which module versions teams consume
    Public module sources give you no way to enforce which module versions your teams use. Cloudsmith lets you curate an approved set of modules and block installs from outside your private registry using OPA Rego policies.

Get started with PowerShell on Cloudsmith

Frequently asked questions

  1. Cloudsmith's PowerShell repositories are built on fully NuGet-compatible feeds. You register your Cloudsmith feed using Register-PSRepository, then push and install modules using standard PowerShell tooling like Publish-Module and Install-Module. No custom clients or plugins are required.

  2. Cloudsmith supports two authentication types for PowerShell repositories: Entitlement Token Authentication and HTTP Basic Authentication. Both require you to create a PSCredential object and pass it to Register-PackageSource and Register-PSRepository. Tokens should always be treated as secrets and never committed to source control.

  3. Yes. Cloudsmith integrates with all major CI/CD platforms. You configure your pipeline to authenticate with an API key or entitlement token, register the Cloudsmith feed, and use standard Install-Module or Find-Module commands. The Cloudsmith CLI also provides a push command for uploading PowerShell modules as part of a build step.

  4. Yes. You can upload your curated set of modules to Cloudsmith and configure your teams to install from your private registry instead of the public Gallery. This eliminates exposure to Gallery reliability issues, removes dependency on public infrastructure, and gives you full control over which module versions your teams use.

  5. Yes. All Cloudsmith repositories are multi-format. You can store PowerShell modules, Docker container images, NuGet packages, Python wheels, and any other supported format in the same organisation. This consolidates tooling, access controls, and audit logs across your entire software supply chain.

  6. Cloudsmith gives you granular, role-based access controls. You assign permissions at the team or user level, choosing between read, write, and admin roles. Private repositories require authenticated access via entitlement token or API key, and you can scope tokens to specific repositories to enforce least-privilege access.

  7. Yes. Cloudsmith records every push, pull, and policy event in full client and audit logs. You can see exactly which module version was downloaded, by which user or service account, and when. Logs can be exported to feed into third-party SIEM and analysis tools.

  8. Cloudsmith serves packages from 600+ edge points of presence globally. Module installs are fast regardless of where your developers or CI runners are located. This removes the latency and intermittent slowness teams experience when pulling large modules or dependency trees from the public Gallery.

  9. Yes. Cloudsmith's OPA Rego policy engine lets you define rules that govern which modules are permitted in your repositories. You can block specific versions, require specific metadata fields, or quarantine packages that do not meet your criteria before any team member installs them.

  10. No. Cloudsmith is a fully managed SaaS platform. There are no servers to provision, patch, or scale. You get a production-ready private PowerShell repository immediately after creating a workspace, with high availability, global delivery, and policy enforcement included.

Formats

There’s more than just PowerShell on Cloudsmith