Webinar

Webinar on Software Supply Chain Security Hosted by The Linux Foundation [On-demand Session]

In this webinar, we’ll continue our discussion with some good news! We’ll highlight the progress being made on OSS efforts that we can all standardize on, and some tooling available to everyone beginning this journey.

Develop Software

10 ways to make your software pipeline more observable

Ciara lists 10 ways to make your software pipelines more transparent and observable to gain insights, identify unusual behavior and possibly prevent a software supply chain attack.

Software Package Formats

What is Ruby?

Come explore Ruby as a programming language, Ruby Gems, Ruby on Rails, and hosting your own Ruby Gems repository the easy way with Cloudsmith!

Events

Secure Your Software Supply Chain Using Observability Webinar [On-demand Session]

We’ve assembled a panel of experts from software, security, and data to talk about observability and what it means to your software supply chain security. Watch the 30-minute webinar on-demand.

Software Package Formats

The PowerShell Gallery is Down Again... Now What?

What if we could find a way to protect ourselves from Powershell Gallery outages, with a more highly-available option? Well, Adil may have just the very solution for you here at Cloudsmith! 😉 😉

Webinar

Making SBOMs Actionable Webinar [On-demand Session]

Learn how to improve your supply chain security workflow, enhance visibility, and prevent a disaster like Log4J by using Syft, Grype, Cosign, and Cloudsmith as the container registry in this 1-hour webinar available to watch on-demand.

Security

How to Analyze an SBOM

Ciara discusses how to analyze SBOMs for vulnerabilities using Open Source tools, and how Cloudsmith can take actions like quarantining your images if it contains vulnerabilities above a certain level.

Security

How to Generate and Host an SBOM

Ciara details how and when to generate an SBOM with the help of open-source tooling. Learn how to host SBoMs, as well as other SBOM considerations.

Distribute Software

CD Foundation Announces Cloudsmith as a New Member

Cloudsmith joins the CD Foundation as a new member, in helping to strengthen the growth and evolution of continuous delivery models.

Cloudsmith Featured

Pricing: Building A Better Cloudsmith

We dive into the details of why we're changing the pricing at Cloudsmith, what it means for you, and how we can help.

Cloudsmith Featured

Pricing: A Message from the Founders of Cloudsmith

Alan and Lee talk about the journey of Cloudsmith, and how we got to where we're at today with the latest pricing announcement.

Software Package Formats

What is Conda?

Curious about the Conda universe? Learn what Conda is & where it came from, what Conda packages are, which Conda communities to join, & more!

Webinar

The Future is Cloud-native & Your Organization Should Be Too | Conf42 Cloud-Native Keynote [On-demand Session]

In 2022, your entire tech stack is likely in the cloud - so why aren’t your software packages? Watch Ciara Carey's Conf42 Cloud-Native Keynote to explore why enterprises are going cloud-native.

Deploy Software

Cloud-Native Package Management for the Banking Industry

Technology-forward banks are embracing cloud-native tools in favour of on-premise tools. We explore why banks are moving to the cloud and what package management should look like in finance & banking.

Webinar

Webinar: The Future is Continuous: Integration, Packaging and Delivery

With the increased focus on software supply chain security, the question arises- what implications does that have for CI/CD processes and DevOps pipelines?

Security

Understanding and Implementing a Software Bill of Materials

Although the concept of an SBOM is not new, it has recently come into prominence due to several key events. We delve into what SBOMs are, why organisations need SBOMs, benefits of SBOMs and more.

CI/CD

Everything You Wanted To Know About Securing The Software Supply Chain

Here’s our recap of our Linux Foundation webinar with Dan Lorenc from Chainguard, getting back to the basics of what a software supply chain is, and why it needs to be secure.

Webinar

To NuGet and Beyond Webinar [On-demand Session]

We break down the NuGet ecosystem in Cloudsmith's first ever hosted webinar!

Supply Chain

Securing The Software Supply Chain Linux Foundation Webinar [On-demand Session]

From the history of supply chain security threats to security development & deployment, Adil, Paddy, Dan McKinney & Dan Lorenc discuss everything you’ve wanted to know about the software supply chain.

Software Package Formats

What is NuGet?

You’ve probably heard the term “NuGet” in reference to code packages, package managers, software libraries, and even software installers. Learn about the NuGet universe as part of our Package series.

Webinar

Continuous Software Pipelines: Why Enterprises Are Going Cloud-Native Dev Week Enterprise Open Talk

Your entire tech stack is likely in the Cloud - so why aren’t your software packages?

Software Package Formats

Getting Started with Terraform Modules and Cloudsmith

A video walkthrough of getting set up with a private repository for Terraform Modules on Cloudsmith, including uploading & downloading modules.

Security

Efforts to Secure OSS fired up after Log4Shell

OSS is here to stay, and securing open-source supply chains is more important than ever. Learn about the critical security threats in OSS, and the current efforts to secure and build trust in OSS.

CI/CD

Getting Started with Continuous Packaging

Continuous Packaging (CP) is a term that we use a lot at Cloudsmith, and it is one that we think will become a cornerstone in a secure software development process.

Security

All About Log4j/Log4Shell + Mitigation (CVE-2021-44228 and Beyond)

This article discusses the background, impact, identification, and mitigation of Log4Shell vulnerability, one of the worst vulnerabilities to arise in the past decade.