Cloudsmith Changelog

We've introduced Client Logs into the new web app user interface, delivering a significantly improved experience for gaining visibility into package usage across your Cloudsmith workspace. Previously available in our legacy UI, Client Logs is now more performant, accessible, and interactive. This allows you to visualize, filter, and export information to better understand how your packages are consumed, whether by CI/CD pipelines, IDEs, or external consumers.

Last year, we introduced Cloudsmith’s new web app user interface hosted at app.cloudsmith.com and shared our plans to retire the legacy interface on cloudsmith.io. We knew there were a few key features we wanted to bring to the new UI before deprecating the old one, and customer feedback since launch has reinforced those priorities. As such, we have updated our timeline

The Cloudsmith status page is now available at https://status.cloudsmith.com. As part of this change, we’ve adopted a new incident management platform to improve how we manage incidents and communicate updates. The new platform gives us better tools to share clear, timely information when incidents happen and when they are resolved. The previous…

You can now upload and distribute arbitrary files via Cloudsmith Maven repositories, whether pulled from upstream sources or directly uploaded.

We now verify the authenticity of sign-ins from new or unrecognized devices. Because this is a new change, you may be asked to verify a device even if it has accessed Cloudsmith before. By confirming both your login credentials and the device, we help prevent unauthorized access with minimal disruption to your workflow.

Cloudsmith’s Enterprise Policy Management (EPM) now supports the Exploit Prediction Scoring System (EPSS), a data-driven metric designed to estimate the probability of a software vulnerability being exploited in the wild.

Cloudsmith has extended our Swift support to include the native signing of Swift packages. This update brings seamless, secure, and high-performance signing capabilities directly to iOS developers, eliminating the need for third-party workarounds or custom implementations.

Cloudsmith now supports natively signing all NuGet packages using an X.509 certificate. This feature enables consumers to verify a package’s repository signatures in native tooling using the NuGet or .NET CLI, ensuring integrity and authenticity.

Package groups are now available in Cloudsmith’s new web application. This view groups all packages within a repository by their format and name, allowing you to scan over repository contents more easily if you have multiple versions of packages within a repository.

We are pleased to announce dark mode for Cloudsmith’s new web application. Dark mode is an essential feature for modern web applications, and has been a frequent customer request since the new web app was released in Early Access.