In October we announced we'd added early access support for securely connecting Cloudsmith to your CI/CD with OpenID Connect. We are happy to announce that Cloudsmith's support for OIDC is now generally available for Velocity and Ultra customers.
Why does this matter to you?
CI/CD tools need access to cloud services to publish artifacts, deploy software, and access resources on their cloud provider. So, they need credentials. It's tempting to hard-code them. But long-lived, static credentials and tokens are one of the most common causes of data breaches in cloud environments, and put your pipeline at risk.
You can use Cloudsmith's support for OpenID Connect to enable short-lived authentication tokens, helping to secure your pipelines against the exposure of credentials. OIDC tokens are a more secure way to handle authentication than long-lived credentials, and they remove the need to store your credentials in your CI/CD platform.
Read our blog post to learn more about OIDC authentication and why it matters to you, and check out our documentation on the feature to start using it today.
Documentation: OpenID Connect (OIDC) overview
We understand the frustration of interruptions during your download and upload workflows, and just like you, we're not fans of interruptions. That's why we've been diligently collaborating with our trusted partners at AWS to significantly reduce the occurrence of errors that you may have encountered: 💾 Enhanced Download Reliability (👋 Goodbye 50…
We are pleased to announce significant improvements to how package deletions work at Cloudsmith. In the past, when you requested to delete a package, our system underwent a process known as delete synchronization, which was necessary for the safe removal of packages. Unfortunately, this process resulted in asynchronous deletions, occasional delays…
We are excited to announce a significant enhancement to the /versions/latest/{filename} endpoint in our system. This update specifically addresses and significantly reduces caching issues (staleness) when fetching the latest version of raw package files. What Was Happening Previously: When you requested package files from our Content Delivery Netw…
Attention all C++ enthusiasts! Get ready to embark on an extraordinary journey as we unveil the highly anticipated support for Conan v2, accompanied by major improvements to our existing Conan v1 support. This update is not just an upgrade for Conan support, it's quantum leap, and you can use it right away: 🔄 Support for Revisions: We've empowere…
We're excited to bring you major enhancements in both performance and security for the Cloudsmith Content Distribution Network (CDN), ensuring a smoother and safer experience every time you access it: Performance: Our CDN Performance upgrade has fine-tuned our edge logic for swifter caching and response times. You'll particularly notice this in th…
At Cloudsmith, our mission is to be the world’s software supply chain management platform, acting as a global source of truth. Today marks a pivotal moment in our commitment to this vision. 🌟 Introducing Glenn Weinstein, Cloudsmith's New CEO! 🌟 We believe in always striving for better, and in that spirit, we've welcomed Glenn Weinstein to lead…
By submitting this form, you agree to our privacy policy
