Cloudsmith has extended our Swift support to include the native signing of Swift packages. This update brings seamless, secure, and high-performance signing capabilities directly to iOS developers, eliminating the need for third-party workarounds or custom implementations.

Cloudsmith now supports natively signing all NuGet packages using an X.509 certificate. This feature enables consumers to verify a package’s repository signatures in native tooling using the NuGet or .NET CLI, ensuring integrity and authenticity.

Package groups are now available in Cloudsmith’s new web application. This view groups all packages within a repository by their format and name, allowing you to scan over repository contents more easily if you have multiple versions of packages within a repository.

We are pleased to announce dark mode for Cloudsmith’s new web application. Dark mode is an essential feature for modern web applications, and has been a frequent customer request since the new web app was released in Early Access.

Cloudsmith will now automatically generate a Cosign signature when you upload a container image, eliminating the need for manual key management. This simplifies image signing, making it easier to implement image verification in your workflows.

Cloudsmith customers can now create branded public repositories using our new distribution feature, Broadcasts. With Broadcasts, you can set up a custom domain, creating a single trusted place for users to access your software artifacts. Your users can discover packages, containers and SDKs, and download those artifacts right from the browser or pull them down using native tools like their IDE or CI/CD build systems.