One reason for building a ‘single source of truth’ for software assets is that it gives the organization control over who can use what when. The ‘wild West’ of public repositories gives no control at all and can lead to a situation in which packages and dependencies of dubious provenance are integrated into builds without a second thought. Within the Cloudsmith world, we want to have the maximum security and control possible.

At Cloudsmith, we pride ourselves in being the central source of truth for your packages and build artifacts. We provide one global platform to centralize your assets and give you the control and visibility that you need as part of a modern DevOps process.

We’ve said it before and we’ll say it again: one of our core objectives in Cloudsmith is to ensure that we support pretty much every package format we possibly can. In other words, the product is universal. We want to make sure that however you built the software assets you use, Cloudsmth will provide a single, consistent way to store, manage, secure and distribute those assets. As part of that ongoing mission, today we announce support for Terraform Modules.

Managing dependencies is a fact of life in modern software development. But at Cloudsmith, we’re focused on ensuring that the process is as painless as possible. To that end, we’re delighted to announce both upstream proxying and caching for Maven packages. Together they mean simpler, more reliable integration of third party packages into the development process. Better software, faster.