LaunchDarkly announced the private preview of Warehouse Native Experimentation, its Snowflake Native App, to offer Data Warehouse Native Experimentation.
Codenotary Cloud Adds New Features
March 15, 2022
Codenotary announced new features in Codenotary Cloud that provide all-in-one, end-to-end software supply chain security and DevSecOps.
This latest version includes Codenotary’s own vulnerability scanning, in addition to the ability to integrate with other vulnerability scanners, which means Codenotary Cloud now provides assurance of a fully-trusted, tamper-proof software supply chain – from checking for vulnerabilities to cryptographic verification and ensuring the provenance of software artifacts and then tracking those in inventory in a Software Bill of Materials (SBOM). In addition, further enhancements have been made to Codenotary Cloud capabilities including extending the existing trust/untrust functionality to now allow policy enforcement that provides full protection in DevOps deployments.
Codenotary Cloud, first announced last month, reduces the cost to almost instantly identify and remove unwanted artifacts by up to 80% and delivers compliance with the U.S. Executive Order on Improving the Nation’s Cybersecurity.
“Our cloud service delivers simplicity combined with the industry’s most sophisticated capabilities for assuring a secure software supply chain,” said Moshe Bar, co-founder and CEO, Codenotary. “It is immutable and tamper-proof providing users with full trust in the essential software they rely on to run their businesses. That is not trivial in today’s world where software supply chain attacks like log4j and SolarWinds have had far-reaching consequences.”
Codenotary Cloud provides an end-to-end trusted software supply chain with integrity and authenticity. It can be scaled to millions of integrity verifications per second and gives developers a way to attach a tamper-proof SBOM for development artifacts that include source code, builds, repositories, and more, plus Docker container images for their software and Kubernetes deployments. The SBOM can make those instantly visible to customers, auditors and compliance professionals. It is built without uploading any data to the service, instead notarizing these artifacts using tamper-proof cryptographic verification to uniquely identify development artifacts. Each artifact retains a cryptographically strong identity stored inside immudb the open source immutable database developed by Codenotary.
With Codenotary Cloud it’s possible to maintain trust status at the level of each individual artifact at scale. Codenotary Cloud provides tools for notarization and verification of the software development lifecycle attesting to the provenance and safety of the code.
Codenotary Cloud can be integrated with popular cloud-native continuous integration / continuous delivery (CI/CD) systems. The DevOps attestation service runs on any cloud or host as a managed service or customers can host themselves.
Industry News
February 13, 2025
SingleStore announced the launch of SingleStore Flow, a no-code solution designed to greatly simplify data migration and Change Data Capture (CDC).
February 13, 2025
ActiveState launched its Vulnerability Management as a Service (VMaas) offering to help organizations manage open source and accelerate secure software delivery.
February 12, 2025
Genkit for Node.js is now at version 1.0 and ready for production use.
February 12, 2025
JFrog signed a strategic collaboration agreement (SCA) with Amazon Web Services (AWS).
February 12, 2025
mabl launched of two new innovations, mabl Tools for Playwright and mabl GenAI Test Creation, expanding testing capabilities beyond the bounds of traditional QA teams.
February 11, 2025
Check Point® Software Technologies Ltd. announced a strategic partnership with leading cloud security provider Wiz to address the growing challenges enterprises face securing hybrid cloud environments.
February 11, 2025
Jitterbit announced its latest AI-infused capabilities within the Harmony platform, advancing AI from low-code development to natural language processing (NLP).
February 11, 2025
Rancher Government Solutions (RGS) and Sequoia Holdings announced a strategic partnership to enhance software supply chain security, classified workload deployments, and Kubernetes management for the Department of Defense (DOD), Intelligence Community (IC), and federal civilian agencies.
February 10, 2025
Harness and Traceable have entered into a definitive merger agreement, creating an advanced AI-native DevSecOps platform.
February 10, 2025
Endor Labs announced a partnership with GitHub that makes it easier than ever for application security teams and developers to accurately identify and remediate the most serious security vulnerabilities—all without leaving GitHub.
February 07, 2025
Are you using OpenTelemetry? Are you planning to use it? Click here to take the OpenTelemetry survey.
February 06, 2025
GitHub announced a wave of new features and enhancements to GitHub Copilot to streamline coding tasks based on an organization’s specific ways of working.
February 06, 2025
Mirantis launched k0rdent, an open-source Distributed Container Management Environment (DCME) that provides a single control point for cloud native applications – on-premises, on public clouds, at the edge – on any infrastructure, anywhere.
February 06, 2025
Hitachi Vantara announced a new co-engineered solution with Cisco designed for Red Hat OpenShift, a hybrid cloud application platform powered by Kubernetes.
