CodeSecure and FOSSA announced a strategic partnership and native product integration that enables organizations to eliminate security blindspots associated with both third party and open source code.
npm Enterprise Introduced
March 21, 2019
npm, Inc. announced npm Enterprise,a managed deployment of the npm registry designed to meet the collaboration, security and compliance needs of large organizations.
npm Enterprise offers a dedicated cloud-deployed registry allowing for publication and sharing of public packages without the risk of a shared system. Companies get their own “companyname.npme.io” website with support for industry-standard SSO authentication to control developer access and other permissions. Private packages and teams promote code sharing between developers across the enterprise, while single-tenant deployment satisfies security and operational policies that can be customized as needed. Developers can publish private packages to their own company registry, or make them open source for anyone to access.
The solution integrates with the npm registry, placing the world’s largest collection of open source software at enterprise developers’ fingertips.
“Approximately 100% of the world’s enterprises acquire over 97% of their JavaScript from the npm Public Registry, making the introduction of npm Enterprise essential for professionalization of JavaScript development,” said Bryan Bogensberger, CEO of npm, Inc. “With npm Enterprise, we are giving JavaScript developers the npm tools they love while providing the enterprise with enhanced visibility, security and control. The result: happiness throughout organizations everywhere.”
In the past, enterprise developers who wished to share code with one another had to do so by hand: via email or an artifact store not designed to enable reuse on a massive scale. With npm Enterprise, companies benefit from a modern, open source development workflow that allows developers to work as they always have, while ensuring security, compliance and access control.
npm Enterprise features include:
- Dedicated single-tenant hosting in a Kubernetes cluster
- Company-specific companyname.npme.io URL
- Support for industry-standard SSO authentication
- Role-based access control for managing access and publication of modules
- Sharing of private packages between and across teams
- Customizable workflows for code collaboration and seamless CI/CD system integration
- Notification of known vulnerabilities through “npm audit”
“We believe that npm Enterprise can help organizations build better software more quickly than ever before,” said Isaac Z. Schlueter, Chief Product Officer at npm, Inc. “But today’s announcement is just the beginning. Our roadmap is full of opportunities to build on our knowledge and the power of the npm ecosystem, and we can’t wait to see how npm will continue to change the way developers work within the enterprise.”
Industry News
April 16, 2025
Bauplan, a Python-first serverless data platform that transforms complex infrastructure processes into a few lines of code over data lakes, announced its launch with $7.5 million in seed funding.
April 15, 2025
Perforce Software announced the launch of the Kafka Service Bundle, a new offering that provides enterprises with managed open source Apache Kafka at a fraction of the cost of traditional managed providers.
April 14, 2025
LambdaTest announced the launch of the HyperExecute MCP Server, an enhancement to its AI-native test orchestration platform, HyperExecute.
April 14, 2025
Cloudflare announced Workers VPC and Workers VPC Private Link, new solutions that enable developers to build secure, global cross-cloud applications on Cloudflare Workers.
April 14, 2025
Nutrient announced a significant expansion of its cloud-based services, as well as a series of updates to its SDK products, aimed at enhancing the developer experience by allowing developers to build, scale, and innovate with less friction.
April 10, 2025
Check Point® Software Technologies Ltd.(link is external) announced that its Infinity Platform has been named the top-ranked AI-powered cyber security platform in the 2025 Miercom Assessment.
April 10, 2025
Orca Security announced the Orca Bitbucket App, a cloud-native seamless integration for scanning Bitbucket Repositories.
April 10, 2025
The Live API for Gemini models is now in Preview, enabling developers to start building and testing more robust, scalable applications with significantly higher rate limits.
April 09, 2025
Backslash Security(link is external) announced significant adoption of the Backslash App Graph, the industry’s first dynamic digital twin for application code.
April 09, 2025
SmartBear launched API Hub for Test, a new capability within the company’s API Hub, powered by Swagger.
April 09, 2025
Akamai Technologies introduced App & API Protector Hybrid.
April 09, 2025
Veracode has been granted a United States patent for its generative artificial intelligence security tool, Veracode Fix.
April 09, 2025
Zesty announced that its automated Kubernetes optimization platform, Kompass, now includes full pod scaling capabilities, with the addition of Vertical Pod Autoscaler (VPA) alongside the existing Horizontal Pod Autoscaler (HPA).
April 08, 2025
Check Point® Software Technologies Ltd.(link is external) has emerged as a leading player in Attack Surface Management (ASM) with its acquisition of Cyberint, as highlighted in the recent GigaOm Radar report.
