Cloudsmith is a fully managed solution for controlling, securing, and distributing everything that flows through your software supply chain, using the best of cloud-native artifact management. Operate at enterprise scale, reduce risk, and streamline builds. Cloudsmith just works, so your developers can, too.
Investment Rounds
Capital activity and funding progression
| Amount | Date | Round |
|---|---|---|
| $72 M | Apr, 2026 | series-c |
Frequently Asked Questions
Where is Cloudsmith located?
Cloudsmith is located in Belfast, United Kingdom.
What industries does Cloudsmith operate in?
Cloudsmith operates in the following industries: cybersecurity, software.
How much total funding has Cloudsmith raised?
Cloudsmith has raised a total of $72,000,000.
Who are the investors in Cloudsmith?
The investors in Cloudsmith are: TCV, Insight Partners.
What is Cloudsmith?
Cloudsmith is a fully managed, cloud-native artifact and package management platform. It serves as a centralized source of truth for software teams to store, manage, and distribute various package formats, containers, and assets securely across their development pipelines.
Is Cloudsmith secure?
Yes, Cloudsmith incorporates multiple security layers, including ISO 27001 compliance, 256-bit encryption for data in transit and at rest, role-based access controls, vulnerability scanning, and support for 2FA to protect the software supply chain.
Does Cloudsmith support private repositories?
Yes, Cloudsmith allows users to create both public and private repositories. Private repositories require authentication via entitlement tokens or other secure methods to ensure that only authorized users or machines can access the stored assets.
Is Cloudsmith suitable for large enterprises?
Cloudsmith is designed to be enterprise-ready and scalable, supporting organizations of all sizes. Its cloud-native architecture allows it to handle high-volume demands, global delivery, and complex dependency management without the need for customers to maintain their own infrastructure.
How does Cloudsmith protect against malicious packages?
Cloudsmith uses security scanning and Enterprise Policy Management to identify and block or quarantine malicious packages. It integrates data from sources like the OpenSSF to detect and prevent harmful software from entering build processes.