ActiveState Offers A Free Artifact Repository To Strengthens Open Source Supply Chain Security


With a Full Set of Solutions, Strengthening Open Source Supply Chain Security Has Never Been Simpler. Over 2 million developers and 97% of Fortune 1,000 companies have used safe, scalable open source language solutions from ActiveState for more than 20 years.

For a limited period, ActiveState announced that it is now providing the ActiveState Artifact Repository without charge in all ActiveState Platform tiers (including its well-liked Free Tier). In September 2022, the ActiveState Artifact Repository was made available, making it the first tool in the market to let businesses use ActiveState’s secure build service to safely generate Python open source dependencies from source code. A closed-loop environment is thus created, maximising supply chain security, whereby all produced code is immediately stored for distribution in the company’s own private ActiveState Artifact Repository.

Since its introduction, the ActiveState Artifact Repository has proven useful to ActiveState customers and interfaces with a number of other premier secure supply chain capabilities that are pre-integrated into the ActiveState Platform, such as:

  • curated collection of examined artefacts
  • Functionality for resolving vulnerabilities
  • A certification programme for open source products
  • Software Bill of Materials (SBOM)
  • Artifacts created using our secure build service and built from source

ActiveState makes it simpler than ever for enterprises to put security at the centre of their open source supply chain by offering the ActiveState Artifact Repository free of charge for all tiers of service and coupling it with other crucial open source security capabilities.

Cybersecurity organisations in the U.K. and U.S. have both recently provided recommendations to help firms deal with the increased threat as a result of the rise in supply chain assaults in recent years. The National Institute of Standards and Technology (NIST) released comprehensive guidelines in September to assist software businesses in fending off supply chain threats. In a similar vein, the National Cyber Security Centre (NCSC) of the United Kingdom released similar advice in October to assist firms in efficiently assessing and gaining confidence in the cyber security of their supply chains. It is anticipated that this advice will soon become industry norm.

Organizations of all sizes can better defend themselves and their clients from supply chain assaults by utilising the extensive collection of open source security capabilities built into the ActiveState Platform and the ActiveState Artifact Repository.


Please enter your comment!
Please enter your name here