"Harness Artifact Registry embeds artifact management directly into the software delivery platform, allowing security policies, governance controls, and CI/CD workflows to operate within a single system."
"The registry supports multiple artifact ecosystems, including Docker images, Helm charts, Python, npm, Go, and NuGet packages, allowing teams to consolidate artifacts into a single repository."
"A key focus of the release is software supply chain security, introducing the Dependency Firewall, which evaluates packages and their dependencies upon entry into the registry."
Harness Artifact Registry is designed to streamline the storage, security, and governance of software artifacts within DevSecOps pipelines. By embedding artifact management into the software delivery platform, it eliminates the need for separate tools, reducing operational complexity. The registry supports various artifact ecosystems and focuses on software supply chain security through a feature called Dependency Firewall, which blocks artifacts with vulnerabilities or untrusted sources before they are used in builds. This integrated approach enhances visibility and control over the software supply chain.
Read at InfoQ
Unable to calculate read time
Collection
[
|
...
]