Cloudsmith Raises $72M for Software Supply-Chain Security

Recent Package Compromises Pushed Software Component Trust to the Security Agenda Michael Novinson (MichaelNovinson) • April 23, 2026

An artifact management platform led by Twilio's former chief customer officer raised $72 million to bolster software supply-chain security.

See Also: Securing Microsoft 365: A Live Breakdown of Modern Attack Paths

The TCV-led Series C financing will help Belfast, Northern Ireland-based Cloudsmith enforce policies, audit usage and reduce exposure to malicious or compromised packages, said CEO Glenn Weinstein. By acting as an intermediary between developers and public repositories, Cloudsmith transforms artifact management into a security layer without requiring developers to change how they work, he said.

"Having a strong artifact management layer creates the byproduct of a secure software supply chain," Weinstein told ISMG. "That hasn't been our lead selling proposition in the past, but it sure is now because - in conjunction with artificial intelligence ...