Cloudsmith Raises $72 Million in Series C Funding

Artifact management platform Cloudsmith today announced raising $72 million in a Series C funding round that brings the total raised by the company to $124 million. The new investment round was led by TCV, with additional support from Insight Partners and other previous investors. Founded in 2016, Belfast, UK-based Cloudsmith provides a secure repository for software supply chains, helping enterprises keep pace with the speed at which AI agents build software. The company tackles the expanding threat surface introduced by AI coding agents through artifacts and dependencies, helping enterprises manage large software supply chains spanning across open source, internal, and third-party dependencies. The solution can automatically find vulnerabilities and malicious code within packages and apply policies to control package distribution, approving verified packages and blocking rogue ones. Cloudsmith’s platform provides visibility and control over packages, containers, and ML models, and enables customers to build a chain of custody. It also helps organizations mitigate compliance issues, streamline operations through analytics, logging, and audits, and manage global artifact distribution to improve productivity. The fresh funding allows the company to invest in go-to-market efforts and product development. “AI agents generate so much software, so fast, it’s nearly impossible for humans to carefully review it all. Cloudsmith has the scale and the broad view across the open-source ecosystem to protect enterprises against the new kinds of threats that AI-driven development introduces,” said Cloudsmith CEO Glenn Weinstein. Related: Rilian Raises $17.5 Million for AI-Native Security Orchestration Related: Linx Security Raises $50 Million for Identity Security and Governance Related: Cybersecurity M&A Roundup: 38 Deals Announced in March 2026 Related: Depthfirst Raises $80 Million in Series B Funding WRITTEN BY Ionut Arghire Ionut Arghire is an international correspondent for SecurityWeek. More from Ionut Arghire New Wiper Malware Targeted Venezuelan Energy Sector Prior to US Intervention  Mirai Botnet Targets Flaw in Discontinued D-Link Routers North Korean Hackers Use AppleScript, ClickFix in Fresh macOS Attacks Oracle Patches 450 Vulnerabilities With April 2026 CPU Dozens of Malicious Crypto Apps Land in Apple App Store Progress Patches Multiple Vulnerabilities in MOVEit WAF, LoadMaster Organizations Warned of Exploited Cisco, Kentico, Zimbra Vulnerabilities $290 Million Kelp DAO Crypto Heist Blamed on North Korea Latest News Chinese Cybersecurity Firm’s AI Hacking Claims Draw Comparisons to Claude Mythos Rilian Raises $17.5 Million for AI-Native Security Orchestration The Behavioral Shift: Why Trusted Relationships Are the Newest Attack Surface Luxury Cosmetics Giant Rituals Discloses Data Breach AI Can Autonomously Hack Cloud Systems With Minimal Oversight: Researchers  Apple Patches iOS Flaw Allowing Recovery of Deleted Chats Recent Microsoft Defender Vulnerability Exploited as Zero-Day After Bluesky, Mastodon Targeted in DDoS Attack Trending Webinar: A Step-By-Step Approach To AI Governance April 28, 2026 With "Shadow AI" usage becoming prevalent in organizations, learn how to balance the need for rapid experimentation with the rigorous controls required for enterprise-grade deployment. Register Virtual Event: Threat Detection And Incident Response Summit May 20, 2026 Delve into big-picture strategies to reduce attack surfaces, improve patch management, conduct post-incident forensics, and tools and tricks needed in a modern organization. Register People on the Move Anti-ransomware platform Halcyon has named Kirstjen Nielsen and Chris Inglis as Strategic Advisors. ThreatModeler has appointed Kevin Gallagher as Chief Executive Officer. Thomas Bain has been appointed Chief Marketing Officer at Silent Push. More People On The Move Expert Insights Government Can’t Win The Cyber War Without The Private Sector Securing national resilience now depends on faster, deeper partnerships with the private sector. (Steve Durbin) The Hidden ROI Of Visibility: Better Decisions, Better Behavior, Better Security Beyond monitoring and compliance, visibility acts as a powerful deterrent, shaping user behavior, improving collaboration, and enabling more accurate, data-driven security decisions. (Joshua Goldfarb) The New Rules Of Engagement: Matching Agentic Attack Speed The cybersecurity response to AI-enabled nation-state threats cannot be incremental. It must be architectural. (Nadir Izrael) The Next Cybersecurity Crisis Isn’t Breaches—It’s Data You Can’t Trust Data integrity shouldn’t be seen only through the prism of a technical concern but also as a leadership issue. (Steve Durbin) Why Agentic AI Systems Need Better Governance – Lessons From OpenClaw Agentic AI platforms are shifting from passive recommendation tools to autonomous action-takers with real system access, (Etay Maor) Flipboard Reddit Whatsapp Email