Skip to content

Products
Integrations
Blog
Resources

Products
Integrations
Blog
Resources
Contact Us

Contact Us

All you can read about

Codenotary Trustcenter blog about Software Supply Chain Security, Software Bill of Materials, Code Signing, Trust enforcement, VDR, VEX and SLSA levels.

This is a search field with an auto-suggest feature attached.

There are no suggestions because the search field is empty.

Monthly Quality Report for SBOM Tools

Simplifying Vulnerability Prioritization with EPSS 3.0

Ensuring PDF Document Integrity with Immudb Vault and QR Codes

Trustcenter

How to Share SBOM (Without Software Installation)

Introducing SBOM.sh: Effortless SBOM Sharing

Navigating the Path to Secure Software with SBOM

General

AI-Gateway: Advanced AI Integration for Workforce Communication

Trustcenter

Decoding the UNC4899 Supply Chain Attack

immudb

Certificate and Public Key Pinning Made Easy with immudb Vault

News

Gartner Hype Cycle Recognizes Codenotary in Open Source Software Report

immudb

Using Immudb Vault To Store Documents Immutably and Safe from Tampering

immudb

Tamper-Proof Encrypted Communication Channel Backed by immudb Vault

General

The Case for a Centralized SBOM Management Platform to develop and/or deploy secure software

Why You Should Use an Immutable Database To Share Structured Data

immudb

Bringing PostgreSQL audit to a new level

Trustcenter

A need for an SBOM Exchange Platform

immubot in action

immudb

Track Slack content changes in immudb Vault

immudb

Store Docker Container logs for audits in immudb Vault

immudb

Welcome immudb Vault - the fully managed immutable cloud database

SLSA

The 3CX Breach: A Wake-up Call on the Risks of Software Supply Chain Attacks

SLSA

Codenotary Joins the Snyk Technology Alliance Partner Program

Secure your software supply chain with Trustcenter using GitHub Actions

Trustcenter

Secure your software supply chain with Trustcenter

Trustcenter

Old Software Bugs exploited by Majority of Ransomware Attacks last Year

General

CISA Director urges mentality shift in regards to cybersecurity

SLSA

Trustcenter/Teams - a software component security and risk analysis platform

SBOM for software development

General

Why SBOM is important for software development

Codenotary among three companies named IDC Innovator

SLSA

The advantages of DevSecOps compared to traditional Security Operations Centers

General

Monitoring certificate expiration with Prometheus

Trustcenter

Trustcenter helps complying with NIST SSDF

Trustcenter

Apps Need to Provide Their Own SBOM

Trustcenter

Ongoing massive phishing software attacks

SLSA

TrueSBOM for Serverless Applications

SLSA

One year has passed and Log4Shell is more dangerous than ever before

General

Your Application Development Organization Inadvertently Leaves Door Open for Hackers

Trustcenter

When hidden Java packages put your company at risk

General

Introducing the Developer’s Guide to SBOMs

Trustcenter

WHAT IS AN SBOM BILL OF MATERIALS AND WHAT DOES IT DO?

Metrics and Logs

Save energy without reducing VM performance in your VMware vSphere cluster

Trustcenter

Rust-based Ransomware can hit anywhere including Windows, Linux and VMware ESXi

General

A Jenkins shared library to execute commands with vcn, our CLI tool

General

A GitHub Action to download and use our enterprise tool vcn in CI

General

Serious security vulnerabilities in Atlassian Confluence affect many organizations

General

Notarizing Container images using JFrog’s API

General

Always know about the dependency of your Pods – here comes SBOM operator for Kubernetes

General

The rise of supply chain attacks

General

Dirty Pipe, a new vulnerability

General

Get a Handle on Your Software Supply Chain

General

Use Google Sheets Apps Script to track Open Source GitHub and Docker statistics

General

TechStrong TV interviews Dennis Zimmer about securing Software Supply Chain

General

Immutability Specialist Codenotary Now Offers Trusted Software Supply Chain Assurance in a Fast, Easy, Inexpensive Cloud

Trustcenter

Detect unwanted dependencies in your software like versions of faker.js or colors.js

Trustcenter

Log4j, the brick movie

Trustcenter

Apache Log4j vulnerability shows the importance of SBOMs

tfir.io

Risks Of Not Understanding The Software Bill Of Materials

SLSA

Introducing the SLSA framework

Trustcenter

Software_Bill_of_Materials_SBoM_what_it_is_and_why_it_is_so_important

Trustcenter

accenture-falls-victim-to-ransomware

Trustcenter

installing-immutable-ledger-on-almalinux

General

sbom-executive-order

General

vmware-vsphere-why-checking-numa-configuration-is-so-important-3

when-digital-certificates-fail

General

when-digital-certificates-fail

General

immutable-infrastructure

General

Secured-Github-Actions

Trustcenter

Jenkins Build Deployment Pipeline: A How To for Ensuring Integrity

General

the-trusted-CICD-pipeline

General

solarwinds-sunburst

Metrics and Logs

ubuntu-how-to-use-intel-optane-memory-for-ssd-caching

Metrics and Logs

enlarge-a-disk-and-partition-of-any-linux-vm-without-a-reboot

Metrics and Logs

bug-or-digitally-signed-the-weird-world-of-digital-certificates

Metrics and Logs

use-github-actions-for-validated-builds

Metrics and Logs

fully-trusted-gitlab-pipeline

Metrics and Logs

validated-builds-using-circleci-ci-cd

Metrics and Logs

github-actions-are-live

Metrics and Logs

vmware-vsphere-install-centos-8-and-run-minishift

Metrics and Logs

powershell-file-trust

Metrics and Logs

securing-your-azure-devops-ecosystem-jenkins-and-kubernetes-aks

Metrics and Logs

securing-your-azure-devops-ecosystem-jenkins-and-kubernetes-aks-using-Codenotary-part-1

Metrics and Logs

notarizing-for-the-first-time-report-from-the-frontline-customer-feedback

Metrics and Logs

the-cumbersome-nature-of-gpg-vs-an-easy-to-use-blockchain-alternative

Metrics and Logs

gpg-certificates-maybe-permanently-poisoned-but-blockchain-offers-a-strong-alternative

Metrics and Logs

docker-swarm-monitoring

Metrics and Logs

install-and-use-docker-swarm

Metrics and Logs

using-blockchain-to-protect-against-wire-fraud-scams

Metrics and Logs

protect-yourself-with-blockchain-from-canonical-like-github-attacks

Metrics and Logs

guarantee-trust-of-your-companys-deployed-devops-assets-with-blockchain

Metrics and Logs

bulletproof-your-javascript-app-integrity-for-free-with-blockchain-integration-available-on-npm

Metrics and Logs

storing-sensitive-customer-data-in-a-blockchain-based-solution

Metrics and Logs

verify-digital-asset-integrity-against-the-blockchain-for-free-using-golang

recover-kubectl-config-running-kubernetes-on-ubuntu

Metrics and Logs

recover-kubectl-config-running-kubernetes-on-ubuntu

Metrics and Logs

going-beyond-digital-certificates-with-devops-asset-integrity-management

Metrics and Logs

installing-a-openshift-test-environment-using-minishift

Metrics and Logs

410m-microservices-security-market-validation-and-the-cicd-pipeline

Metrics and Logs

zombie-infestation-software-developer-tools-the-ms-visual-studio-attack

Metrics and Logs

Find & Continuously monitor your Kubernetes-environment for unwanted Docker images

Metrics and Logs

code-signing-certificates-journey-of-pain-3-when-even-signing-isnt-enough

Metrics and Logs

can-gpg-secure-the-software-industry

Metrics and Logs

How to Avoid VMWare ESXi Timedrift?

Metrics and Logs

debugging-crashed-kubernetes-container

Metrics and Logs

granularity-of-digital-certificates

Metrics and Logs

Extremely Useful Docker Commands

Metrics and Logs

avoid-the-digital-and-code-signing-certificates-journey-of-pain

Metrics and Logs

resize-photon-os-system-disk

Metrics and Logs

vsan-hybrid-vs-all-flash

Metrics and Logs

VMware default usernames and passwords

Metrics and Logs

software-defined-management-dashboards-the-opvizor-solution

Metrics and Logs

vm-snapshot-alerts

Metrics and Logs

vmware-cpu-co-stop-and-sql-server-performance

Metrics and Logs

vsphere-ha-waiting-for-cluster-election-to-complete-operation-timed-out

Metrics and Logs

static-routes-for-vmware-esxi-vmkernel-ports

Metrics and Logs

vmware-targets-devops

Metrics and Logs

4-best-practices-for-software-testing-with-vmware

Metrics and Logs

vmware-vcenter-server-appliance-vcsa-filesystem-is-damaged

Metrics and Logs

how-to-make-vmware-faster

Metrics and Logs

find-the-esxi-that-owns-the-vmdk-lock-or-other-file-lock-on-a-vmfs-datastore

Metrics and Logs

vmware-cve-2015-3456-aka-venom-vulnerability

Metrics and Logs

Fix VM snapshot in VMware vSphere when file lock cannot be released

Metrics and Logs

vmware-vsphere-vm-snapshot-size-and-age-issues

Our mission is to ensure the safety of your software, and ensure that your software is trustworthy. We provide a comprehensive suite of verification and enforcement services to guarantee the integrity of your software throughout its entire lifecycle.

Products

Trustcenter/Enterprise

Trustcenter/Teams

Company

Support
Terms of Service

Open Source

Resources

Success Stories

SLSA + CVE + Vex

Copyright © 2023, Codenotary Inc.