Cloudsmith, a company specializing in cloud-native artifact management, has secured $72 million in a Series C funding round. This investment aims to fortify its presence in AI-driven software development, enabling it to expand product and market capabilities. The platform focuses on meeting the evolving needs of enterprises requiring fast and secure software development processes due to advancements in AI technology. Recently, more companies are looking to overhaul outdated systems in favor of solutions handling new AI-driven demands.
A year prior, Cloudsmith conducted a successful Series B funding round, raising $23 million. The consecutive funding rounds are indicative of the growing significance attributed to secure software supply chain management, especially as AI transforms the landscape. Previous reports highlighted that AI coding assistants help reduce technology development costs, making tools like Cloudsmith vital for maintaining digital competitiveness.
Why is Artifact Management Crucial Now?
The rise of AI-generated software, with its accelerated output, has heightened the need for robust artifact management. Enterprises use platforms like Cloudsmith to handle the massive output and dependencies involved. The service is designed to facilitate the governance and security of each software package, providing control that aligns with the rapid pace set by AI coding agents. This control is increasingly essential as developers strive to uphold quality and safety in an automated environment.
How Does Cloudsmith Address Modern Challenges?
Cloudsmith’s platform, by design, covers a broad range of security threats that accompany accelerated software output. Glenn Weinstein, CEO of Cloudsmith, acknowledged the difficulty humans face in reviewing AI-generated code, noting that connectivity across the open-source ecosystem can mitigate new AI-driven threats.
“AI agents generate so much software, so fast, it’s nearly impossible for humans to carefully review it all,” Glenn Weinstein stated.
According to Morgan Gerlak of TCV, the lead investor in Cloudsmith’s recent funding round, the company is poised to set standards in artifact management tailored for AI.
“As AI shapes the software supply chain, we believe Cloudsmith is uniquely positioned to become a platform enterprises rely on for compliance, control and security at global scale,” Gerlak commented.
This places Cloudsmith in a strategic position to support enterprises in maintaining compliance, security, and overall software quality.
In late 2025, Cloudsmith introduced a Model Context Protocol (MCP) Server, integrating more closely with developers’ AI-enhanced workflows. This innovation followed an enhancement of its security capabilities earlier in the year to address evolving threats to the software supply chain, showing the company’s ongoing adaptation to security needs.
Going forward, Cloudsmith is set to leverage this latest investment to widen its technological capabilities and strengthen market reach, catering to the dynamic demands of AI-driven software development. Their progress signals a significant role in helping enterprises navigate new challenges introduced by AI technologies. Companies looking to innovate in AI development can benefit from Cloudsmith’s robust artifact management platform to ensure regulatory compliance and maintain security in software processes.
