Alternatives to AWS CodeArtifact
Compare AWS CodeArtifact alternatives for your business or organization using the curated list below. SourceForge ranks the best alternatives to AWS CodeArtifact in 2026. Compare features, ratings, user reviews, pricing, and more from AWS CodeArtifact competitors and alternatives in order to make an informed decision for your business.
-
1
QVscribe
QRA
QVscribe, QRA's flagship product, unifies stakeholders by ensuring clear, concise artifacts. It automatically evaluates requirements, identifies risks, and guides engineers to address them. QVscribe simplifies artifact management by eliminating errors and verifying compliance with quality and industry standards. QVscribe Features: Glossary Integration: QVscribe now adds a fourth dimension by ensuring consistency across teams using different authoring tools. Term definitions appear alongside Quality Alerts, Warnings, and EARS Conformance checks within the project context. Customizable Configurations: Tailor QVscribe to meet specific verification needs for requirements, including business and system documents. This flexibility helps identify issues early before estimates or development progress. Integrated Guidance: QVscribe offers real-time recommendations during the editing process, helping authors effortlessly correct problem requirements and improve their quality. -
2
Revenera SCA
Revenera
Take control of your open source software management. Empower your organization to manage open source software (OSS) and third-party components. FlexNet Code Insight helps development, legal and security teams to reduce open source security risk and manage license compliance with an end-to-end system. FlexNet Code Insight is a single integrated solution for open source license compliance and security. Find vulnerabilities and remediate associated risk while you build your products and during their entire lifecycle. Manage open source license compliance, add automation to your processes, and implement a formal OSS strategy that balances business benefits and risk management. Integrate with build tools, CI/CD and SCM tools, artifact repositories, external repositories or build your own integrations using the FlexNet Code Insight REST API framework to make code scanning easy and effective. -
3
JFrog Artifactory
JFrog
The Industry Standard Universal Binary Repository Manager. Supports all major package types (over 27 and growing) such as Maven, npm, Python, NuGet, Gradle, Go, and Helm including Kubernetes and Docker as well as integration with leading CI servers and DevOps tools that you already use. Additional functionalities include: - High Availability that scales to infinity with active/active clustering of your DevOps environment and scales as business grows - On-Prem, Cloud, Hybrid, or Multi-Cloud Solution - De Facto Kubernetes Registry managing application packages, operating system’s component dependencies, open source libraries, Docker containers, and Helm charts with full visibility of all dependencies. Compatible with a growing list of Kubernetes cluster providers. -
4
Posit
Posit
Posit builds tools that help data scientists work more efficiently, collaborate seamlessly, and share insights securely across their organizations. Its Positron code editor provides the speed of an interactive console combined with the power to build, debug, and deploy data-science workflows in Python and R. Posit’s platform enables teams to scale open-source data science, offering enterprise-ready capabilities for publishing, sharing, and operationalizing applications. Companies rely on Posit’s secure infrastructure to host Shiny apps, dashboards, APIs, and analytical reports with confidence. Whether using open-source packages or cloud-based solutions, Posit supports reproducible, high-quality work at every stage of the data lifecycle. Trusted by millions of users—and more than half of the Fortune 100—Posit empowers professionals across industries to innovate with data. -
5
Artifact Registry is Google Cloud’s unified, fully managed package and container registry designed for high-performance artifact storage and dependency management. It centralizes hosting of container images (Docker/OCI), Helm charts, language packages (Java/Maven, Node.js/npm, Python), and OS packages, offering fast, scalable, reliable, and secure handling with built-in vulnerability scanning and IAM-based access control. Integrated seamlessly with Google Cloud CI/CD tools like Cloud Build, Cloud Run, GKE, Compute Engine, and App Engine, it supports regional and virtual repositories with granular security via VPC Service Controls and customer-managed encryption keys. Developers benefit from standardized Docker Registry API support, comprehensive REST/RPC interfaces, and migration paths from Container Registry. Daily updated documentation includes quickstarts, repository management, access configuration, observability tools, and deep-dive guides.
-
6
Azure Artifacts
Microsoft
Add fully integrated package management to your continuous integration/continuous delivery (CI/CD) pipelines with a single click. Create and share Maven, npm, NuGet, and Python package feeds from public and private sources with teams of any size. Create and share Maven, npm, NuGet, and Python package feeds from public and private sources. Easily share code across small teams and large enterprises. Get universal artifact management for Maven, npm, NuGet, and Python. Share packages, and use built-in CI/CD, versioning, and testing. Share code effortlessly by storing Maven, npm, NuGet, and Python packages together. And there's no need to store binaries in Git, simply store them using Universal Packages. Keep every public source package you use, including packages from npmjs and nuget.org, safe in your feed where only you can delete it, and where it's backed by the enterprise-grade Azure SLA.Starting Price: $6 per user per month -
7
Sonatype Nexus Repository
Sonatype
Sonatype Nexus Repository is a robust binary repository manager designed to store, manage, and distribute open-source components, dependencies, and artifacts across the software development lifecycle (SDLC). It supports over 20 formats, including Maven, npm, PyPI, and Docker, allowing for seamless integration with build tools and CI/CD pipelines. With advanced features like high availability, disaster recovery, and scalability across cloud platforms, Nexus Repository ensures secure and efficient management of your software artifacts. The platform enhances collaboration, automates workflows, and improves visibility into your software supply chain, helping teams manage dependencies and improve software quality. -
8
NuGet
NuGet
NuGet is the package manager for .NET. The NuGet client tools provide the ability to produce and consume packages. The NuGet Gallery is the central package repository used by all package authors and consumers. New to NuGet? Start with a walkthrough showing how NuGet powers your .NET development. Browse the thousands of packages that developers like you have created and shared with the .NET community. Want to make your first NuGet package and share it with the community? Start with our walkthrough! The command-line tool, nuget.exe, builds and runs under Mono 3.2+ and can create packages in Mono. Although nuget.exe works fully on Windows, there are known issues with Linux and OS X. The primary source for learning about a package is its listing page on NuGet (or another private feed). Each package page on NuGet includes a description of the package, its version history, and usage statistics.Starting Price: Free -
9
Dist
Dist
Highly available and super fast artifact repositories and container registries that keep your developers, operations teams, and customers happy and productive. Dist is the simplest and most reliable way to securely distribute Docker container images and Maven artifacts across your team, systems, and customers. Our purpose-built edge network ensures optimal performance, wherever your team and customers are. Dist is fully managed in the cloud. We take care of operations, maintenance, and backups so you can focus on your business. Restrict access to repositories by users and groups. Each user can further compartmentalize their own access using access tokens. All artifacts, container images, and their associated metadata are encrypted at rest and in transit.Starting Price: $39 per month -
10
Azure Container Registry
Microsoft
Build, store, secure, scan, replicate, and manage container images and artifacts with a fully managed, geo-replicated instance of OCI distribution. Connect across environments, including Azure Kubernetes Service and Azure Red Hat OpenShift, and across Azure services like App Service, Machine Learning, and Batch. Geo-replication to efficiently manage a single registry across multiple regions. OCI artifact repository for adding helm charts, singularity support, and new OCI artifact-supported formats. Automated container building and patching including base image updates and task scheduling. Integrated security with Azure Active Directory (Azure AD) authentication, role-based access control, Docker content trust, and virtual network integration. Streamline building, testing, pushing, and deploying images to Azure with Azure Container Registry Tasks.Starting Price: $0.167 per day -
11
Cargo
Cargo
Cargo is the Rust package manager. Cargo downloads your Rust package's dependencies, compiles your packages, makes distributable packages, and uploads them to crates.io, the Rust community’s package registry. You can contribute to this book on GitHub. To get started with Cargo, install Cargo (and Rust) and set up your first crate. The commands will let you interact with Cargo using its command-line interface. A Rust crate is either a library or an executable program, referred to as either a library crate or a binary crate, respectively. Loosely, the term crate may refer to either the source code of the target or to the compiled artifact that the target produces. It may also refer to a compressed package fetched from a registry. Your crates can depend on other libraries from crates.io or other registries, git repositories, or subdirectories on your local file system. You can also temporarily override the location of a dependency.Starting Price: Free -
12
packagecloud
packagecloud
Fast, reliable, and secure software starts here. A unified, developer-friendly interface for all of your artifacts written in any language, delivered to any infrastructure. Ship securely and quickly knowing your packages are handled by packagecloud. Consistent package repositories, at enterprise scale and startup speed. A single API and CLI for every environment and package type. Works seamlessly and harmoniously with the systems you already use. Manage all of your packages and deploy to any environment, from one beautiful interface, on-premise or in the cloud. Packagecloud supports the most popular package types, from Java to Python to Ruby and Node, and more. Built for teams with collaboration and access control features. Packagecloud just works. Upload any supported package type via a single, consistent API and deploy with ease. We run thousands of tests to ensure correct and consistent behavior even in the face of bugs in the packaging systems themselves.Starting Price: $150 per month -
13
Chocolatey
Chocolatey
Chocolatey has the largest online registry of Windows packages. Chocolatey packages encapsulate everything required to manage a particular piece of software into one deployment artifact by wrapping installers, executables, zips, and/or scripts into a compiled package file. Package submissions go through a rigorous moderation review process, including automatic virus scanning. The community repository has a strict policy on malicious and pirated software. Many organizations face the ongoing challenge of deploying and supporting various versions of software. Chocolatey allows organizations to automate and simplify the management of their complex Windows environments. Our customers have experienced a massive reduction in effort, improved speed of deployment, high reliability, and comprehensive reporting. Reduce complexity, save yourself time, and get up to speed on the latest technologies and approaches.Starting Price: $96 per year -
14
PyPI
PyPI
PyPI is the official repository for Python software packages, hosting hundreds of thousands of projects that developers can publish and users can discover and install. It supports both source distributions (“sdists”) and pre-built binary “wheels”, allowing packages to include native extensions for different platforms. Projects on PyPI consist of multiple releases, each of which can include various files for different operating systems or Python versions. Metadata for each package includes things like version number, dependencies, licensing, classifiers, description (including rendering Markdown or reStructuredText), and other information that tools like pip use to resolve, download, and install the correct package. PyPI provides search and filtering based on package metadata, letting users find what they need via keywords, compatibility, or other package attributes.Starting Price: Free -
15
Easily store, share, and deploy your container software anywhere. Push container images to Amazon ECR without installing or scaling infrastructure, and pull images using any management tool. Share and download images securely over Hypertext Transfer Protocol Secure (HTTPS) with automatic encryption and access controls. Access and distribute your images faster, reduce download times, and improve availability using a scalable, durable architecture. Amazon ECR is a fully managed container registry offering high-performance hosting, so you can reliably deploy application images and artifacts anywhere. Meet your organization’s image compliance security requirements using insights from common vulnerabilities and exposures (CVEs) and the Common Vulnerability Scoring System (CVSS). Publish containerized applications with a single command and easily integrate your self-managed environments.
-
16
CloudRepo
CloudRepo
CloudRepo provides fully managed, cloud-based, private repositories. With CloudRepo, developers store and access Public and Private, Maven, and Python repositories in the cloud. CloudRepo stores your maven repositories across multiple physical servers reducing the probability of data loss & maven repository downtime due to hardware failure. We help reduce time and resources spent running unsecured & vulnerable maven repositories, which allows everyone to focus on developing more. Your team has completed all this developing to ultimately distribute your repositories. Use the Software Distribution feature to make sure your repositories get in the right hands.Starting Price: $79 per month -
17
Perforce TeamHub
Perforce
Your code repository software is where you store your source code. This might be a Mercurial, Git, or SVN repository. Perforce TeamHub (formerly Helix TeamHub) can host your source code repository, whether it’s Mercurial, Git, or SVN. You can add multiple repositories in one project — or create a separate project for each repository. Perforce TeamHub can host more than your code repositories. You can manage and maintain all of your software assets in one spot. This includes build artifacts (Maven, Ivy) and Docker container registries. It also includes private file sharing through WebDAV repositories for your other binary files. You can use TeamHub on its own or alongside P4 to maintain a single source of truth across development teams. For example, you can keep large binary files in P4, then combine those files with Git assets from Perforce TeamHub in a hybrid workspace to achieve high build performance.Starting Price: $1.05/month -
18
PowerShellGet
Microsoft
PowerShellGet is a module with commands for discovering, installing, updating, and publishing PowerShell artifacts like modules, DSC resources, role capabilities, and scripts. The Find-Command cmdlet finds PowerShell commands such as cmdlets, aliases, functions, and workflows. Find-Command searches modules in registered repositories. For each command found by Find-Command, a PSGetCommandInfo object is returned. The PSGetCommandInfo object can be sent down the pipeline to the Install-Module cmdlet. Install-Module installs the module that contains the command. DSC resources can be located using the parameters Tag and RequiredVersion. Tag displays the current version of every resource that contains the specified tag in the repository. RequiredVersion needs the ModuleName parameter and the Name parameter is optional. The Name and ModuleName parameters limit the output. Use the AllVersions parameter to display a DSC resource's available versions.Starting Price: Free -
19
Harness
Harness
Harness is an AI-native software delivery platform that helps engineering teams achieve excellence by automating and streamlining the entire software delivery lifecycle. It enables continuous integration, continuous delivery, and GitOps for multi-cloud, multi-region deployments with increased speed and reliability. Harness simplifies infrastructure as code, database DevOps, and artifact management to improve collaboration and reduce errors. The platform offers AI-powered testing, incident response, chaos engineering, and feature management to enhance quality and resilience. Harness also provides cloud cost management, security testing orchestration, and developer insights to optimize performance and governance. Trusted by leading enterprises, Harness accelerates innovation while reducing manual effort and risk. -
20
HashiCorp Waypoint
HashiCorp
Waypoint uses a single configuration file and common workflow to manage and observe deployments across platforms such as Kubernetes, Nomad, EC2, Google Cloud Run, and more. Waypoint builds applications for any language or framework. You can use Buildpacks for automatically building common frameworks or custom Dockerfiles or other build tools for more fine-grained control. The build step is where your application and assets are compiled, validated, and an artifact is created. This artifact can be published to a remote registry or simply passed to the deploy step. Waypoint deploys artifacts created by the build step to a variety of platforms, from Kubernetes to EC2 to static site hosts. It configures your target platform and prepares the new application version to be publicly accessible. Deployments are accessible via a preview URL prior to release. Waypoint releases your staged deployments and makes them accessible to the public. -
21
OneDev
OneDev
OneDev is an open-source, self-hosted DevOps platform that unifies Git repository management, CI/CD pipelines, issue tracking, kanban boards, and package registries into a single application. It offers an intuitive GUI for creating CI/CD jobs with features like typed parameters, matrix jobs, logic reuse, and cache management. OneDev includes built-in registries for Docker, NPM, Maven, NuGet, PyPi, and more, facilitating comprehensive package management. It supports progressive and iterative issue tracking through iterations, enhancing agile workflows. With out-of-the-box code search and navigation, Renovate integration for dependency updates, and a RESTful API, OneDev streamlines development processes. It is designed for easy installation and maintenance, providing high performance and scalability. OneDev is developed and maintained by an inclusive community, ensuring continuous improvements and support.Starting Price: $6 per month -
22
npm
npm
We're npm, Inc., the company behind Node package manager, the npm Registry, and npm CLI. We offer those to the community for free, but our day job is building and selling useful tools for developers like you. Get started today for free, or step up to npm Pro to enjoy a premium JavaScript development experience, with features like private packages. Bring the best of open source to you, your team, and your company. Relied upon by more than 11 million developers worldwide, npm is committed to making JavaScript development elegant, productive, and safe. The free npm Registry has become the center of JavaScript code sharing, and with more than one million packages, the largest software registry in the world. Our other tools and services take the Registry, and the work you do around it, to the next level. At npm, Inc., we're proud to dedicate teams of full-time employees to operating the npm Registry, enhancing the CLI, improving JavaScript security, and other projects.Starting Price: $7 per month -
23
MyGet
MyGet
The Secure Universal Package Manager. Continuously govern and audit all packages in your DevOps lifecycle. Thousands of teams worldwide trust MyGet with their package management and governance. Accelerate your software team with cloud package management, robust security controls and easy continuous integration build services. MyGet is a Universal Package Manager that integrates with your existing source code ecosystem and enables end-to-end package management. Centralized package management delivers consistency and governance to your DevOps workflow. MyGet real-time software license detection tracks your teams’ package usage and detects dependencies across all of your packages. Customized usage policies ensure your teams are only using approved packages while reporting vulnerabilities and outdated packages early in your software build and release cycles.Starting Price: $15 per month -
24
IBM® Rational® Quality Manager is a collaborative, web-based tool that offers comprehensive test planning, test construction, and test artifact management features throughout the development lifecycle. Rational Quality Manager is for test teams of all sizes and supports various user roles, such as test manager, test architect, test lead, tester, and lab manager. The application also supports roles outside the test organization. Comprehensive test planning, test design with test cases, test script construction and reuse. Test execution, test analysis, reporting, and live views. Team collaboration, lab management, web application security, configuration management. and governance. Establish a review and approval process for the test plan and for individual test cases. Manage project requirements and test cases and establish the interdependencies between the two. Define the schedule for each test iteration and track the dates of other important test activities.
-
25
Fern
Fern
Stripe-level SDKs and Docs for your API. Offer type-safe SDKs in the most popular languages. Let Fern do the heavy lifting of generating and publishing client libraries so your team can focus on building the API. Import your API definition, whether it's in OpenAPI or Fern's simpler format. Select which code generators you'd like to use: TypeScript, Python, Java, Go, Ruby, C#, Swift. Fern semantically versions and publishes packages to each registry (e.g. npm, pypi, maven). Beautiful API documentation that reflects your brand.Starting Price: $250 per month -
26
IBM DevOps Build
IBM
DevOps Build is a distributed, multiplatform build-management tool for configuring and running software builds. Facilitate complex project builds based on project relationships. Create a secure environment that conforms to your organization’s structure and needs. Configure and run your builds with a template-driven process that accelerates feedback. See standard build processes, source control rules, and test reports. Identify project variances. Control who can see and run builds. Save time, and effort when configuring security settings. Generate graphs of complex app makeup and high-performance reports to see project trends. Use the Docker plug-in to build Docker images with DevOps build. Automate cloning a Git repository, tag source artifacts, and publish source-artifact changes. Use tested integrations with tools and technologies from IBM, open source and third parties. -
27
Windows Package Manager (winget)
Windows Package Manager
If you are new to the Windows Package Manager, you might want to Explore the Windows Package Manager tool. The packages available to the client are in the Windows Package Manager Community Repository. The client requires Windows 10 1809 (build 17763) or later at this time. Windows Server 2019 is not supported as the Microsoft Store is not available nor are updated dependencies. It may be possible to install on Windows Server 2022, this should be considered experimental (not supported), and requires dependencies to be manually installed as well.Starting Price: Free -
28
RPM Package Manager
RPM Package Manager
The RPM Package Manager (RPM) is a powerful package management system capable of building computer software from the source into easily distributable packages; installing, updating, and uninstalling packaged software; querying detailed information about the packaged software, whether installed or not; and verifying the integrity of packaged software and resulting software installation. The package’s metadata is stored in the RPM header. The header is a binary data structure that stores single pieces of data in tags. Each tag has a pre-defined meaning and data type. These are not stored in the header itself but need to be known by the code reading the header. In the header, the tags are only referred to by their number. Each tag is either of a plain scalar type or is an array of one of these types. While not enforced by the type system the RPM code assumes that tags belonging together have the same number of entries.Starting Price: Free -
29
Fortran Package Manager
Fortran
Package manager and build system for Fortran. There are already many packages available for use with fpm, providing an easily accessible and rich ecosystem of general-purpose and high-performance code. Fortran Package Manager (fpm) is a package manager and build system for Fortran. Its key goal is to improve the user experience of Fortran programmers. It does so by making it easier to build your Fortran program or library, run the executables, tests, and examples, and distribute it as a dependency to other Fortran projects. Fpm’s user interface is modeled after Rust’s Cargo. Its long-term vision is to nurture and grow the ecosystem of modern Fortran applications and libraries. The Fortran package manager has a plugin system that allows it to easily extend its functionality. The fpm-search project is a plugin to query the package registry. Since it is built with fpm we can easily install it on our system.Starting Price: Free -
30
eoPKG
eoPKG
eoPKG is the package manager for the Solus operating system. It is used to manage installed software packages, search for available software, and to apply updates to the system. Change the system root for eoPKG commands. Set username used when connecting to Basic-Auth repositories. Set password used when connecting to Basic-Auth repositories. Enable full debug information and backtraces. Keep bandwidth usage under the specified (numeric) KBs. Disable the use of ANSI escape sequences for colorization by eoPKG. On success, 0 is returned. A non-zero return code signals a failure.Starting Price: Free -
31
JMockit
JMockit
The toolkit is provided as a set of artifacts deployed to the Maven Central repository. It requires Java 7 or newer for test execution; tests must use JUnit or TestNG. For instructions on how to add the library to a Java project, see Running tests with JMockit. In this tutorial we examine the APIs available in the library, with the help of example tests (using Java 8). The central API - a single annotation - provides support for the automatic instantiation and initialization of the objects to be tested. Then we have the mocking API (also known as the "Expectations" API), intended for tests which use mocked dependencies. Finally, there is a small faking API (aka the "Mockups" API), which can be used for the creation and application of fake implementations that avoid the full cost of external components.Starting Price: Free -
32
Azure DevOps Labs
Microsoft
Azure DevOps Labs is a free, community-driven collection of self-paced, hands-on tutorials designed to teach every aspect of the Azure DevOps toolchain and related DevOps practices. From configuring Agile planning with Azure Boards and version control in Azure Repos to defining build and release pipelines as code with YAML, enabling CI/CD in Azure Pipelines, managing packages in Azure Artifacts, and orchestrating tests with Azure Test Plans, each lab provides step-by-step exercises and sample code repositories. You can spin up ready-made projects using the Azure DevOps Demo Generator, explore end-to-end scenarios like deploying Docker-based web applications, integrating Terraform for infrastructure-as-code, scanning for security vulnerabilities, monitoring performance with Application Insights, and automating database changes with Redgate. Prerequisites include an Azure DevOps organization and an Azure subscription, but no prior experience is required. -
33
Credo AI
Credo AI
Standardize your AI governance efforts across diverse stakeholders, ensure regulatory readiness of your governance processes, and measure and manage your AI risks and compliance. Go from fragmented teams and processes to a centralized repository of trusted governance that makes it easy to ensure all of your AI/ML projects are being governed effectively. Stay up-to-date with the latest regulations and standards with AI Policy Packs that meet current and emerging regulations. Credo AI is an intelligence layer that sits on top of your AI infrastructure and translates technical artifacts into actionable risk & compliance insights for product leaders, data scientists, and governance teams. Credo AI is an intelligence layer that sits on top of your technical and business infrastructure and translates technical artifacts into risk and compliance scores. -
34
RuckZuck
RuckZuck
Select a software from the repository and RuckZuck handles the download and installation for you. RuckZuck can detect and update existing software that was not installed with RuckZuck. The RuckZuck repository does not store binaries of the software, just links to where the software is downloaded. Installing software with RuckZuck does not grant you a license for that product. You will be able to provide an E-Mail address if you upload new software, but as soon as the software is approved, the address will be removed from the package. If a product does not provide a URL for automatic download and the license allows redistribution of binaries, RuckZuck will be able to host these files.Starting Price: Free -
35
YUM
Red Hat
Installing, patching, and removing software packages on Linux machines is one of the common tasks every sysadmin has to do. Here is how to get started with Linux package management in Linux Red Hat-based distributions (distros). Package management is a method of installing, updating, removing, and keeping track of software updates from specific repositories (repos) in the Linux system. Linux distros often use different package management tools. Red Hat-based distros use RPM (RPM Package Manager) and YUM/DNF (Yellow Dog Updater, Modified/Dandified YUM). YUM is the primary package management tool for installing, updating, removing and managing software packages in Red Hat Enterprise Linux. YUM performs dependency resolution when installing, updating, and removing software packages. YUM can manage packages from installed repositories in the system or from .rpm packages. There are many options and commands available to use with YUM.Starting Price: Free -
36
Buildstash
Buildstash
Buildstash is a powerful platform designed to organize, store, and distribute software builds and binaries with ease and security. It automates build archival through integrations with local and CI environments, eliminating the chaos of shared folder dumping. The platform supports multiple platforms including mobile, desktop, games, XR, and embedded systems, providing tailored workflows for diverse development teams. Buildstash links builds directly to repositories and issue trackers like Linear or Jira for full visibility and context. Secure sharing options include password-protected links, private portals, and public download pages. By centralizing build management and release workflows, Buildstash helps teams collaborate more effectively and maintain control over their software delivery.Starting Price: $49/workspace/month -
37
Snapcraft
Snapcraft
This is the code repository for snapd, the background service that manages and maintains installed snaps. Snaps are app packages for desktop, cloud, and IoT that update automatically. Easy to install, secure, cross-platform, and dependency-free. They're being used on millions of Linux systems every day. Alongside its various service and management functions, snapd provides the snap command that's used to install and remove snaps and interact with the wider snap ecosystem, implements the confinement policies that isolate snaps from the base system and from each other, governs the interfaces that allow snaps to access specific system resources outside of their confinement. If you're looking for something to install, such as Spotify or Visual Studio Code, take a look at the Snap Store. And if you want to build your own snaps, start with our creating a snap documentation.Starting Price: Free -
38
Artifact
Nokto
Artifact uses AI to learn your interests and keep you up-to-date with the information and inspiration that matters most to you. Start discovering the most interesting articles and content shared from our community. Search and follow anyone with a social profile. Profiles feature recent links posted so it’s easy to see what someone is sharing. Links provide tools to help you quickly edit images and help with caption writing, any story that you find on Artifact can be summarized with AI. Artifact goes beyond traditional news categories, allowing you to share and explore links from across the web, from product pages, app reviews, recipes, architecture galleries, and more. Gain quick insights with a single tap as AI generates concise summaries for any article.Starting Price: Free -
39
AWS CodeBuild
Amazon
AWS CodeBuild is a fully managed continuous integration service that compiles source code, runs tests, and produces software packages that are ready to deploy. With CodeBuild, you don’t need to provision, manage, and scale your own build servers. CodeBuild scales continuously and processes multiple builds concurrently, so your builds are not left waiting in a queue. You can get started quickly by using prepackaged build environments, or you can create custom build environments that use your own build tools. With CodeBuild, you are charged by the minute for the compute resources you use. With AWS CodeBuild, your build artifacts are encrypted with customer-specific keys that are managed by the AWS Key Management Service (KMS). CodeBuild is integrated with AWS Identity and Access Management (IAM), so you can assign user-specific permissions to your build projects. AWS CodeBuild belongs to a family of AWS Code Services. -
40
AWS Artifact
Amazon
AWS Artifact is your go-to, central resource for compliance-related information that matters to you. It provides on-demand access to AWS’ security and compliance reports and select online agreements. Reports available in AWS Artifact include our Service Organization Control (SOC) reports, Payment Card Industry (PCI) reports, and certifications from accreditation bodies across geographies and compliance verticals that validate the implementation and operating effectiveness of AWS security controls. Agreements available in AWS Artifact include the Business Associate Addendum (BAA) and the Nondisclosure Agreement (NDA). Perform due-diligence of AWS with enhanced transparency into our security control environment. Continuously monitor the security and compliance of AWS with immediate access to new reports. Review, accept, and manage your agreements with AWS. Apply your AWS agreements to all current and future accounts within your organization. -
41
fpm
fpm
fpm is a tool that lets you easily create packages for Debian, Ubuntu, Fedora, CentOS, RHEL, Arch Linux, FreeBSD, macOS, and more! fpm isn’t a new packaging system, it’s a tool to help you make packages for existing systems with less effort. It does this by offering a command-line interface to allow you to create packages easily. FPM is written in ruby and can be installed using gem. For some package formats (like rpm and snap), you will need certain packages installed to build them. Some package formats require other tools to be installed on your machine to be built; especially if you are building a package for another operating system/distribution. FPM takes your program and builds packages that can be installed easily on various operating systems. It can take any nodejs package, ruby gem, or even a python package and turn it into a deb, rpm, pacman, etc. package.Starting Price: Free -
42
Synaptic
Synaptic
Synaptic is a graphical package management program for apt. It provides the same features as the apt-get command-line utility with a GUI front-end based on Gtk+. Install, remove, upgrade and downgrade single and multiple packages. Upgrade your whole system. Manage package repositories (sources.list). Find packages by name, description, and several other attributes. Select packages by status, section, name, or a custom filter. Sort packages by name, status, size, or version. Browse all available online documentation related to a package. Download the latest changelog of a package. Lock packages to the current version. Force the installation of a specific package version. Undo/Redo selections. Built-in terminal emulator for the package manager. Debian/Ubuntu only, configure packages through the debconf system. Debian/Ubuntu only, Xapain-based fast search (thanks to Enrico Zini).Starting Price: Free -
43
Reforge
Reforge
Reforge artifacts allow you to access the real work from those who have done it before. Access the insights and story behind the artifact with notes from the creator. Bookmark artifacts for later or as a reminder to spread knowledge with your team. Empower your team with on-demand access to in-depth courses, templates, and case studies crafted by top tech operators. Craft personalized learning paths for your team's goals with Collections; ideal for onboarding plans, new manager training, and beyond. Enhance team collaboration with features like blank templates, highlight and tagging functions, and step-by-step guides tailored to address specific challenges.Starting Price: $1,995 per year -
44
JFrog Xray
JFrog
DevSecOps Next Generation – Securing Your Binaries. Identify security vulnerabilities and license violations early in the development process and block builds with security issues from deployment. Automated and continuous governance and auditing of software artifacts and dependencies throughout the software development lifecycle from code to production. Additional functionalities include: - Deep recursive scanning of components drilling down to analyze all artifacts and dependencies and creating a graph of relationships between software components. - On-Prem, Cloud, Hybrid, or Multi-Cloud Solution - Impact analysis of how an issue in one component affects all dependent components with a display chain of impacts in a component dependency graph. - JFrog’s vulnerabilities database, continuously updated with new component vulnerability data, includes VulnDB, the industry’s most comprehensive security vulnerability database. -
45
Bionic
Bionic
Bionic uses an agentless approach to collect all of your application artifacts and provides a deeper level of application visibility that your CSPM tool cannot. Bionic continuously collects your application artifacts and creates an inventory of all of your applications, services, message brokers, and databases. Bionic integrates as a step in CI/CD pipelines and detects critical risks in the application layer and code, so teams can validate security posture in production. Bionic analyzes your code, performing checks for critical CVEs, and provides deeper insights into the blast radius of potential attacks surfaces. Bionic prioritizes code vulnerabilities based on the context of the overall application architecture. Create customized policies to prioritize architecture risk based on your company's security standards. -
46
PackageManagement (OneGet)
PackageManagement (OneGet)
This module is currently not in development. We are no longer accepting any pull requests to this repository. OneGet is in a stable state and is expected to receive only high-priority bug fixes from Microsoft in the future. If you have a question or are seeing an unexpected behavior from this module please open up an issue in this repository. PackageManagement is supported in Windows, Linux and MacOS now. We periodically make binary drops to PowerShellCore, meaning PackageManagement is a part of PowerShell Core releases.Starting Price: Free -
47
Conda
Conda
Package, dependency, and environment management for any language, Python, R, Ruby, Lua, Scala, Java, JavaScript, C/ C++, Fortran, and more. Conda is an open-source package management system and environment management system that runs on Windows, macOS, Linux, and z/OS. Conda quickly installs, runs, and updates packages and their dependencies. Conda easily creates, saves, loads, and switches between environments on your local computer. It was created for Python programs, but it can package and distribute software for any language. Conda as a package manager helps you find and install packages. If you need a package that requires a different version of Python, you do not need to switch to a different environment manager, because conda is also an environment manager. With just a few commands, you can set up a totally separate environment to run that different version of Python, while continuing to run your usual version of Python in your normal environment.Starting Price: Free -
48
Magnet AXIOM
Magnet Forensics
Recover & analyze your evidence in one case. Examine digital evidence from mobile, cloud, computer, and vehicle sources, alongside third-party extractions all in one case file. Use powerful and intuitive analytical tools to automatically surface case-relevant evidence quickly. Recover, analyze, and report on data from mobile, computer, cloud, and vehicle sources in one case file with Magnet Axiom. Easily recover deleted data and analyze digital evidence from mobile, computer, cloud, and vehicle sources in one case file, with an artifact-first approach. Discover the full history of a file or artifact to build your case and prove intent. Magnet Axiom provides the most up-to-date artifact support for the most recent devices and sources. Acquire and analyze mobile, cloud, and computer evidence together in one case. Process warrant returns from providers such as Google, Facebook, and Instagram. -
49
Lavalite
RENFOS Technologies
Lavalites helps you to quickly set up a content management system or a cloud-based application based on Laravel. Its package builder and marketplace will help you to build or find additional packages required for your application. Built with the most advanced bootstrap framework, to make powerful applications. Lavalite is a free open source CMS tool; so that you don't need to pay a single penny to start over. Simple architecture made much easier to handle aside the power of Laravel. Easiness in customization; marked it as a durable web application development tool. Continual improvisation paved the way towards the innovation of this beautiful artifact. We provide the best support team to assist you always round-the-clock. -
50
Velociraptor
Rapid7
At the press of a (few) buttons, perform targeted collection of digital forensic evidence simultaneously across your endpoints, with speed and precision. Continuously collect endpoint events such as event logs, file modifications and process execution. Centrally store events indefinitely for historical review and analysis. Actively search for suspicious activities using our library of forensic artifacts, then customize to your specific threat-hunting needs. It was developed by Digital Forensic and Incident Response (DFIR) professionals who needed a powerful and efficient way to hunt for specific artifacts and monitor activities across fleets of endpoints. Velociraptor provides you with the ability to more effectively respond to a wide range of digital forensic and cyber incident response investigations and data breaches.
