Home > News > Top Stories > ActiveState Delivers Trust For The Open Source Supply Chain

Supply Chain

ActiveState Delivers Trust For The Open Source Supply Chain

ActiveState Delivers Trust For
ActiveState announced the availability of their secure build service, a major component of the ActiveState Platform, which implements the greatest number of Supply Chain Levels for Software Artifacts (SLSA) Level 4 controls of any publicly available build platform. As defined by slsa.dev, SLSA is a security framework, a check-list of standards and controls to prevent tampering, improve integrity, and secure packages and infrastructure in your projects, businesses or enterprises. It's how you get from safe enough to being as resilient as possible, at any link in the chain.

ActiveState's Supply Chain Security survey showed that too many organizations (regardless of size) continue to implicitly trust open source language repositories, despite the fact that they provide no guarantee of security or integrity for the millions of third-party software assets they provide to software developers.

The ActiveState Platform secure build service implements the controls to generate SLSA level 4 artifacts for open source components that:
  • Are fully scripted and automated
  • Generate authenticated provenance
  • Provide auditability of the source and the integrity of the provenance, respectively
  • Deliver isolated, ephemeral, hermetic and reproducible builds

ActiveState pairs these controls with its unique open source management capabilities to deliver comprehensive software supply chain security that includes:
  • Automated, tamper-proof builds of open source language dependencies from source code, including native libraries
  • A catalog of source code that is maintained in perpetuity, ensuring build reproducibility even if dependencies are deleted or corrupted in public repositories
  • Enriched dependency metadata, including vulnerability and licensing information
  • Signed artifacts, ensuring that they haven't been tampered with
  • Optional distribution from an Artifact Repository hosted by ActiveState

This means that DevOps now has a trusted vendor for open source supply chain management as an alternative to setting up their own supply chains, which are time-consuming and inherently insecure.

The ActiveState Platform secure build service supports SLSA Level 4 standards to enable DevOps to dramatically reduce the risk and cost of securing their software supply chain while ensuring the security and integrity of the products and services they create.

  "The effort of building and verifying the security and integrity of every open source dependency used by DevOps teams worldwide can be expensive, requiring significant engineering time and resources. The ActiveState Platform secure build service enables DevOps to consume trusted artifacts at a fraction of the cost by implementing controls to meet SLSA Level 4 standards."

-Loreli Cadapan, Vice President, Product Management, ActiveState,

About ActiveState
ActiveState has a 20+ year history of providing secure, scalable open source language solutions to more than 2 million developers and 97% of Fortune 1,000 enterprises. Enterprises choose ActiveState to support mission-critical systems and speed up software development while enhancing the security and integrity of their open source supply chain. Visit www.activestate.com for more information.

Spotlight

More featured news

Spotlight

Related News

Operations, Sustainability, Transportation

Revoy Launches the Ultimate Scalable Sustainability Solution for Trucking

PR Newswire | February 01, 2024

<p>Revoy, a simple and truly viable solution to decarbonize the trucking industry, today announces the launch of the Revoy EV, a simple add-on for fleets that enables an easy transition to full EV without alterations to trucks or trailers. Pioneering a new sector of commercial trucking EV solutions, Revoy's technology improves fuel efficiency from 6 - 8 mpg to 20 - 35+ mpg, representing a 70 - 90%+ reduction in emissions. Economically, adding a Revoy EV to a tractor enables companies to save thousands of dollars in fuel per truck annually, inclusive of Revoy fees.</p><p>Currently, commercial trucks and fleets account for 6.7%¹ of all of the United States' GHG emissions. Revoy is helping reduce this and propel businesses towards net zero goals. Revoy EVs are on the road today actively decarbonizing trucks, and are expanding to more areas this year.</p<p>"Trucking contributes 6.7% of all greenhouse gas emissions in the US. The current approach of wholly replacing diesel engines with batteries and electric motors is too abrupt of a transition for such a critical and underappreciated part of our economy," said Ian Rust, CEO and founder of Revoy. "EV tractors are more expensive to purchase and recharge compared to diesel, and no driver can spare the time to stop and charge for hours. Luxury passenger vehicles are not engineered to generate ROI and depreciate quickly. Making commercial vehicles the same way poses a risk to any fleet that adopts them. Revoy has engineered an electric commercial vehicle that is built as an asset first. The entire vehicle is swappable in under five minutes, so no waiting on a charge, and can operate on any trucker's existing vehicle with no modifications."</p><p>Revoy handles all infrastructure and charging, and its adaptable technology offers ease of use, saved time, low upfront costs, and ongoing fuel benefits. Revoy allows truckers to drive up to 235 miles on electric power using a 525kWh LFP battery pack.</p<p>Solving for sustainability in the trucking industry is complex, but simplicity is at the core of Revoy's innovation. Revoy's EV technology is adaptable and easy to apply to existing fleets, with the option to use as needed. The process is simple: trucks visit a Revoy swap station, where an attendant swaps the Revoy EV while the driver relaxes in the truck or shops inside.</p><p>Revoy's EV technology addresses the sustainability and competitive business needs of trucking fleets and companies committed to net zero goals through the following</p> Dramatic MPG Improvement: At 235 miles of range, Revoy can take a 6 - 8 mpg truck to 20 - 35+ mpg. At a shorter range, for example 150 miles, mpg can exceed 30 - 40 mpg. This is a transformational step change in fuel efficiency. Electric Range Extension on Electric Trucks: Revoy allows truckers to drive up to 235 miles on electric power using a 525kWh LFP battery pack, and can be "recharged" nearly instantly with a Revoy swap. Long charges or battery-destroying fast charges are no longer necessary. An 800kWh long-range version will be coming out in May 2024. No Time Wasted On The Road: Revoy electric vehicles instantly convert any diesel truck into a hybrid, easily attaching to the fifth wheel automatically. Truckers can swap at an available station for a fresh battery in less than five minutes, which is 90% faster than traditional EV charging. Fleets can share Revoy EVs based on subscription tier for immediate savings, without the risk. Zero Payload Impact: The Revoy EV has no impact on payload. Trucks encountering loads that are too heavy to accept the extra battery weight can revert to diesel in minutes by dropping the Revoy EV. Compliant with Length Laws: The Revoy EV requires no additional CDL endorsements and is compliant with all length restrictions on the national highway network. Safety Features Built Into Every Vehicle: Revoy offers intelligent auto-correction to prevent rollovers, flipping and jackknifing. The Revoy EV has an extra set of brakes to automatically engage more stopping power when driving down mountains, blind spot detection and automatic reversing with intelligent computing from a series of sensors with notifications through Revoy's mobile app. <p>Revoy was founded by Ian Rust, an innovator, founder and mechanical engineer with over 12 years of experience in clean transportation and sustainability, and is backed by YCombinator, Transition Global, and Liquid2 Ventures. The team includes over 100 years of experience from GM, Tesla, Embark Trucks, Waymo, and the European Space Agency, among others. Revoy's technology is made in the USA, FMVSS compliant, and compliant with all length and weight (bridge and GVW) regulations.</p>

Read More

Operations, Warehousing and Distribution

LA Kings Partner with Lexani Performance Tires

PR Newswire | January 26, 2024

Turbo Wholesale Tires, and two-time Stanley Cup Champions, the LA Kings have announced a powerful brand partnership. As part of the multi-year agreement, brokered by AEG Global Partnerships, Lexani Performance Tires will become an official partner of the LA Kings, reaching millions of passionate sports fans. As an official partner of the LA Kings, Lexani Performance Tires will have the unique opportunity to engage fans each week during the season as a presenting sponsor of the LA Kings "Game Preview," which will appear on the team's official social channels. Lexani Performance Tire will also benefit from in-arena signage via dasher boards and scoreboard branding during all LA Kings home games at Crypto.com Arena. "We are proud to partner with the LA Kings and their global fanbase," said Phillip Kane, CEO of Turbo Wholesale Tires. "The Kings have a strong international brand and passionate following, we look forward to introducing their supporters to Lexani Performance Tire products." Turbo Wholesale Tires has been a trusted tire supplier, leading the industry with a strong emphasis and understanding of the independent tire dealer. Turbo Wholesale Tires has evolved into a national and international supplier of its proprietary brands, Lexani Performance Tire, RBP Tires and Lionhart Tires. With nearly a million square feet of warehouse space nationwide, Turbo Wholesale Tires continues to exceed the needs of its tire customers. "We are honored to be teaming up with Lexani Performance Tires," said Josh Veilleux, senior vice president, AEG Global Partnerships. "This collaboration not only brings a renowned tire supplier into our Kings family, but also introduces new ways for our fans to interact with its brand. We look forward to the positive impact this new partnership will bring to the team, Lexani Performance Tires and our incredible community of fans."

Read More

Logistics, Supply Chain

Delta Cargo launches e-commerce solution DeliverDirect in collaboration with SmartKargo

PR Newswire | January 31, 2024

Delta Cargo is excited to announce the launch of its newest product, DeliverDirect, developed in collaboration with SmartKargo. DeliverDirect is a door-to-door delivery service for the U.S. market, offering a competitive and customizable solution for e-commerce retailers seeking to optimize their direct-to-consumer shipping solutions. With DeliverDirect, Delta Cargo pioneers an innovative domestic carrier approach, providing swift service with transparent pricing for e-commerce and small parcel delivery. From initial warehouse pickup to delivery at the end consumer's doorstep, DeliverDirect is a fast, seamless, end-to-end service that upgrades traditional ground or air shipping services utilized by most current e-tailers. Small package shippers will benefit from increased shipping speeds, an uncomplicated pricing structure, proactive alert management, transparent tracking and reporting, and access to Delta's vast domestic network. "We are thrilled to introduce DeliverDirect, our new offer for the small parcel delivery market," shared Alison Ricker, Managing Director, Delta Cargo Global Sales. "Through our strategic collaboration with SmartKargo, DeliverDirect gives e-tailers an alternative transportation solution that fits their customers' requirements, and we envision that this service will prove to be a fast, reliable and cost-effective solution." The DeliverDirect offering can be tailored to shippers' needs with a variety of service innovations that empower customers to customize according to their unique preferences. These service innovations include: personalized pick-up times, geo-fenced notifications for consumers, multiple delivery attempts, signature-required deliveries, proof of delivery with photos, and access to advanced reporting features for a complete comprehensive service that aligns seamlessly with a variety of needs. "E-commerce shippers are looking for simple, faster and more reliable alternatives to deliver their products to consumers. Delta Cargo has a vision for small package delivery that will transform the U.S. market and continue to diversify their already robust offering in the air cargo market. Their innovative approach makes them a fantastic partner for SmartKargo, and we look forward to growing this service together," stated Milind Tavshikar, CEO and Founder of SmartKargo.

Read More

Operations, Sustainability, Transportation

Revoy Launches the Ultimate Scalable Sustainability Solution for Trucking

PR Newswire | February 01, 2024

<p>Revoy, a simple and truly viable solution to decarbonize the trucking industry, today announces the launch of the Revoy EV, a simple add-on for fleets that enables an easy transition to full EV without alterations to trucks or trailers. Pioneering a new sector of commercial trucking EV solutions, Revoy's technology improves fuel efficiency from 6 - 8 mpg to 20 - 35+ mpg, representing a 70 - 90%+ reduction in emissions. Economically, adding a Revoy EV to a tractor enables companies to save thousands of dollars in fuel per truck annually, inclusive of Revoy fees.</p><p>Currently, commercial trucks and fleets account for 6.7%¹ of all of the United States' GHG emissions. Revoy is helping reduce this and propel businesses towards net zero goals. Revoy EVs are on the road today actively decarbonizing trucks, and are expanding to more areas this year.</p<p>"Trucking contributes 6.7% of all greenhouse gas emissions in the US. The current approach of wholly replacing diesel engines with batteries and electric motors is too abrupt of a transition for such a critical and underappreciated part of our economy," said Ian Rust, CEO and founder of Revoy. "EV tractors are more expensive to purchase and recharge compared to diesel, and no driver can spare the time to stop and charge for hours. Luxury passenger vehicles are not engineered to generate ROI and depreciate quickly. Making commercial vehicles the same way poses a risk to any fleet that adopts them. Revoy has engineered an electric commercial vehicle that is built as an asset first. The entire vehicle is swappable in under five minutes, so no waiting on a charge, and can operate on any trucker's existing vehicle with no modifications."</p><p>Revoy handles all infrastructure and charging, and its adaptable technology offers ease of use, saved time, low upfront costs, and ongoing fuel benefits. Revoy allows truckers to drive up to 235 miles on electric power using a 525kWh LFP battery pack.</p<p>Solving for sustainability in the trucking industry is complex, but simplicity is at the core of Revoy's innovation. Revoy's EV technology is adaptable and easy to apply to existing fleets, with the option to use as needed. The process is simple: trucks visit a Revoy swap station, where an attendant swaps the Revoy EV while the driver relaxes in the truck or shops inside.</p><p>Revoy's EV technology addresses the sustainability and competitive business needs of trucking fleets and companies committed to net zero goals through the following</p> Dramatic MPG Improvement: At 235 miles of range, Revoy can take a 6 - 8 mpg truck to 20 - 35+ mpg. At a shorter range, for example 150 miles, mpg can exceed 30 - 40 mpg. This is a transformational step change in fuel efficiency. Electric Range Extension on Electric Trucks: Revoy allows truckers to drive up to 235 miles on electric power using a 525kWh LFP battery pack, and can be "recharged" nearly instantly with a Revoy swap. Long charges or battery-destroying fast charges are no longer necessary. An 800kWh long-range version will be coming out in May 2024. No Time Wasted On The Road: Revoy electric vehicles instantly convert any diesel truck into a hybrid, easily attaching to the fifth wheel automatically. Truckers can swap at an available station for a fresh battery in less than five minutes, which is 90% faster than traditional EV charging. Fleets can share Revoy EVs based on subscription tier for immediate savings, without the risk. Zero Payload Impact: The Revoy EV has no impact on payload. Trucks encountering loads that are too heavy to accept the extra battery weight can revert to diesel in minutes by dropping the Revoy EV. Compliant with Length Laws: The Revoy EV requires no additional CDL endorsements and is compliant with all length restrictions on the national highway network. Safety Features Built Into Every Vehicle: Revoy offers intelligent auto-correction to prevent rollovers, flipping and jackknifing. The Revoy EV has an extra set of brakes to automatically engage more stopping power when driving down mountains, blind spot detection and automatic reversing with intelligent computing from a series of sensors with notifications through Revoy's mobile app. <p>Revoy was founded by Ian Rust, an innovator, founder and mechanical engineer with over 12 years of experience in clean transportation and sustainability, and is backed by YCombinator, Transition Global, and Liquid2 Ventures. The team includes over 100 years of experience from GM, Tesla, Embark Trucks, Waymo, and the European Space Agency, among others. Revoy's technology is made in the USA, FMVSS compliant, and compliant with all length and weight (bridge and GVW) regulations.</p>

Read More

Operations, Warehousing and Distribution

LA Kings Partner with Lexani Performance Tires

PR Newswire | January 26, 2024

Turbo Wholesale Tires, and two-time Stanley Cup Champions, the LA Kings have announced a powerful brand partnership. As part of the multi-year agreement, brokered by AEG Global Partnerships, Lexani Performance Tires will become an official partner of the LA Kings, reaching millions of passionate sports fans. As an official partner of the LA Kings, Lexani Performance Tires will have the unique opportunity to engage fans each week during the season as a presenting sponsor of the LA Kings "Game Preview," which will appear on the team's official social channels. Lexani Performance Tire will also benefit from in-arena signage via dasher boards and scoreboard branding during all LA Kings home games at Crypto.com Arena. "We are proud to partner with the LA Kings and their global fanbase," said Phillip Kane, CEO of Turbo Wholesale Tires. "The Kings have a strong international brand and passionate following, we look forward to introducing their supporters to Lexani Performance Tire products." Turbo Wholesale Tires has been a trusted tire supplier, leading the industry with a strong emphasis and understanding of the independent tire dealer. Turbo Wholesale Tires has evolved into a national and international supplier of its proprietary brands, Lexani Performance Tire, RBP Tires and Lionhart Tires. With nearly a million square feet of warehouse space nationwide, Turbo Wholesale Tires continues to exceed the needs of its tire customers. "We are honored to be teaming up with Lexani Performance Tires," said Josh Veilleux, senior vice president, AEG Global Partnerships. "This collaboration not only brings a renowned tire supplier into our Kings family, but also introduces new ways for our fans to interact with its brand. We look forward to the positive impact this new partnership will bring to the team, Lexani Performance Tires and our incredible community of fans."

Read More

Logistics, Supply Chain

Delta Cargo launches e-commerce solution DeliverDirect in collaboration with SmartKargo

PR Newswire | January 31, 2024

Delta Cargo is excited to announce the launch of its newest product, DeliverDirect, developed in collaboration with SmartKargo. DeliverDirect is a door-to-door delivery service for the U.S. market, offering a competitive and customizable solution for e-commerce retailers seeking to optimize their direct-to-consumer shipping solutions. With DeliverDirect, Delta Cargo pioneers an innovative domestic carrier approach, providing swift service with transparent pricing for e-commerce and small parcel delivery. From initial warehouse pickup to delivery at the end consumer's doorstep, DeliverDirect is a fast, seamless, end-to-end service that upgrades traditional ground or air shipping services utilized by most current e-tailers. Small package shippers will benefit from increased shipping speeds, an uncomplicated pricing structure, proactive alert management, transparent tracking and reporting, and access to Delta's vast domestic network. "We are thrilled to introduce DeliverDirect, our new offer for the small parcel delivery market," shared Alison Ricker, Managing Director, Delta Cargo Global Sales. "Through our strategic collaboration with SmartKargo, DeliverDirect gives e-tailers an alternative transportation solution that fits their customers' requirements, and we envision that this service will prove to be a fast, reliable and cost-effective solution." The DeliverDirect offering can be tailored to shippers' needs with a variety of service innovations that empower customers to customize according to their unique preferences. These service innovations include: personalized pick-up times, geo-fenced notifications for consumers, multiple delivery attempts, signature-required deliveries, proof of delivery with photos, and access to advanced reporting features for a complete comprehensive service that aligns seamlessly with a variety of needs. "E-commerce shippers are looking for simple, faster and more reliable alternatives to deliver their products to consumers. Delta Cargo has a vision for small package delivery that will transform the U.S. market and continue to diversify their already robust offering in the air cargo market. Their innovative approach makes them a fantastic partner for SmartKargo, and we look forward to growing this service together," stated Milind Tavshikar, CEO and Founder of SmartKargo.

Read More

More featured news