Introducing SecureBuild

Replicated has launched SecureBuild, a new initiative aimed at providing zero-CVE container images for open source software, catering to the increasing demand from enterprises for secure software supply chains. SecureBuild partners with open source projects to become the official provider of secure images by rebuilding software from source using a trusted ephemeral build system and delivering it through a hardened registry. The business model emphasizes a creator-first approach, offering 70% of direct image subscription revenue to maintainers, thus supporting sustainable project development. SecureBuild also facilitates enterprise adoption through tools like the Enterprise Portal and robust APIs, promoting a future where open source maintainers thrive by having their software deployed in security-conscious enterprise environments. This initiative represents a significant investment for Replicated, integrating their core technologies and marking a commitment to enhancing the security of the software supply chain while enabling enterprise distribution.