Kosli Changelog March 2025
It is now possible to authenticate to Bitbucket using access tokens. As of CLI v2.11.10, CLI commands that communicate with Bitbucket can use the `- -bitbucket-access-token` flag to authenticate with Bitbucket instead of the user-tied app passwords. This ensures that your CI pipelines don’t break if users leave. App rebrand Kosli has introduced a new brand alongside an updated version of www.kosli.com. As part of this evolution, our app has been refreshed with a polished new look, featuring updated colors and a brand-new logo.
LATEST ARTICLES
Migrating from Generic to Custom Attestations: A zero-trust approach to compliance
The kosli attest generic CLI command can attest anything, but unlike a “typed” attestation (such as kosli attest snyk), it does not calculate a true/false compliance value for you. …
Moving to a zero-trust model with Kosli's custom attestations
The Kosli CLI provides several attest commands, such as kosli attest snyk, kosli attest jira, etc. These attestations are “typed” - each one knows how to interpret its own particular kind …
How to make Kosli generic attestations using the kosli-attest-generic command
Update! We recommend using the new custom attestations instead of generic attestations. Please see these two new blog posts: Migrating from Generic to Custom Attestations: A zero-trust approach to …
Kosli Changelog December 2024
A short month for the Product team is no excuse for shipping less changes on the application, improving its functionality one update at a time! Having our users’ experience as our focus, and …
Kosli Changelog November 2024
Another month another changelog packed with updates that improve the functionality of the platform and enhance user experience. As always, we’d love to hear your comments and feedback on the updates …
Binary Provenance, SBOMs and the Software Supply Chain for Humans
“What’s really running in prod?” Every engineer will hear these immortal words on a long enough timeline (or career). It might be because a new security zero day was dropped, alerts fired from the …
FEATURES
Migrating from Generic to Custom Attestations: A zero-trust approach to compliance
The kosli attest generic CLI command can attest anything, but unlike a “typed” attestation (such as kosli attest snyk), it does not calculate a true/false compliance value for you. …
Moving to a zero-trust model with Kosli's custom attestations
The Kosli CLI provides several attest commands, such as kosli attest snyk, kosli attest jira, etc. These attestations are “typed” - each one knows how to interpret its own particular kind …
How to make Kosli generic attestations using the kosli-attest-generic command
Update! We recommend using the new custom attestations instead of generic attestations. Please see these two new blog posts: Migrating from Generic to Custom Attestations: A zero-trust approach to …
NEWS
Kosli Raises $10 Million Series A led by Deutsche Bank and Heavybit to Transform Software Delivery Governance.
We are delighted to announce that Kosli has raised $10 million in Series A funding. The round was led by Deutsche Bank’s Corporate Venture Capital (CVC) group, with participation from Heavybit, …
Kosli Joins FINOS to Collaborate on DevOps Controls and Change Compliance in Financial Services
We are thrilled to announce that Kosli has joined the Fintech Open Source Foundation (FINOS), a Linux Foundation organization dedicated to fostering collaboration and innovation in financial services …
Introducing Kosli's Logical Environments: Gain total visibility and control over complex systems
In today’s fast-paced development landscape, environments are no longer simple or isolated. You’re managing resources that span across development stages, geographies, and technologies. And as those …
TECHNOLOGY
Kosli Changelog March 2025
It is now possible to authenticate to Bitbucket using access tokens. As of CLI v2.11.10, CLI commands that communicate with Bitbucket can use the `- -bitbucket-access-token` flag to authenticate with …
How we implemented a release/promotion workflow with a single approval, using Kosli
Overview A feature we often get asked about at Kosli is whether we can help support a release/promotion workflow: a workflow that deploys a known set of Artifacts from one runtime environment (eg …
Kosli Changelog February 2025
Introduce Custom attestation types We’ve recently introduced Custom Attestation Types, a powerful new feature that gives you greater flexibility and control over your attestations in Kosli. Why we …
