Kubernetes co-founder Craig McLuckie and Sigstore founder Luke Hinds today announced the launch of a new software supply chain company called Stacklok, after the company raised $17.5 million in venture capital funding ahead of its reveal.
Stacklok is pitched as giving the power of open-source security technologies access to developers so that they can secure software supply chains. The company is building open-source software that caters to an emerging need for developers to understand their open-source dependencies better and take control of their development practices.
In a lengthy blog post, McLuckie (pictured, right) highlights the need collectively to address the threats posed by advanced persistent threats to the software industry and the open-source community by emphasizing the importance of supply chain security. McLuckie suggests that the resolution lies in cryptography that ensures information privacy and integrity, although he does note that determining whether an entity is trustworthy remains challenging.
Stacklok builds on the success of Sigstore, founded by Hinds (left). It’s an open-source project to improve software supply chain security by enabling the easy adoption of cryptographic software signing, backed by transparency log technologies. Supported by organizations that include Google LLC, Red Hat Inc., GitHub Inc., Chainguard Inc. and Sonatype Inc., Sigstore captures crucial provenance during software creation and records it in a tamper-resistant ledger, allowing organizations to display their work transparently and adhere to policies.
“It is my belief that it is truly going to ‘take a village’ to address the deep challenges that are emerging to the open-source technologies that power the world and the proprietary technologies that power our industries,” McLuckie said in the blog post. “It is also my belief that the only way to make substantial, sustained progress against some of the deepest challenges in this space are through open-source collaboration.”
TechCrunch reported that Accel Partners LLC led the Series A round, with Madrona Venture Group LLC also participating. McLuckie was a former entrepreneur in residence at Accel and, in a nontraditional move, Stacklok skipped seed funding and went directly to a Series A round.
Your vote of support is important to us and it helps us keep the content FREE.
One-click below supports our mission to provide free, deep and relevant content.
Join the community that includes more than 15,000 #CubeAlumni experts, including Amazon.com CEO Andy Jassy, Dell Technologies founder and CEO Michael Dell, Intel CEO Pat Gelsinger and many more luminaries and experts.