Amazon CodeArtifact logo

Amazon CodeArtifact

Amazon CodeArtifact is a fully managed, secure artifact repository service that helps organizations store, publish, and share software packages used in their software development process. CodeArtifact works with popular build tools and package managers including npm, yarn, pip, twine, Maven, Gradle, NuGet, and more. It supports Cargo, generic, Maven, npm, NuGet, PyPI, Ruby, and Swift package formats and integrates natively with AWS IAM, AWS KMS, AWS CloudTrail, and Amazon EventBridge.

1 APIs 1 Capabilities 12 Features
AmazonAWSArtifact RepositoryPackage ManagementDevOpsSoftware Supply ChainnpmMavenPyPINuGet

APIs

Amazon CodeArtifact API

The Amazon CodeArtifact REST API enables programmatic management of artifact repositories, domains, packages, and package versions. Manage domains and repositories, control perm...

Capabilities

Amazon CodeArtifact Package Management

Unified workflow for DevOps teams to manage artifact repositories, publish packages, control access, and govern software supply chains using Amazon CodeArtifact.

Run with Naftiko

Features

Multi-Format Package Support

Supports Cargo, generic, Maven, npm, NuGet, PyPI, Ruby, and Swift package formats in polyglot repositories that can hold any supported package type in a single repository.

Public Repository Integration

Connect repositories to public sources including npmjs, PyPI, Maven Central, NuGet Gallery, and RubyGems.org to proxy and cache open-source dependencies on demand.

Domain-Based Organization

Aggregate multiple repositories into a domain to apply organizational policies, manage encryption, and share packages across development teams.

Upstream Repositories

Create upstream relationships between repositories so downstream repositories can transparently access packages from upstream sources, effectively merging their contents.

Package Groups and Origin Controls

Apply configuration to multiple packages using package groups with pattern matching. Use origin controls to block or allow ingestion or publishing of new package versions against dependency substitution attacks.

Authorization Token Generation

Generate temporary authorization tokens (up to 12 hours) for secure authentication with package managers without long-lived credentials.

AWS IAM Integration

Control access to domains and repositories using AWS Identity and Access Management for fine-grained permissions policies.

AWS KMS Encryption

All assets and metadata in a domain are encrypted with the same AWS KMS key, supporting both AWS managed and customer managed keys.

AWS CloudTrail Integration

Track package usage and access across your organization with full audit logging via AWS CloudTrail.

Amazon EventBridge Integration

Automate package governance workflows and trigger actions on package events using Amazon EventBridge.

AWS PrivateLink Support

Access CodeArtifact repositories from within a VPC without exposing traffic to the public internet using AWS PrivateLink endpoints.

High Availability Storage

Multi-Availability Zone operation with redundant package asset storage across Amazon S3 and DynamoDB, fully managed with automatic scaling.

Use Cases

Internal Package Distribution

Share proprietary software components and internal libraries between multiple applications and development teams within an organization without managing your own artifact storage infrastructure.

Open-Source Dependency Caching

Proxy and cache open-source packages from public registries to ensure build reproducibility and availability even when upstream registries experience downtime.

Software Supply Chain Security

Control which packages developers can use with package origin controls to protect against dependency confusion and substitution attacks.

Multi-Team Package Governance

Apply organizational policies across multiple repositories in a domain and audit package consumption across development teams using CloudTrail and EventBridge.

CI/CD Pipeline Integration

Integrate with CI/CD systems using native package manager support (npm, Maven, pip, NuGet) to fetch and publish packages as part of automated build and release workflows.

Integrations

AWS IAM

Fine-grained access control for domains, repositories, and package operations.

AWS KMS

Encryption key management for all package assets and metadata stored in a domain.

AWS CloudTrail

Audit logging for all CodeArtifact API calls and package access events.

Amazon EventBridge

Event-driven automation for package governance workflows and notifications.

AWS PrivateLink

Private network connectivity to CodeArtifact from within a VPC.

npm Registry (npmjs.com)

Public upstream connection for npm package proxying and caching.

PyPI (pypi.org)

Public upstream connection for Python package proxying and caching.

Maven Central

Public upstream connection for Java/Maven package proxying and caching.

NuGet Gallery (nuget.org)

Public upstream connection for .NET package proxying and caching.

RubyGems.org

Public upstream connection for Ruby gem proxying and caching.

crates.io

Public upstream connection for Rust/Cargo package proxying and caching.

GitHub Actions

Integrate CodeArtifact with GitHub Actions CI/CD workflows for package management.

AWS CodeBuild

Use CodeArtifact as the package source in AWS CodeBuild build projects.

AWS CodePipeline

Incorporate package publishing and consumption into AWS CodePipeline deployment pipelines.

Semantic Vocabularies

Amazon Codeartifact Context

106 classes · 76 properties

JSON-LD

API Governance Rules

Amazon CodeArtifact API Rules

23 rules · 11 errors 10 warnings 2 info

SPECTRAL

Resources

🚀
GettingStarted
GettingStarted
🔑
Authentication
Authentication
💰
Pricing
Pricing
🌐
Console
Console
🌐
Portal
Portal
🔗
Documentation
Documentation
📜
TermsOfService
TermsOfService
📜
PrivacyPolicy
PrivacyPolicy
🟢
StatusPage
StatusPage
📰
Blog
Blog
📝
SignUp
SignUp
👥
GitHubOrganization
GitHubOrganization
🔗
SpectralRules
SpectralRules
🔗
Vocabulary
Vocabulary
🔗
NaftikoCapability
NaftikoCapability
🔗
JSONLD
JSONLD