-
Type:
Suggestion
-
Resolution: Unresolved
-
None
-
Component/s: Bamboo Release, Bitbucket integration, Repository (Bitbucket)
-
None
The Issue:
We have a large development team with many internal packages (artifacts) We have many tools to pull in a mirror external dependancies as well as internal packages/artifacts, we currently use a few open source and free solutions, such as
- https://github.com/verdaccio/verdaccio
- https://www.sonatype.com/products/repository-oss
- https://github.com/composer/satis
But they are a pain to manage and some of the language package managers are not well supported, such as PHP and Composer.
We have explored a few paid options, such as
- https://www.sonatype.com/products/repository-pro?topnav=true
- https://jfrog.com/artifactory/
- https://aws.amazon.com/codeartifact/
Here are a few other offerings
I would encourage Atlassian to enter this space as there is a need for mature tooling that integrates with the existing internal and external dependancies. Possibly could also explore
- vulnerability scanning
- license scanning
- metrics on usage
I'm thinking this might be a good fit for the Datacenter option