The Inedo Team on February 19th, 2026.
Last year, we sent out the Inedo Snack Box to our members, and we’ll be doing the same again in 2026! Whether you run ProGet, BuildMaster, or Otter, are exploring our products for the first time, or provided feedback during evaluation, your input has helped shape what we build. At Inedo, we describe ourselves as a user-driven company....
The Inedo Team on February 6th, 2026.
Over the past year or so, the number of malicious packages has grown beyond anyone’s wildest expectations. The rapid, 10,000%+ increase has caused scaling challenges in systems like ProGet, which are designed to detect and block these harmful packages. For ProGet, this translated to timeouts and slowness when processing data...
The Inedo Team on November 20th, 2025.
In ProGet 2025.14, we introduced two additional compliance rules to help you vet and monitor open-source packages in your organization. These are considered ProGet 2026 preview features, and represent our general roadmap focus for next year’s release: Software Composition Analysis (SCA) and security. In this article, we’ll...
The Inedo Team on November 7th, 2025.
Although ProGet 2025.14 is a maintenance release, it has three major changes to Debian feeds. We would normally wait until ProGet 2026 for this kind of update, but we’re racing against the clock. There are some upcoming changes in Debian 13 (Trixie) that will not be compatible with ProGet. This blog post serves as a combination of...
The Inedo Team on June 18th, 2025.
Backlogs were designed to streamline software delivery, but over time, they’ve turned into cluttered lists full of ideas and changes that never get done. Instead of driving action, they turn work into a series of placeholders and “someday” tasks. Important changes get stuck in limbo, and decisions get delayed. There’s a...
Masaharu on June 9th, 2025.
In 2024, we published our first State of Software Supply Chain Security report. The goal was to better understand how teams were managing open-source risks, vulnerabilities, and DevSecOps processes. We expected to find that secure teams relied on strict policies and specialized tools—but that’s not what we saw. Visibility, Not Just...
Alex Papadimoulis on May 6th, 2025.
Moq, FluentAssertions, MassTransit, AutoMapper, MediatR – if those NuGet package names sound familiar, it might be from all the recent controversy. The authors of these free, open-source .NET libraries announced they would be going commercial, and that lead to a predictable backlash from users. So much so, that we had to write an...
Alex Papadimoulis on April 19th, 2025.
For the past several months, we’ve been hard at work integrating a new database backend that will make ProGet even easier to maintain. We’ve finally reached a technical milestone that I’m proud to share. ProGet 2024.33 includes a ProGet 2025 Preview Feature that allows you to try out the new PostgreSQL database backend....
The Inedo Team on March 25th, 2025.
Success in software development isn’t just about writing awesome code. It’s about always getting better, reflecting on what works, and having a culture that really values these things. At Inedo, we embrace the philosophy of Chowa, a Japanese term for balance and harmony. One of the key pillars of this is Kaizen; (Continuous...
The Inedo Team on March 20th, 2025.
In 2024, we conducted a survey on Software Supply Chain Security, receiving responses from over 1,000 professionals. We published the results as the 2024 State of Software Supply Chain Security Report. The report was well received, with overwhelmingly positive feedback. Readers appreciated the benchmark insights, and the findings sparked...