Kusari’s mission to secure the software supply chain is strengthened by $8 million investment

Software supply chain security startup Kusari Ltd. today announced that it has raised $8 million in new funding to accelerate the development of its software supply chain security solutions.

Founded in 2022 by three cybersecurity experts “with a mission to bring transparency and security to the software supply chain,” Kusari helps organizations identify supply chain vulnerabilities while securing development practices. Our goal is to help you get things fixed quickly. The company claims that a lack of transparency in the software supply chain and development lifecycle can lead to costly security vulnerabilities.

Kusari’s platform uses GUAC (Graph for Understandable Artifact Combo), an open source tool designed to address the lack of transparency in software supply chains, to help users understand the composition of software artifacts. Helpful. GUAC organizes information such as software bills of materials into knowledge graphs that help users understand the complex interdependencies within the software supply chain.

The main purpose of GUAC is to clarify how the different components of software are assembled, especially considering the widespread use of open source libraries in modern software development. Open source libraries often depend on other libraries, creating complex dependency trees that can be difficult to navigate and secure.

GUAC was introduced in 2023 and achieved market validation. GUAC has a community of 50 contributors and over 1,100 stars on GitHub. This project is supported by various companies including Yahoo! Inc., Guidewire Software Inc., Google LLC, Microsoft Corp., Red Hat Inc., ClearAlpha Technologies Inc.

Kusari will use the funding to accelerate the development of software supply chain security solutions that help organizations gain actionable insights, reduce incident response costs, and reduce the burden on security and developer teams. We will continue to strengthen our driving force.

The seed round was led by J2 Ventures Management LLC and Glasswing Ventures I LP, with participation from Unusual Ventures Management LLC.

“Code breaches are increasingly becoming a top priority for chief information security officers,” Glasswing Ventures partner Kleida Martiro said ahead of the announcement. “In an era where software supply chain attacks are on the rise, the demand for stringent security measures has never been more important.”

Image: Kusari