We wrapped up Q2 with a strong set of product launches, customer-focused enhancements, and forward-looking capabilities across Replicated. This quarter’s momentum was all about empowering secure delivery, simplifying customer onboarding, and accelerating deployment confidence for commercial software teams. Here are the highlights from our internal sessions and product rollouts—organized for easy browsing and exploration.
Meeting Enterprise Security Requirements (SecureBuild Launch)
Speakers: Marc Campbell & Grant Miller
Session: Meeting Enterprise Security Requirements
The launch of SecureBuild marks a major step forward in how we help software vendors meet enterprise-grade security expectations. Marc outlined how SecureBuild creates zero-CVE images, maintaining transparency through full software bill of materials (SBOMs) and proactive scanning. What sets this apart is:
- Rebuilding from source for every component in the image, tracking dependency graphs in depth.
- Partnerships with open source projects, ensuring the rebuilt images are valid, trusted, and sustainable.
- Six-day SLA for resolving critical vulnerabilities—currently being exceeded with faster patching.
- Free base image subscription for all Replicated customers to get started with Node, Python, or Java.
This solution helps address the ever-growing CVE sprawl that modern software vendors face—easing the burden of constant remediation, and giving teams drop-in compatible, production-grade images they can ship with confidence.
Replicated customers now get one SecureBuild base image free (worth $6K–$12K/year) to help jumpstart adoption.
Enterprise Portal – Now in Beta!
Speaker: Grant Miller
Session: Enterprise Portal – Now in Beta!
Our new Enterprise Portal—now in public beta—is built to create the best install, update, and support experience for self-hosted software. This session walked through:
- How to set up branded install flows for Embedded Cluster and Helm-based deployments.
- The ability to define pre/post install instructions, manage email templates, and invite users securely.
- Rich install attempt visibility, even in air gap environments—supporting better success rate tracking.
- Support for self-service trial signups, domain restrictions, and headless API access.
Grant shared a detailed setup guide to help teams start testing it with internal developer licenses and eventually migrate all customers from the download portal.
Try it out now - feedback from both vendors and customers so far has been overwhelmingly positive.
Compatibility Matrix – Run the Gauntlet with Confidence
Speaker: Han Yu
Session: Compatibility Matrix – Ace the Customer Deploy Obstacle Course
As enterprise environments become more restrictive and diverse, successfully deploying into them is increasingly like running a gauntlet. Han introduced the next evolution of CMX (Compatibility Matrix)—a Replicated-native staging environment platform for testing in representative enterprise configurations.
What’s new and exciting:
- Ephemeral VM support is entering beta, enabling deeper control and fidelity for simulated environments.
- Network Policy Violation Reporting (in Alpha) helps teams identify outbound network calls—crucial for air gap readiness and security reviews.
- Support for OpenShift, air gap, proxies, and hardened OS baselines—with more permutations coming soon.
- CLI and GitHub Actions integration to make testing easier and faster for developers.
Han emphasized that the goal isn’t perfect replication of customer environments, but high-confidence staging coverage. CMX helps you test earlier, faster, and with real-world conditions that could otherwise block installs at the worst possible moment.
This is how we help you shift “failures in production” into “insights in staging.”
Self-Contained On-Prem and Private Cloud Installs with Crossplane
Speaker: Martez Killins
Session: Self-Contained On-Prem and Private Cloud Installs with Replicated and Crossplane
Martez demoed a powerful new deployment model combining Replicated Embedded Cluster with Crossplane, enabling fully self-contained installs that can orchestrate both application workloads and cloud infrastructure from one control plane—even in air-gapped or hybrid environments.
Key points from the session:
- Crossplane enables declarative provisioning of cloud resources (e.g., S3, Lambda, DynamoDB) via Kubernetes CRDs.
- Replicated’s Embedded Cluster makes bootstrapping the Crossplane control plane easy and repeatable—even on bare metal.
- Developers can deploy complex infrastructure and app logic using compositions and provider configs—with no direct manual cloud provisioning.
- Demo featured a serverless PDF chatbot deployed on AWS using Replicated to manage the cluster and Crossplane to manage the infra.
This pairing is ideal for vendors targeting enterprise private cloud, hybrid, or disconnected environments—reducing manual setup, drift, and complexity.
Want to learn more about replicating this architecture? Reach out to our solutions team.
What’s Next?
Looking ahead, expect deeper integration between SecureBuild, Enterprise Portal, and Compatibility Matrix. We’re focused on:
- Attaching SBOMs, scan results, and signatures to Portal updates.
- Delivering fully customizable install instructions.
- Expanding SecureBuild language images and CVE resolution timelines.
Replicated continues to evolve into a comprehensive platform for secure, repeatable, and enterprise-friendly commercial software delivery. If any of these features sparked your interest, reach out to your account team—or come chat with us in Slack.