Endor Labs is now available on  Google Cloud Marketplace, making it easier for customers to deploy, manage, and scale software supply chain security from code through deployment. Whether you’re a Google Cloud-native organization or running hybrid cloud workloads, this makes it simple to procure and iterate Endor Lab’s software supply chain security workflow solutions into your organization.

This launch supports Endor Labs’ broader commitment to supporting flexibility for customers and gives Google Cloud customers easy access to Endor Lab’s solution, which helps secure the growing volume of open source, containerized, and AI-generated code flowing through modern development pipelines.

By purchasing Endor Labs’ platform through  Google Cloud Marketplace, customers can:

• Deliver code-to-cloud security using their existing cloud budget
• Reduce procurement friction with simplified billing and contract terms
• Purchase through their existing partners

“Bringing Endor Labs to Google Cloud Marketplace will help customers quickly deploy and manage the company’s platform on Google Cloud’s trusted, global infrastructure,” said Dai Vu, Managing Director, Marketplace & ISV GTM Programs at Google Cloud. “Endor Labs can now securely scale and support customers seeking to enhance security and reduce risk in their software supply chain and developer workflows.”

Catching cloud security risks earlier

As software development accelerates, so do the risks. Today’s applications are composed of hundreds of open source packages, container images, and increasingly, code generated by AI coding assistants. These components can introduce vulnerabilities, license risks, and unknown behaviors long before the software is deployed in the cloud.

Runtime security controls often catch issues too late—after code has already reached production. Remediation at that point is slower, more expensive, and more likely to disrupt software engineering teams. To stay ahead of risk, organizations need security earlier in the development lifecycle, integrated directly into the tools developers use.

That’s why the availability of Endor Labs’ platform through  Google Cloud Marketplace is so impactful.  Google Cloud customers can now access Endor Labs’ capabilities using Google Cloud Committed Spend Agreements through a simplified procurement and billing workflow. It’s a faster, cleaner path to shift security left and embed  preventive controls earlier in the software supply chain.

This also benefits customers buying through channel partners. With support for multi-party private offers, Endor Labs can participate in joint transactions alongside Google Cloud partners—simplifying procurement and enabling more flexible deals. 

Securing the software supply chain with Endor Labs

With Endor Labs, teams can strengthen software supply chain security by identifying and preventing risks across code and secrets, open source packages, containers, C/CD pipelines, and even AI-generated code and AI models. The platform performs deep program analysis to determine whether vulnerabilities are actually reachable and exploitable—helping eliminate the noise from traditional tools that flag everything as critical.

Once risks are surfaced, Endor Labs helps teams address them faster. Upgrade Impact Analysis identifies whether a library update will break functionality, while Endor Patches offer backported fixes that avoid the need for risky or time-consuming upgrades. This ensures vulnerabilities are resolved quickly, even in legacy or complex environments.

To support growing application security programs, Endor Labs also makes it easy to scale. Unified policy enforcement ensures consistent coverage across scanning types, and a flexible REST API allows teams to automate key workflows and integrate findings into existing systems. 

Get Started

With Endor Labs on Google Cloud, customers can gain a clear path to unified application security—starting from the first line of code all the way to runtime in the cloud. Start your deployment on t Google Cloud Marketplace.