Codenotary, a contributor to software supply chain protection, has released immudb 1.11, a significant update to its open-source database. This version introduces immutable audit logging and expands compatibility with PostgreSQL, a widely used database system.

Immudb is designed as an enterprise-scale database featuring cryptographic verification to ensure that data remains unaltered and cannot be secretly modified or deleted. Version 1.11 extends this protection to include database activity, meaning actions performed on the data, such as who accessed or changed it and when, are also recorded in a tamper-proof manner.

Dennis Zimmer, co-founder and chief technology officer at Codenotary, stated, “The new immudb focuses on a problem many organizations struggle with: proving that their data – and the actions taken on it – can be trusted. While most systems rely on separate logging tools to track changes, those logs can be incomplete, disconnected, or even altered.” Immudb addresses this by storing data and activity in a way that prevents undetected alteration.

With the built-in audit logging in immudb 1.11, every database action is integrated into a permanent, tamper-proof record within the database itself, rather than being sent to external systems. This functionality aims to simplify the process of verifying data access and modification histories, enabling unalterable audit trails, streamlined compliance and reporting, and consolidated logging.

Furthermore, immudb 1.11’s compatibility with PostgreSQL allows users to integrate immudb’s tamper-proof record capabilities while continuing to use existing PostgreSQL code, applications, tools, and frameworks without substantial modifications.

These features are particularly relevant for industries and applications requiring high levels of trust, accountability, and traceability. Key areas include financial systems, where transaction records must be unalterable for audits, fraud investigations, and regulatory reporting; software development and deployments, for tracking code changes and deployments with immutable records; and cybersecurity and incident response, for reconstructing event timelines during breaches without manipulation.

Regulated industries such as finance, healthcare, and government can benefit from simplified compliance through built-in, trustworthy audit trails. Additionally, AI and automation systems can record decisions and actions by automated agents, providing accountability, while supply chain and data tracking can verify product and transaction histories across multiple steps.

Immudb is currently utilized by thousands of organizations globally for solutions requiring a zero-trust approach to sensitive data, with over 50 million downloads recorded. Immudb 1.11 is open source and accessible on GitHub.

Codenotary initiated the immudb project in 2020 and serves as its primary contributor. The company focuses on trust and integrity solutions, offering end-to-end cryptographically verifiable tracking and provenance for data, artifacts, actions, and dependencies. Codenotary leverages immudb to underpin its notarization and verification product, which supports the creation of Software Bill of Materials (SBOM).