Welcome to the JFrog Blog

FILTER BY

All
Products
Solutions
Other
Migrating to the Cloud at Scale with Fidelity

Migrating to the Cloud at Scale with Fidelity

At swampUP 2023, JFrog’s annual user conference, Gerard McMahon, Head of Application Lifecycle Management (ALM) Tools and Platforms at Fidelity Investments, shared Fidelity’s cloud migration story and how it supports the overall company philosophy. He explored the company's focus on ensuring employee satisfaction while delivering great software and value to customers. He talked about the…
MyJFrog Portal: The Solution for Managing Your JFrog Cloud Subscription

MyJFrog Portal: The Solution for Managing Your JFrog Cloud Subscription

MyJFrog is a central management portal for managing your JFrog cloud subscriptions. It provides a single, centralized view to manage and monitor users, subscriptions, resources, and usage. This gives you the control, visibility, and predictability you need to make informed decisions about your environment. MyJFrog Portal If you have multiple JFrog Cloud subscriptions, MyJFrog lets…
Improve Cloud Visibility with JFrog’s SaaS Log Streamer

Improve Cloud Visibility with JFrog’s SaaS Log Streamer

The beauty of deploying SaaS-based applications is that you don’t have to worry about building the infrastructure, hiring engineers to maintain it, staying on top of upgrades or worry about application security. Indeed, these are some of the main benefits you get by using a SaaS offering. However, the world of software is full of…
Empowering DevSecOps: JFrog’s Enterprise-Ready Platform for Federal NIST SP 800-218 Compliance

Empowering DevSecOps: JFrog’s Enterprise-Ready Platform for Federal NIST SP 800-218 Compliance

As an integrator or government agency providing mission-critical software, the question to ask yourself is “Is my software development environment NIST SP 800-218 compliant?”. Compliance with NIST SP 800-218 and the SSDF (Secure Software Development Framework) is mandatory, and it’s time to ensure your software supply chain is compliant. Learn more about JFrog's DevSecOps solutions…
*nix libX11: Uncovering and exploiting a 35-year-old vulnerability – Part 2 of 2

*nix libX11: Uncovering and exploiting a 35-year-old vulnerability – Part 2 of 2

The JFrog Security research team has recently discovered two security vulnerabilities in X.Org libX11, the widely popular graphics library - CVE-2023-43786 and CVE-2023-43787 (with a high NVD severity CVSS 7.8). These vulnerabilities cause a denial-of-service and remote code execution. X11’s latest versions contain fixes for these vulnerabilities. The team constantly monitors open-source projects to find…
How Capture the Flag Raises Security Awareness and Enhances Enforcement

How Capture the Flag Raises Security Awareness and Enhances Enforcement

While many are familiar with championship sports teams like Manchester United, the New York Yankees and Montreal Canadiens, the real question is whether you have ever heard of perennial champions such as "Plaid Parliament of Pwning", "More Smoked Leet Chicken" and "Dragon Sector". If not, then get ready to meet the leading teams in the…
Integrating JFrog Artifactory with Amazon SageMaker

Integrating JFrog Artifactory with Amazon SageMaker

Today,  we’re excited to announce a new integration with Amazon SageMaker! SageMaker helps companies build, train, and deploy machine learning (ML) models for any use case with fully managed infrastructure, tools, and workflows. By leveraging JFrog Artifactory and Amazon SageMaker together, ML models can be delivered alongside all other software development components in a modern…
*nix libX11: Uncovering and exploiting a 35-year-old vulnerability – Part 1 of 2

*nix libX11: Uncovering and exploiting a 35-year-old vulnerability – Part 1 of 2

The JFrog Security research team has recently discovered two security vulnerabilities in X.Org libX11, the widely popular graphics library - CVE-2023-43786 and CVE-2023-43787 (with a high NVD severity CVSS 7.8). These vulnerabilities cause a denial-of-service and remote code execution. X11’s latest versions contain fixes for these vulnerabilities. The team constantly monitors open-source projects to find…
Top JFrog Security Research Blogs of the Year

Top JFrog Security Research Blogs of the Year

With over 29,000 CVEs and 5.5 billion malware attacks recorded in the past year, it's no wonder that software supply chain security is a top priority for enterprise developers on a global scale. That is also why JFrog Security Research has been instrumental in identifying and analyzing the biggest threats and devising methods to protect…