From the Frog's mouth

GoCenter’s Back to the Future Journey

April 22, 2019

Every science fiction fan knows that you can't fix the past. Try to, and it wrecks the balance of events that led to the present. That's also what we learned while making GoCenter. While trying to correct an early Go modules design choice and improve certainty, we accidentally made things harder for the Go community.…

How JFrog Makes Anthos DevOps Bloom

April 15, 2019

It must be spring, because Google has sprouted flowers, and JFrog is helping with the bouquet. At this year’s GCP Next, Google announced the rollout of Anthos (the Greek word for “flowers”), a powerful service to build and manage a modern hybrid cloud. With Anthos (formerly Cloud Services Platform), your choices in a computing platform…

Sail Athens Swiftly Upstream with GoCenter

April 12, 2019

It seems as if everyone is launching their craft into the waters of Go. Developed by Google, Go (or GoLang) has been adopted by many other major companies for developing large-scale projects. JFrog has embraced Go too, writing the JFrog CLI and JFrog Xray in Go, and making GoCenter, a public repository for Go modules,…

Two Tastes of Artifactory on Google Cloud Marketplace

April 9, 2019

When you’ve chosen Google Cloud Platform for your cloud DevOps environment, which flavor of JFrog Artifactory suits you best? Do you crave an artifact repository manager that you manage yourself and works with GKE? Or does a SaaS account managed by JFrog on GCP better satisfy your need? Two new ways to get Artifactory through…

GoCenter is Fast - How Does It Do That?

April 4, 2019

I recently wrote a blog saying “seeing is believing” (which is also your chance to score an awesome Go shirt), about the difference in speed downloading Go modules from a version control system or from GoCenter. From that blog post, we got a lot of positive comments in the Gopher community. We also got some…

Using JFrog CLI to See Your Builds Up Close

April 2, 2019

Artifactory has always helped you to know what’s in your builds. But it can still be hard to know why a build was made. An exciting feature in the JFrog CLI can help you connect the way you track issues (bugs and feature requests) directly to the builds where they’ve been addressed. So you can…

Steering Straight with Helm Charts Best Practices

March 28, 2019

Kubernetes, the popular orchestration tool for container applications, is named for the Greek word for "pilot," or the one who steers the ship. But as in any journey, the navigator can only be as successful as the available map. An application's Helm chart is that map, a collection of files that can be deployed from…

Build Times Matter - Speed is Everything

March 27, 2019

After GoCenter was first released the team at JFrog said it was faster to get modules from there than it was getting modules “the old way”. To be honest, when they said that, I did not believe them. Following the old proverb “seeing is believing”, I set out to test the speed and see whether…

Guest Blog: Deploying JFrog Artifactory with Nutanix Karbon

March 21, 2019

Anyone working with containers and Kubernetes knows the value of a rock-solid container registry. We’ll show you how to deploy JFrog Artifactory Enterprise in a highly available configuration as a Kubernetes Docker registry with Nutanix Karbon. This enterprise-grade Kubernetes Certified distribution by Nutanix simplifies the provisioning, operations and lifecycle management of Kubernetes with a native…

We’re Founding Members of the Continuous Delivery Foundation. Here’s Why.

March 14, 2019

I’m sure you know by now that JFrog is on a mission to make software liquid. We believe that software updates and new releases are constantly being pulled by an ever-hungry world, and that those updates should flow freely, like water, to the runtime endpoints across our lives. One of the most important pieces of a…

5 Special Repositories in Artifactory You Should Know About

March 7, 2019

Among the many different types of binary repositories managed within JFrog Artifactory as an artifact repository, there are 5 very useful repositories that you may have not noticed. Just like all repositories in Artifactory, these also store your binaries with all the added benefits of Artifactory, but serve a bit differently in their usage. Here’s…

JFrog Xray: Creating Jira Issues using webhooks in a breeze

March 6, 2019

JFrog Xray offers an end-to-end security scanning solution covering the full development lifecycle of your artifacts. This includes vulnerability analysis, security and license compliance, artifact flow control, distribution and more. When Xray finds a security or a licence issue, it will trigger a violation for it. One of the most common use cases during the…

Pipes for JFrog, a Fitting Match for BitBucket Pipelines

February 28, 2019

Many users of Atlassian Bitbucket already choose JFrog Artifactory as their artifact repository with Xray as their DevSecOps tool to bring certainty and trust to the binaries in their software delivery pipelines. With Atlassian’s launch of Pipes for Bitbucket Pipelines, it’s easy for developers to manage their software releases from code through testing and release.…

Enterprise Cloud Devops on Azure is Clicks Away

February 26, 2019

A deployment of Artifactory High Availability hosted in your Azure environment can help your cloud DevOps function with the scalability, performance, and security of an enterprise-grade system. But it takes the right supporting resources and configuration to be installed with it to operate effectively. Fortunately, we’ve now made the chore a lot easier, by offering…

Xray and VulnDB: Security at the Speed of DevOps Automation

February 25, 2019

JFrog Xray: A Powerful DevSecOps Solution JFrog Xray was originally announced at our annual JFrog user event, swampUP, back in 2017. So what does it do? Xray allows DevOps teams to discover, receive notification, and remediate open source vulnerabilities and software license compliance issues early in the development phase. The sooner a vulnerability is discovered…

We’ve Acquired Shippable to Complete DevOps Pipeline Automation From Code to Production

February 21, 2019

We’re extremely excited to announce our acquisition of Shippable, a leading continuous integration and DevOps automation company. Shippable’s complete portfolio of cloud-native and Kubernetes-ready CI/CD solutions will be incorporated into the JFrog platform, creating a complete, integrated DevOps pipeline solution. Why did we do it? To move closer to our vision of Liquid Software and…

Gain Visibility into Your NuGet Builds Using Build-Info in JFrog Artifactory

February 20, 2019

NuGet is an open-source package manager designed for the Microsoft development platform designed to support packaging DLL files with metadata. NuGet repositories in JFrog Artifactory support the application lifecycle from the developer's fingertips through distribution to consumers while covering application security, vulnerability analysis, and artifact flow control. After creating your NuGet repository in Artifactory, you…

Complete the Kubernetes Puzzle for IBM Cloud Private

February 14, 2019

Sometimes two things fit together so naturally, you sense they were built for each other. You might come to feel that way about IBM Cloud Private and JFrog Artifactory because, in important ways, it’s true. IBM Cloud Private (ICP) and Artifactory are both built to facilitate containerization, the growing technology that makes it easy to…

Artifactory and OpenFaaS - Containers Everywhere!

February 19, 2019

Right now, we live in a world where the Kubernetes website gets more visitors than the Seattle Seahawks website. That probably means that containers, and the orchestration platform on which they run, are one of the most important things. I mean, everything runs as a container doesn’t it? The other big ticket item for developers…

5 Steps to Hosting Your Application on Amazon Cloud Container Service

February 12, 2019

This article describes 5 steps to hosting an application on the cloud with Amazon Elastic Container Services (ECS) and Elastic Container Registries (ECR) using a multi-cloud strategy. Developers are moving towards hosting applications on the Cloud and using various cloud services provided by market leaders such as: Google (GCP), Amazon (AWS) and Microsoft (Azure). Nowadays,…

Naming is Hard: The Quest for the Right Name for "Go Module Repository"

February 11, 2019

TL;DR: There is a lot of confusion on the Go modules cache/proxy/registry/repository term. After much deliberation, we have agreed upon Go Modules Repository. Names Matter! You know the drill, naming is the single major reason for procrastination in software engineering, perhaps after expense reports. Coming up with a name for something can be extremely hard,…

Cruise Safely on IBM Cloud’s Road to DevOps

February 7, 2019

When you’ve chosen IBM Cloud for your DevOps platform, trust was certainly part of your decision. Like other public clouds, IBM Cloud offers a quick, flexible on-ramp to cloud native development. Their expertise, support, and a catalog of proven tools like IBM Cloud Kubernetes Service (IKS) gives you confidence. So trust is important to you.…

[White Paper] The JFrog Journey to Kubernetes: Best Practices for Taking Your Containers All the Way to Production

February 5, 2019

Kubernetes together with JFrog Artifactory allows you to reliably and predictably deploy your applications, scale them on the fly, seamlessly roll out new features and efficiently utilize hardware resources. This white paper reviews the complexity and the challenges facing companies wanting to adopt Kubernetes as their container orchestration tool. We hope that the lessons learned,…

Managing Binaries With JFrog CLI and GitHub Actions

February 4, 2019

Over the past few weeks, we’ve released a series of blog posts on how you can use the JFrog CLI, Artifactory, and GitHub Actions to build awesome software. Last week we created and published a Go module and recorded the Build Information and in this final post we’ll build and store the binary in Artifactory.…

Best Practices for Artifactory Backups and Disaster Recovery

February 1, 2019

Whether you have a small JFrog Artifactory instance or a complex cross-region topology, ensuring that your binaries are available at all times is vital to your DevOps pipeline. There are many different approaches to protecting your binaries from disaster, including: System backups, directly from the Artifactory UI or using a 3rd party solution such as…

Building a DevOps Path in IBM Hybrid Cloud

January 31, 2019

Sometimes you don’t want to have to choose between two great places, but combine them for the best of each. That’s the principle behind IBM’s hybrid cloud offering, where a private cloud and a public cloud work together to deliver an ideal blend of availability and security. But how can you best execute DevOps in…

Go at Full Speed with GoCenter

January 30, 2019

As Go programming accelerates, becoming one of the world’s fastest growing software languages, trying to create robust and reliable pipelines without an immutable repository is challenging. That's because Go modules (reusable Go packages of code) that applications include as dependencies must be resolved from among thousands of independent source code repositories, each of which may…

Publishing Go Modules To JFrog Artifactory Using The JFrog CLI

January 28, 2019

Over the coming weeks, we’ll release a series of blog posts on how you can use the JFrog CLI, Artifactory, and GitHub Actions to build awesome software. Last week we built a Go app using Artifactory, the CLI and GitHub Actions and this week we’ll continue that by publishing the Go app as a module.…

Go Modules Are Awesome, But There Is One Tiny Problem

January 27, 2019

Most programming languages and tools support the concept of packages and most of the times those packages have versions. The great thing about versions, whether they’re used by tools or not, is that they allow developers to clearly communicate what the dependencies are to build the final product. Go has struggled quite a bit with…

An Outstanding DevOps Year for JFrog China

January 22, 2019

Massive Adoption Since entering the Chinese market in 2016, JFrog’s growth there has been tremendous. By the end of 2018, we had over 120,000 users of our open source products, and thousands of enterprise users. Both domestic Chinese and foreign companies leading different industry verticals in China adopted JFrog as paying customers including Tencent, Huawei,…

Resolving Go Modules From JFrog Artifactory Using JFrog CLI

January 21, 2019

Over the coming weeks, we’ll release a series of blog posts on how you can use the JFrog CLI, Artifactory, and GitHub Actions to build awesome software. The first in the series was building a custom GitHub Action and this week we’ll continue that by building Go apps. Last year we added support for Go…

How DevOps Empowers Maslow’s Hierarchy of Needs 2.0

January 15, 2019

We're all familiar with Maslow's Hierarchy of Needs. Our most basic human requirements like food and water are at the base, and the pyramid moves upwards into ever-maturing needs like community, social interaction, self-worth and creativity. The progression inherently makes sense to all of us, and we identify with it as human beings across cultures…

Accelerate Azure DevOps or TFS with JFrog Artifactory and NuGet

January 10, 2019

Azure DevOps is the evolution of VSTS (Microsoft Visual Studio Team Services), which is also known as VSTS, support continuous integration/continuous deployment (CI/CD). Alongside support for Maven, NPM, Docker, and Generic builds, the JFrog Artifactory Extension for Azure DevOps and Team Foundation Server TFS has just been improved to support the NuGet package type. This…

Dare to Be an Artifactory Debian Devil

January 9, 2019

JFrog Artifactory supports Debian repositories covering the full lifecycle of your Debian packages to manage development, vulnerability analysis, artifact flow control and distribution. In this blog, you can review our most up-to-date features specially developed for the Debian community including the cool features that may have slipped under your radar. 9 reasons why you should…

Using the JFrog CLI with GitHub Actions

January 7, 2019

Over the coming weeks, we’ll release a series of blog posts on how you can use the JFrog CLI, Artifactory, and GitHub Actions to build awesome software. First up, building a custom GitHub Action. At GitHub Universe, probably the most interesting announcement was the release of GitHub Actions. GitHub’s way to create CI/CD pipelines and…

Herd Trust Into Your Rancher Labs Multi-Cloud Strategy with Artifactory

January 2, 2019

DevOps engineers have grown so reliant on the power and scalability of Kubernetes (K8s) clusters that one server platform can seldom accommodate them all. More and more enterprises now run their containerized applications in clusters across multiple platforms at once, in public clouds and on-prem servers. That can fuel a chaotic stampede in an enterprise-class…

KubeCon US 2018 Experiences

December 31, 2018

“Kubernetes is now very, very boring” or at least that is what Janet Kuo proclaimed in her keynote. She clearly meant that Kubernetes is now a stable platform and a lot of companies are running their day-to-day operations on it. I certainly wouldn’t use “boring” to describe KubeCon + CloudNativeCon 2018 US in Seattle. As…

Security is Hard. Let’s Make It Harder.

December 27, 2018

We all know that data breaches are horribly expensive for enterprises, whether due to direct costs of remediation, or from collateral costs due to lost customers, excessive support tickets, etc. This report from McAfee estimates that the global cost resulting from cybercrime will reach $600 billion in 2018. What you might not have known is…

Looking Up: 4 Technical DevOps Predictions for 2020

December 21, 2018

Very soon, we won’t have to look to the heavens to predict our fortunes. By 2020, says a study by IDC, there will be as many bits in the world’s accumulated data and binaries as there are stars in the universe. It will be these 44 zetabytes (44 trillion gigabytes), doubling every two years, that…

Get Critical Insights About Security Vulnerabilities Directly in Visual Studio

December 17, 2018

The JFrog Visual Studio extension was created to allow the developers an easy integration with JFrog tools from within their Visual Studio environment. The extension provides you with critical insights about the licenses and security vulnerabilities JFrog Xray identifies in the NuGet packages used in your projects. With this extension, developers using Visual Studio can…

The “Function” Package - Setting a Standard for Serverless Application Packaging

December 12, 2018

Reposted from the original which was published on the CNCF blog What's in a function Creating serverless applications is a multi-step process. One of the critical steps in this process is packaging the serverless functions you want to deploy into your FaaS (Function as a Service) platform of choice. Before a function can be deployed…

JFrog KubeXray Extends Deep Scanning Security to Kubernetes Runtime

December 11, 2018

Most security measures are designed to keep gremlins from getting loose. Identifying an application’s risks early means you can prevent or limit its deployment into your system. With that knowledge, any gremlins in your containers that might do damage can be safely kept behind the fence built by your policies. But what can you do…

Java 11 Licensing: What You’re Really Asking

December 6, 2018

There’s a bit of confusion in the market around Java 11 licensing, so it seems appropriate to share some thoughts and hopefully add some value by saving you the research. Disclaimer before we get going: of course, consult your legal and compliance teams before you make any decisions around Java 11 adoption or distribution. First…

It’s a Wonderful DevOps Life

December 4, 2018

In Frank Capra’s 1947 film, “It’s a Wonderful Life,” George Bailey wishes in the depths of his despair that he had never been born. So an angel shows him what that world would have been like. I sometimes feel the need of an angel, too. Not for the same reasons, of course. Our enterprise customers…

5 Signs You Need JFrog Enterprise+

November 19, 2018

The JFrog Enterprise+ platform we launched at swampUP last May really caused a stir in the industry heralding the liquid software revolution of continuous updates. The amount of interest and inquiries it generated shows that the platform truly addresses the pains that large enterprises are having in the end-to-end management of their binaries. But with…

JFrog Gives You DevSecOps in the Cloud, for the Cloud

November 27, 2018

You may have seen that we recently released a new version of JFrog Xray, along with releases of Mission Control and Artifactory. But one thing we’re super excited about is that this release train showcases that Xray is, for the first time, available in a pure cloud, SaaS model. Now you get to enjoy all…

Fearless Updates with JFrog Enterprise+: A Step-By-Step Demo

November 14, 2018

The JFrog Enterprise+ platform gives you a complete pipeline to control the flow of your binaries from build to production. Managing your software deployment end-to-end. The following screencast demonstrates a complete workflow from managing your JFrog services all the way to creating and securely distributing release bundles to target destinations. All part of the Enterprise+…

JFrog Xray Drills Deep Down into Your Docker Images

November 7, 2018

JFrog offers an end-to-end Docker security scanning solution covering the full lifecycle of your Docker images to manage development, vulnerability analysis, license compliance, artifact flow control, and distribution. JFrog Xray has access to the wealth of metadata Artifactory stores. Combined with deep recursive scanning, it puts Xray in a unique position to analyze the relationships between the…

Raising Helm – to Enterprise Scale

November 6, 2018

Reposted from the original which was posted on the AWS Open Source Blog TL/DR: Package managers in general are awful, but Helm, the package manager of Kubernetes, is… not bad at all. Of the seven deadly sins of package managers, Helm commits only two, and these are easily fixable. We’ll be explaining how below. We aren’t…

Accelerate Azure DevOps or TFS with JFrog Artifactory and Conan

October 29, 2018

For some C/C++ developers, working within the structure of continuous integration can be an awkward transition. Running a CI server and the supporting tools to resolve dependencies, share packages, and manage binaries may be unfamiliar, and getting them to work together well can be challenging. C/C++ Continuous Integration Challenges Microsoft’s Azure DevOps (formerly known as…

JFrog & Harness - Don’t Get Bogged Down with Continuous Delivery

November 1, 2018

Harness, a company that provides a Continuous Delivery as-a-Service platform, automates CD with machine learning and security. In this guest post, Stephen Burton, VP Marketing offers a primer on how customers use Artifactory, XRay and Harness together to accelerate Continuous Delivery. This post, also published on Harness.io, has been lightly edited from the original to…

Cluster Management Made Simple with JFrog Artifactory and HashiCorp Nomad

October 23, 2018

Many new technologies are laser-focused on cloud-native applications and architectures. However, not all applications are there just yet. Someone only reading trade press, may get the idea that all applications are there. The reality is that applications continue to take many forms, and will for a long time to come. It is refreshing to learn…

Managing Security Entities with JFrog Access

October 21, 2018

The Unsung Hero of Your Binaries’ Security JFrog Access is the sentinel that manages authentication and authorization for all JFrog services. Packaged and installed together with JFrog Artifactory, Access keeps your binaries secure by making sure that only authorized users can access them. And then, those that do access your binaries, can only do what…

Five Ways to Meet Deadlines When Developing with NPM

October 15, 2018

Node.js has risen to be the most popular development technology in use today. Don’t take my word for it, you can look at Stack Overflow’s 2018 survey. And if that’s not enough for you, pop into www.modulecounts.com and see how packages in public open source npm registries outnumber those from any other technology by a…

Two Models for DevOps - Rockets and Airplanes

October 2, 2018

More and more, agile enterprises require software development to function at supersonic, even interstellar speeds, turning around changes fast, yet safely. DevOps pipelines offer the best way, but what will you really need to fulfill that promise? Having a good way to understand the impact of CI/CD processes, and the role that container technologies like…

Tips and Best Practices for Developing with Artifactory on GCP

September 27, 2018

Hosting infrastructure on cloud-based services is becoming a standard in the tech industry. This comes as no surprise as multifaceted solutions for efficiency are the driving advantages of moving to the cloud. More specifically, some of the reasons that leave cloud solutions at an advantage include flexibility, cost and easier maintenance, allowing the team to…

The Unpleasant Surprises of OSS License Changes and How to Avoid Them

September 26, 2018

Three weeks ago a popular JavaScript tool Lerna underwent dramatic turmoil. One of the original founders and maintainers of the Lerna project suggested changing the license from the ordinary MIT to “MIT with personal exceptions” in effort to prevent certain software companies, including Microsoft, Amazon, Apple, LinkedIn, Walmart, Target, Tesla, Xerox, Dell, and others, from…

Automation Using Webhooks in JFrog Artifactory

September 25, 2018

You (probably) already know that Artifactory, as your repository manager, plays a vital role in your CI/CD pipeline by bridging the gap between development and operations. Now, we’re giving you the option to use webhooks with Artifactory to automate your processes even further. Read on... First, what are webhooks? In the most simple terms, a…

Fully Automated Promotion Pipelines with SonarQube and Artifactory

September 20, 2018

This blog post is co-authored by Jonathan Roquelaure of JFrog and Fabrice Bellingard of SonarSource, and co-posted on the SonarSource blog Our previous blog post showed how to connect Artifactory and SonarQube to help make better decisions when it comes to deploying or delivering good quality software. With a pretty simple script added to your…

Cloud Is Not a Binary Decision

September 18, 2018

To cloud or not to cloud? That isn’t really the question anymore. In choosing a public cloud service, many businesses are finding that instead of just one cloud, they prefer a crowd. Enterprises face a dizzying array of choices in how to host their IT infrastructure, to find the best combination that matches business needs.…

Jenkins X: Code to Production at High-Speed

September 17, 2018

Following another year of successful Jenkins User Conferences (JUC) in France and Tel Aviv, bringing the Jenkins community together for one packed day full of announcements, this year the big news was Jenkins X. During his keynote talk at the Tel Aviv JUC, Kohsuke talked about the many different superpowers being shipped out to the…

You Have Docker - But Are Your Docker Registries Highly Available?

September 12, 2018

With Docker continuing to gain traction in production systems, and widespread use in pre-production, a company’s Docker registry can be central to its operations. This post explains how a high availability Docker registry can help companies avoid the enormous expense incurred when mission-critical systems go down. The Cost of Downtime Downtime is extremely costly, and…

Discoveries and a Release Management Plugin from JFrog

September 11, 2018

This is a repost of the original that was recently published as a guest post on the Atlassian blog. My time at Atlassian’s Bitbucket Cloud Dev Week proved to be very fulfilling, and not just for the cool code we produced. I’m excited about that too, of course. Using Bitbucket Cloud’s V2 APIs, I was…

Is Your Helm 2 Secure and Scalable?

September 6, 2018

Recently Rimas Mocevicius, a Kubernaut at JFrog and co-founder of Helm, spoke at our recent JFrog Helm meetup about the security issues relating to Helm 2 and offered an elegant workaround to secure your k8s cluster. Tiller Poses a Potential Security Threat In Helm 2, a new server-side component called “Tiller” was added. Tiller is…

Get Your License Compliance Reports with a Click of a Button

September 5, 2018

When releasing software, one of the key aspects you need is ensuring that you’re compliant and safe from any legal risks. Our previous blog post on DevOps and Compliance described how compliance can be a seamless part of the DevOps workflow in your organization. This blog post will address the way your company is enforcing…

5 Reasons You Should Be Using JFrog CLI

August 30, 2018

JFrog CLI is a useful compact client, which was developed in order to enhance and simplify command line interactions with JFrog products. In this blog post, I will present 5 reasons why you should be using JFrog CLI, and the most common use cases where it comes in handy with your Artifactory repository manager. Reason…

Gain Code Insights with JFrog Artifactory and Atlassian Bitbucket

September 4, 2018

At the 2018 Atlassian European Summit in Barcelona, Atlassian introduced a new UX in Bitbucket Server that empowers developers to be more productive. Called Code Insights, it gathers information from across the DevOps toolchain into Bitbucket’s pull request experience. On the heels of this news, JFrog is announcing a new integration that brings critical data…

Reusable Cloud Infrastructure as Code with Pulumi and JFrog Artifactory

August 29, 2018

This guest post is submitted by Chris Smith of Pulumi and is co-posted on the Pulumi blog. Pulumi enables you to specify cloud infrastructure with code. This empowers you to program the cloud in your favorite language, and benefit from useful and familiar features of coding like static analysis, type checking, IDEs, and more. One…

How to Achieve Fully Traceable Builds with Drone

August 28, 2018

A build without build-info is like a black box. You don’t know what’s in it, what dependencies it uses, who created it, when it was created and with which tool. And then there are properties, tags and a host of metadata that gives the build its identity. Without build-info, your build is essentially useless. The…

Drive Your Data Flow Pipeline to Production Using Artifactory Conda Repositories

August 23, 2018

Over the past decade, there has been an immense data explosion. Most companies use analytics data collected over months, weeks, or even days for business decisions and can respond to changes minute by minute. To do this real-time analysis and data mining, data scientists, data analysts, and software developers use Conda, as their open source,…

Accelerating C/C++ in IoT with Conan and Resin.io

August 20, 2018

With Conan and resin.io you can rapidly prototype and build your IoT tool reducing your C++ management pains. Creating C/C++ apps for IoT devices is always challenging. It requires setup of the compiler and toolchain to cross-build for the embedded architecture, managing dependencies of the app, and deploying it in a wise way. Conan takes…

Top 10 Reasons Why You Need JFrog Enterprise+

August 16, 2018

More and more companies rely on software to provide value to their customers through product or service updates, websites, mobile apps and more. Whether large or small, these companies can be in any industry segment such as financial, retail, manufacturing or healthcare. To keep providing value through software, you need to continuously develop new…

Accelerating Software Delivery in the Cloud

August 14, 2018

So you’ve decided to take your development to the cloud. That’s a smart choice as cloud automation offers the speed and agility businesses need to keep pace with competition and ever-changing market demands. Cloud DevOps tools offer greater flexibility, rapid deployment, reduced IT costs, and low upfront costs with subscription pricing. Cloud-based offerings are a…

12 Reasons You Don't Need Software Artifact Management

August 9, 2018

0. You have no code. If you have a project, which has no code, you don’t need to manage any artifacts. Well, you don’t need CI, you don’t need runtime, all you need is a bug tracker. And Kelsey, thank you again for the fun! 1. You have no users. If your software has no…

You have Docker; Now are your Docker images secure?

August 8, 2018

This is the second blog in our series on Docker. In our initial blog called You have Docker; Now what?, we discussed the reasons for using a universal binary repository when implementing Docker to production with confidence. It’s great that you're using Docker, but managing security vulnerabilities is vital to ensuring your Docker environment is free…

Delivering Shift-Left Security with NeuVector and JFrog Xray

August 1, 2018

Bringing Kubernetes app security insights to developers This post is co-authored by Craig Peters of JFrog and Henrik Rosendahl of NeuVector and is also cross-posted on the NeuVector blog. Kubernetes, the container and orchestration tool favored by enterprises, provides great benefit in automating many aspects of application deployment at scale. But, like any emerging technology,…

Cloud CI/CD with Visual Studio Team Services and the All New JFrog Artifactory Extension

August 6, 2018

JFrog Artifactory is well acquainted with Visual Studio Team Services (Azure DevOps) and Team Foundation Server (TFS) and has provided integration to these Microsoft DevOps tools for quite some time. And as these technologies have moved forward, so has JFrog. Out with the Old, In with the New We’re THRILLED to announce the all new…

You have Docker; Now what?

July 26, 2018

Almost all organizations developing software today use Docker. However, there are some that still don’t have confidence to take Docker to production. Let’s take a closer look at two main challenges behind this hesitation, which are visibility into the Docker images and where/how they are managed. Challenge 1: What’s in your Docker images Docker images…

Xray Policies: Govern Your Software Supply Chain with Ease

July 25, 2018

In modern software, there are many important aspects to governing software. You no longer only care for the quality of your own code, but also care for the quality, security, integrity, legal and other aspects of the open source packages that you use. The knowledge of how to handle the risks in these quality domains…

DevOps and Compliance; A Match Made in Heaven

July 23, 2018

Like the Borg in Star Trek, compliance can strike alarm in one’s heart. And resistance is (for the most part) futile because regulations are just another component of doing business. In any organized civil society, we’re all required to comply with rules of one sort or another. Sometimes those rules and regulations really are burdensome.…

From Code to Cloud with JFrog Artifactory and Azure AKS

July 19, 2018

Our Kit Merker, VP of Business Development, recently made a guest appearance on the Azure Friday show on Microsoft's Channel 9, showing how to use JFrog Artifactory as your repository manager with Azure and the importance of a Kubernetes Registry. Kit demonstrated the seamless flow from code to cloud, that includes JFrog Artifactory and DevOps…

Twistlock and JFrog Steer the Container DevSecOps Seas

July 16, 2018

Twistlock and JFrog have partnered to provide continuous scanning and security for your builds. Twistlock directly integrates with JFrog Artifactory, which provides a fully automated Docker promotion pipeline for maintaining your Docker registries. What is Twistlock? Twistlock is a versatile security solution that works well with the Kubernetes container orchestrator and integrates smoothly with JFrog…

Smart, Metrics-Based Release Management with SonarQube and Artifactory

July 9, 2018

Some of the most important decisions a release or build manager has to make are whether to promote builds through the CI pipeline. To make these decisions smart and qualified, quality metrics are needed to point out problems in the builds. But sometimes, the problems are at the source, and to detect those problems, you…

Accelerate R Package Development with Artifactory CRAN Repositories

July 10, 2018

'R' You Ready to Take the Leap? R is the leading statistical language used for statistical computation and graphics used by data scientists and data analytics to extract meaning from data. The Comprehensive R Archive Network (CRAN) serves as the package manager for R providing easy package install, the option to store multiple versions and…

What To Think About When Thinking About Onboarding Artifactory

June 27, 2018

If you’re reading this, you have probably decided to add Artifactory into your Software Development Life Cycle (SDLC) / CI and would like to understand the key points to consider for implementing this integration. In this blog post, we’ll review the high level aspects you should address when introducing Artifactory into your environment and CI/CD…

Containerize Node Microservices Using Atlassian Bitbucket Pipeline and JFrog CLI

June 21, 2018

Did you know? Atlassian provides tools to help development teams more effectively collaborate and deliver software fast. Atlassian introduced Bitbucket Pipelines in 2016 to automate continuous integration in a seamless way with the git repository. As Bitbucket Pipelines has matured we’ve seen more of our customers taking advantage of its ability to easily integrate CI/CD…

Latest Helm Chart Enhancements from JFrog

June 20, 2018

Google introduced Kubernetes (k8s) as an open-source container-orchestration system for automating deployment, scaling, and management of containerized applications less than four years ago. Since then it has been gaining rapid popularity. Today, it is being used in a number of vendor solutions including Microsoft for its Azure Kubernetes Service (AKS), Mesosphere for its DC/OS, Pivotal for its…

From Git to Cluster with JFrog Artifactory and Azure Kubernetes Service (AKS)

June 13, 2018

Securing the Flow of Software with Azure Kubernetes Service and JFrog Artifactory Thanks to the hard work of an amazing community, Kubernetes has become the standard container orchestration system. JFrog is thrilled to be a part of this growth by enabling DevOps teams to release software faster and more efficiently; and today, we’re excited to…

Scale your Development Experience by Migrating any Container Registry to Artifactory

June 12, 2018

With the range of available package formats developers have to work with today, the complexity of managing and maintaining these tools is continuously growing. JFrog Artifactory is a universal artifact manager that supports all major package formats, that fits in with virtually any development ecosystem - including Docker environments. For an enhanced experience working with…

10+ Reasons to Use Artifactory as your Docker Registry

June 12, 2018

There are so many good reasons to use Artifactory as your Docker registry: The recently-released Package Viewer emphasizes the most relevant metadata with the look and feel of a native Docker registry JFrog CLI lets you build Docker images with exhaustive build information and upload them to Artifactory JFrog Xray will do a deep recursive…

Deploy JFrog Artifactory High Availability Using Azure Resource Manager Templates

June 7, 2018

Why Use Microsoft Azure Services? Microsoft Azure services is used by many companies and government agencies for their software development and hosting infrastructure needs. Development teams can quickly set up and dismantle development environments and IT operation teams can quickly host their production software. It helps to avoid complexity and expenses in procuring and managing…

Artifactory: Your NPM Registry for Bit

June 6, 2018

We’re always excited to see the different ways Artifactory gets used. Bit (bitsrc.io) is a platform built to increase code reuse and reduce the overhead around it. It lets you isolate “bits” of Javascript source code from existing projects, share them with your teammates and the developer community, and use them as NPM packages by…

Use JFrog Artifactory to Deliver Software with Confidence to AWS EKS

June 5, 2018

AWS is launching the Amazon Elastic Container Service for Kubernetes (Amazon EKS) and is announcing JFrog as a proud integration partner. Over the past year, it seems that even companies that weren’t in the first phase of Kubernetes adoption are now joining the party. JFrog has been a key part of the container movement, launching…

swampUP 2018, RELOADED

June 5, 2018

If I had to summarize swampUP 2018 in one word, it would be “opportunity”. It was an opportunity to hear about the latest developments in DevOps and learn what the future holds from industry leaders in the biggest companies such as Google, Amazon, Microsoft and Netflix. It was an opportunity to share knowledge and experience…

Artifactory Docker Registries Feel Like Home

May 30, 2018

As a Universal Repository Manager, Artifactory supports all major package formats in common use today. That’s 23 (!) different formats, with more on the way. Being universal is great. It means that Artifactory fits in with virtually any development ecosystem. But this also comes with a cost. Each package format is constructed differently with…

Kubernetes Registry for Azure Container Instances (ACI)

May 28, 2018

What is an Azure Container Instance? Microsoft Azure Container Instances (ACI) offers users a fast and simple way to deploy container applications in the cloud without provisioning virtual machines or having to adopt a higher-level service. Using ACI, you can scale and orchestrate operations by deploying a Docker container that pulls a Docker image from…

Manage Your Docker Builds with JFROG CLI in 5 Easy Steps!

May 24, 2018

JFrog CLI is a useful client that provides a simple interface that works smoothly with JFrog Artifactory and Jfrog Xray. The simplified CLI commands enable you to create readable automation scripts that are easy to maintain, efficient and reliable. From version 1.14.0, JFrog CLI has extended its support to manage Docker builds, in addition to its…

Leap into the Universe of Fearless Updates

May 17, 2018

Most of us work in a modern company whose survival depends, amongst other things, on how quickly we can release and update software. One might argue that this is only true for technology companies, but in reality, whether you are a financial, retail, manufacturer or healthcare company, you’re probably developing software to maintain your products,…

Set Up Your JFrog Services in No Time!

May 10, 2018

JFrog Mission Control provides an easy way for JFrog administrators to set up, manage and monitor their Artifactory & Xray services using Configuration Scripts. Additional support, including Jenkins, will be available soon. Configuration scripts are written in Groovy and can be applied to one or more service at a time to perform a variety of…

Running an In-house Go Registry with Artifactory

May 2, 2018

Updated on January 31, 2019 to reflect the current state of the technology and JFrog support for Go. The need for a Go registry Since its inception over eight years ago at Google, Go has emerged as one of the most popular languages used by developers and DevOps today, so much so that it was…

SUSE and JFrog Accelerate Cloud Native Development for the Enterprise

May 1, 2018

Oh the things you can find, if you don’t stay behind! (On Beyond Zebra!, by Dr. Seuss (1955)) It’s time to get Enterprise class Kubernetes to run your applications. SUSE enables organizations to accelerate app development by providing a platform that streamlines lifecycle operations for traditional and cloud-native technologies. SUSE enables you to deploy, manage,…

Deploy JFrog Artifactory in Canonical Distribution of Kubernetes

May 1, 2018

This blog post is co-authored by Craig Peters of JFrog and Stephan Fabel of Canonical. A free-to-use rapid way to deploy Kubernetes (k8s) is a critical building block for accelerating development team’s adoption. The Canonical Distribution of Kubernetes (CDK) delivers a pure experience across a wide variety of cloud infrastructures. This enables enterprises to rapidly…

welcome to the frog’s blog

Latest:

Leap Deep with Us into swampUP