welcome to the frog’s blog

GoCenter’s Back to the Future Journey

Every science fiction fan knows that you can't fix the past. Try to, and it wrecks the balance of events that led to the present. That's also what we learned while making GoCenter. While trying to correct an early Go modules design choice and improve certainty, we accidentally made things harder for the Go community.…

How JFrog Makes Anthos DevOps Bloom

It must be spring, because Google has sprouted flowers, and JFrog is helping with the bouquet. At this year’s GCP Next, Google announced the rollout of Anthos (the Greek word for “flowers”), a powerful service to build and manage a modern hybrid cloud. With Anthos (formerly Cloud Services Platform), your choices in a computing platform…

Sail Athens Swiftly Upstream with GoCenter

It seems as if everyone is launching their craft into the waters of Go. Developed by Google, Go (or GoLang) has been adopted by many other major companies for developing large-scale projects. JFrog has embraced Go too, writing the JFrog CLI and JFrog Xray in Go, and making GoCenter, a public repository for Go modules,…

Two Tastes of Artifactory on Google Cloud Marketplace

When you’ve chosen Google Cloud Platform for your cloud DevOps environment, which flavor of JFrog Artifactory suits you best? Do you crave an artifact repository manager that you manage yourself and works with GKE? Or does a SaaS account managed by JFrog on GCP better satisfy your need? Two new ways to get Artifactory through…

GoCenter is Fast - How Does It Do That?

I recently wrote a blog saying “seeing is believing” (which is also your chance to score an awesome Go shirt), about the difference in speed downloading Go modules from a version control system or from GoCenter. From that blog post, we got a lot of positive comments in the Gopher community. We also got some…

Using JFrog CLI to See Your Builds Up Close

Artifactory has always helped you to know what’s in your builds. But it can still be hard to know why a build was made. An exciting feature in the JFrog CLI can help you connect the way you track issues (bugs and feature requests) directly to the builds where they’ve been addressed. So you can…

Steering Straight with Helm Charts Best Practices

Kubernetes, the popular orchestration tool for container applications, is named for the Greek word for "pilot," or the one who steers the ship. But as in any journey, the navigator can only be as successful as the available map. An application's Helm chart is that map, a collection of files that can be deployed from…

Build Times Matter - Speed is Everything

After GoCenter was first released the team at JFrog said it was faster to get modules from there than it was getting modules “the old way”. To be honest, when they said that, I did not believe them. Following the old proverb “seeing is believing”, I set out to test the speed and see whether…

Guest Blog: Deploying JFrog Artifactory with Nutanix Karbon

Anyone working with containers and Kubernetes knows the value of a rock-solid container registry. We’ll show you how to deploy JFrog Artifactory Enterprise in a highly available configuration as a Kubernetes Docker registry with Nutanix Karbon. This enterprise-grade Kubernetes Certified distribution by Nutanix simplifies the provisioning, operations and lifecycle management of Kubernetes with a native…

5 Special Repositories in Artifactory You Should Know About

Among the many different types of binary repositories managed within JFrog Artifactory as an artifact repository, there are 5 very useful repositories that you may have not noticed. Just like all repositories in Artifactory, these also store your binaries with all the added benefits of Artifactory, but serve a bit differently in their usage. Here’s…

JFrog Xray: Creating Jira Issues using webhooks in a breeze

JFrog Xray offers an end-to-end security scanning solution covering the full development lifecycle of your artifacts. This includes vulnerability analysis, security and license compliance, artifact flow control, distribution and more. When Xray finds a security or a licence issue, it will trigger a violation for it. One of the most common use cases during the…

Pipes for JFrog, a Fitting Match for BitBucket Pipelines

Many users of Atlassian Bitbucket already choose JFrog Artifactory as their artifact repository with Xray as their DevSecOps tool to bring certainty and trust to the binaries in their software delivery pipelines. With Atlassian’s launch of Pipes for Bitbucket Pipelines, it’s easy for developers to manage their software releases from code through testing and release.…

Enterprise Cloud Devops on Azure is Clicks Away

A deployment of Artifactory High Availability hosted in your Azure environment can help your cloud DevOps function with the scalability, performance, and security of an enterprise-grade system. But it takes the right supporting resources and configuration to be installed with it to operate effectively. Fortunately, we’ve now made the chore a lot easier, by offering…

Xray and VulnDB: Security at the Speed of DevOps Automation

JFrog Xray: A Powerful DevSecOps Solution JFrog Xray was originally announced at our annual JFrog user event, swampUP, back in 2017.  So what does it do? Xray allows DevOps teams to discover, receive notification, and remediate open source vulnerabilities and software license compliance issues early in the development phase. The sooner a vulnerability is discovered…

We’ve Acquired Shippable to Complete DevOps Pipeline Automation From Code to Production

We’re extremely excited to announce our acquisition of Shippable, a leading continuous integration and DevOps automation company. Shippable’s complete portfolio of cloud-native and Kubernetes-ready CI/CD solutions will be incorporated into the JFrog platform, creating a complete, integrated DevOps pipeline solution. Why did we do it? To move closer to our vision of Liquid Software and…

Gain Visibility into Your NuGet Builds Using Build-Info in JFrog Artifactory

NuGet is an open-source package manager designed for the Microsoft development platform designed to support packaging DLL files with metadata. NuGet repositories in JFrog Artifactory support the application lifecycle from the developer's fingertips through distribution to consumers while covering application security, vulnerability analysis, and artifact flow control. After creating your NuGet repository in Artifactory, you…

Complete the Kubernetes Puzzle for IBM Cloud Private

Sometimes two things fit together so naturally, you sense they were built for each other. You might come to feel that way about IBM Cloud Private and JFrog Artifactory because, in important ways, it’s true. IBM Cloud Private (ICP) and Artifactory are both built to facilitate containerization, the growing technology that makes it easy to…

Artifactory and OpenFaaS - Containers Everywhere!

Right now, we live in a world where the Kubernetes website gets more visitors than the Seattle Seahawks website. That probably means that containers, and the orchestration platform on which they run, are one of the most important things. I mean, everything runs as a container doesn’t it? The other big ticket item for developers…

5 Steps to Hosting Your Application on Amazon Cloud Container Service

This article describes 5 steps to hosting an application on the cloud with Amazon Elastic Container Services (ECS) and Elastic Container Registries (ECR) using a multi-cloud strategy. Developers are moving towards hosting applications on the Cloud and using various cloud services provided by market leaders such as: Google (GCP), Amazon (AWS) and Microsoft (Azure). Nowadays,…

Naming is Hard: The Quest for the Right Name for "Go Module Repository"

TL;DR: There is a lot of confusion on the Go modules cache/proxy/registry/repository term. After much deliberation, we have agreed upon Go Modules Repository. Names Matter! You know the drill, naming is the single major reason for procrastination in software engineering, perhaps after expense reports. Coming up with a name for something can be extremely hard,…

Cruise Safely on IBM Cloud’s Road to DevOps

When you’ve chosen IBM Cloud for your DevOps platform, trust was certainly part of your decision. Like other public clouds, IBM Cloud offers a quick, flexible on-ramp to cloud native development. Their expertise, support, and a catalog of proven tools like IBM Cloud Kubernetes Service (IKS) gives you confidence. So trust is important to you.…

[White Paper] The JFrog Journey to Kubernetes: Best Practices for Taking Your Containers All the Way to Production

Kubernetes together with JFrog Artifactory allows you to reliably and predictably deploy your applications, scale them on the fly, seamlessly roll out new features and efficiently utilize hardware resources. This white paper reviews the complexity and the challenges facing companies wanting to adopt Kubernetes as their container orchestration tool. We hope that the lessons learned,…

Managing Binaries With JFrog CLI and GitHub Actions

Over the past few weeks, we’ve released a series of blog posts on how you can use the JFrog CLI, Artifactory, and GitHub Actions to build awesome software. Last week we created and published a Go module and recorded the Build Information and in this final post we’ll build and store the binary in Artifactory.…

Best Practices for Artifactory Backups and Disaster Recovery

Whether you have a small JFrog Artifactory instance or a complex cross-region topology, ensuring that your binaries are available at all times is vital to your DevOps pipeline. There are many different approaches to protecting your binaries from disaster, including: System backups, directly from the Artifactory UI or using a 3rd party solution such as…

Building a DevOps Path in IBM Hybrid Cloud

Sometimes you don’t want to have to choose between two great places, but combine them for the best of each. That’s the principle behind IBM’s hybrid cloud offering, where a private cloud and a public cloud work together to deliver an ideal blend of availability and security. But how can you best execute DevOps in…

Go at Full Speed with GoCenter

As Go programming accelerates, becoming one of the world’s fastest growing software languages, trying to create robust and reliable pipelines without an immutable repository is challenging. That's because Go modules (reusable Go packages of code) that applications include as dependencies must be resolved from among thousands of independent source code repositories, each of which may…

Publishing Go Modules To JFrog Artifactory Using The JFrog CLI

Over the coming weeks, we’ll release a series of blog posts on how you can use the JFrog CLI, Artifactory, and GitHub Actions to build awesome software. Last week we built a Go app using Artifactory, the CLI and GitHub Actions and this week we’ll continue that by publishing the Go app as a module.…

Go Modules Are Awesome, But There Is One Tiny Problem

Most programming languages and tools support the concept of packages and most of the times those packages have versions. The great thing about versions, whether they’re used by tools or not, is that they allow developers to clearly communicate what the dependencies are to build the final product. Go has struggled quite a bit with…

An Outstanding DevOps Year for JFrog China

Massive Adoption Since entering the Chinese market in 2016, JFrog’s growth there has been tremendous. By the end of 2018, we had over 120,000 users of our open source products, and thousands of enterprise users. Both domestic Chinese and foreign companies leading different industry verticals in China adopted JFrog as paying customers including Tencent, Huawei,…

Resolving Go Modules From JFrog Artifactory Using JFrog CLI

Over the coming weeks, we’ll release a series of blog posts on how you can use the JFrog CLI, Artifactory, and GitHub Actions to build awesome software. The first in the series was building a custom GitHub Action and this week we’ll continue that by building Go apps. Last year we added support for Go…

How DevOps Empowers Maslow’s Hierarchy of Needs 2.0

We're all familiar with Maslow's Hierarchy of Needs. Our most basic human requirements like food and water are at the base, and the pyramid moves upwards into ever-maturing needs like community, social interaction, self-worth and creativity. The progression inherently makes sense to all of us, and we identify with it as human beings across cultures…

Accelerate Azure DevOps or TFS with JFrog Artifactory and NuGet

Azure DevOps is the evolution of VSTS (Microsoft Visual Studio Team Services), which is also known as VSTS, support continuous integration/continuous deployment (CI/CD). Alongside support for Maven, NPM, Docker, and Generic builds, the JFrog Artifactory Extension for Azure DevOps and Team Foundation Server TFS has just been improved to support the NuGet package type. This…

Dare to Be an Artifactory Debian Devil

JFrog Artifactory supports Debian repositories covering the full lifecycle of your Debian packages to manage development, vulnerability analysis, artifact flow control and distribution. In this blog, you can review our most up-to-date features specially developed for the Debian community including the cool features that may have slipped under your radar. 9 reasons why you should…

Using the JFrog CLI with GitHub Actions

Over the coming weeks, we’ll release a series of blog posts on how you can use the JFrog CLI, Artifactory, and GitHub Actions to build awesome software. First up, building a custom GitHub Action. At GitHub Universe, probably the most interesting announcement was the release of GitHub Actions. GitHub’s way to create CI/CD pipelines and…

Herd Trust Into Your Rancher Labs Multi-Cloud Strategy with Artifactory

DevOps engineers have grown so reliant on the power and scalability of Kubernetes (K8s) clusters that one server platform can seldom accommodate them all. More and more enterprises now run their containerized applications in clusters across multiple platforms at once, in public clouds and on-prem servers. That can fuel a chaotic stampede in an enterprise-class…

KubeCon US 2018 Experiences

“Kubernetes is now very, very boring” or at least that is what Janet Kuo proclaimed in her keynote. She clearly meant that Kubernetes is now a stable platform and a lot of companies are running their day-to-day operations on it.  I certainly wouldn’t use “boring” to describe KubeCon + CloudNativeCon 2018 US in Seattle. As…

Security is Hard. Let’s Make It Harder.

We all know that data breaches are horribly expensive for enterprises, whether due to direct costs of remediation, or from collateral costs due to lost customers, excessive support tickets, etc. This report from McAfee estimates that the global cost resulting from cybercrime will reach $600 billion in 2018. What you might not have known is…

Looking Up: 4 Technical DevOps Predictions for 2020

Very soon, we won’t have to look to the heavens to predict our fortunes. By 2020, says a study by IDC, there will be as many bits in the world’s accumulated data and binaries as there are stars in the universe. It will be these 44 zetabytes (44 trillion gigabytes), doubling every two years, that…

Get Critical Insights About Security Vulnerabilities Directly in Visual Studio

The JFrog Visual Studio extension was created to allow the developers an easy integration with JFrog tools from within their Visual Studio environment. The extension provides you with critical insights about the licenses and security vulnerabilities JFrog Xray identifies in the NuGet packages used in your projects. With this extension, developers using Visual Studio can…

JFrog KubeXray Extends Deep Scanning Security to Kubernetes Runtime

Most security measures are designed to keep gremlins from getting loose. Identifying an application’s risks early means you can prevent or limit its deployment into your system. With that knowledge, any gremlins in your containers that might do damage can be safely kept behind the fence built by your policies. But what can you do…

Java 11 Licensing: What You’re Really Asking

There’s a bit of confusion in the market around Java 11 licensing, so it seems appropriate to share some thoughts and hopefully add some value by saving you the research. Disclaimer before we get going: of course, consult your legal and compliance teams before you make any decisions around Java 11 adoption or distribution. First…

It’s a Wonderful DevOps Life

In Frank Capra’s 1947 film, “It’s a Wonderful Life,” George Bailey wishes in the depths of his despair that he had never been born. So an angel shows him what that world would have been like. I sometimes feel the need of an angel, too. Not for the same reasons, of course. Our enterprise customers…

5 Signs You Need JFrog Enterprise+

The JFrog Enterprise+ platform we launched at swampUP last May really caused a stir in the industry heralding the liquid software revolution of continuous updates. The amount of interest and inquiries it generated shows that the platform truly addresses the pains that large enterprises are having in the end-to-end management of their binaries. But with…

JFrog Gives You DevSecOps in the Cloud, for the Cloud

You may have seen that we recently released a new version of JFrog Xray, along with releases of Mission Control and Artifactory. But one thing we’re super excited about is that this release train showcases that Xray is, for the first time, available in a pure cloud, SaaS model. Now you get to enjoy all…

Fearless Updates with JFrog Enterprise+: A Step-By-Step Demo

The JFrog Enterprise+ platform gives you a complete pipeline to control the flow of your binaries from build to production. Managing your software deployment end-to-end. The following screencast demonstrates a complete workflow from managing your JFrog services all the way to creating and securely distributing release bundles to target destinations. All part of the Enterprise+…

JFrog Xray Drills Deep Down into Your Docker Images

JFrog offers an end-to-end Docker security scanning solution covering the full lifecycle of your Docker images to manage development, vulnerability analysis, license compliance, artifact flow control, and distribution. JFrog Xray has access to the wealth of metadata Artifactory stores. Combined with deep recursive scanning, it puts Xray in a unique position to analyze the relationships between the…

Raising Helm – to Enterprise Scale

Reposted from the original which was posted on the AWS Open Source Blog TL/DR: Package managers in general are awful, but Helm, the package manager of Kubernetes, is… not bad at all. Of the seven deadly sins of package managers, Helm commits only two, and these are easily fixable. We’ll be explaining how below. We aren’t…

Accelerate Azure DevOps or TFS with JFrog Artifactory and Conan

For some C/C++ developers, working within the structure of continuous integration can be an awkward transition. Running a CI server and the supporting tools to resolve dependencies, share packages, and manage binaries may be unfamiliar, and getting them to work together well can be challenging. C/C++ Continuous Integration Challenges Microsoft’s Azure DevOps (formerly known as…

JFrog & Harness - Don’t Get Bogged Down with Continuous Delivery

Harness, a company that provides a Continuous Delivery as-a-Service platform, automates CD with machine learning and security. In this guest post, Stephen Burton, VP Marketing offers a primer on how customers use Artifactory, XRay and Harness together to accelerate Continuous Delivery. This post, also published on Harness.io, has been lightly edited from the original to…

Cluster Management Made Simple with JFrog Artifactory and HashiCorp Nomad

Many new technologies are laser-focused on cloud-native applications and architectures. However, not all applications are there just yet. Someone only reading trade press, may get the idea that all applications are there. The reality is that applications continue to take many forms, and will for a long time to come. It is refreshing to learn…

Managing Security Entities with JFrog Access

The Unsung Hero of Your Binaries’ Security JFrog Access is the sentinel that manages authentication and authorization for all JFrog services. Packaged and installed together with JFrog Artifactory, Access keeps your binaries secure by making sure that only authorized users can access them. And then, those that do access your binaries, can only do what…

Five Ways to Meet Deadlines When Developing with NPM

Node.js has risen to be the most popular development technology in use today. Don’t take my word for it, you can look at Stack Overflow’s 2018 survey. And if that’s not enough for you, pop into www.modulecounts.com and see how packages in public open source npm registries outnumber those from any other technology by a…

Two Models for DevOps - Rockets and Airplanes

More and more, agile enterprises require software development to function at supersonic, even interstellar speeds, turning around changes fast, yet safely. DevOps pipelines offer the best way, but what will you really need to fulfill that promise? Having a good way to understand the impact of CI/CD processes, and the role that container technologies like…

Tips and Best Practices for Developing with Artifactory on GCP

Hosting infrastructure on cloud-based services is becoming a standard in the tech industry. This comes as no surprise as multifaceted solutions for efficiency are the driving advantages of moving to the cloud. More specifically, some of the reasons that leave cloud solutions at an advantage include flexibility, cost and easier maintenance, allowing the team to…

The Unpleasant Surprises of OSS License Changes and How to Avoid Them

Three weeks ago a popular JavaScript tool Lerna underwent dramatic turmoil.  One of the original founders and maintainers of the Lerna project suggested changing the license from the ordinary MIT to “MIT with personal exceptions” in effort to prevent certain software companies, including Microsoft, Amazon, Apple, LinkedIn, Walmart, Target, Tesla, Xerox, Dell, and others, from…

Automation Using Webhooks in JFrog Artifactory

You (probably) already know that Artifactory, as your repository manager, plays a vital role in your CI/CD pipeline by bridging the gap between development and operations. Now, we’re giving you the option to use webhooks with Artifactory to automate your processes even further. Read on... First, what are webhooks? In the most simple terms, a…

Fully Automated Promotion Pipelines with SonarQube and Artifactory

This blog post is co-authored by Jonathan Roquelaure of JFrog and Fabrice Bellingard of SonarSource, and co-posted on the SonarSource blog Our previous blog post showed how to connect Artifactory and SonarQube to help make better decisions when it comes to deploying or delivering good quality software. With a pretty simple script added to your…

Cloud Is Not a Binary Decision

To cloud or not to cloud? That isn’t really the question anymore. In choosing a public cloud service, many businesses are finding that instead of just one cloud, they prefer a crowd. Enterprises face a dizzying array of choices in how to host their IT infrastructure, to find the best combination that matches business needs.…

Jenkins X: Code to Production at High-Speed

Following another year of successful Jenkins User Conferences (JUC) in France and Tel Aviv, bringing the Jenkins community together for one packed day full of announcements, this year the big news was Jenkins X. During his keynote talk at the Tel Aviv JUC, Kohsuke talked about the many different superpowers being shipped out to the…

You Have Docker - But Are Your Docker Registries Highly Available?

With Docker continuing to gain traction in production systems, and widespread use in pre-production, a company’s Docker registry can be central to its operations. This post explains how a high availability Docker registry can help companies avoid the enormous expense incurred when mission-critical systems go down. The Cost of Downtime Downtime is extremely costly, and…

Discoveries and a Release Management Plugin from JFrog

This is a repost of the original that was recently published as a guest post on the Atlassian blog. My time at Atlassian’s Bitbucket Cloud Dev Week proved to be very fulfilling, and not just for the cool code we produced. I’m excited about that too, of course. Using Bitbucket Cloud’s V2 APIs, I was…

Is Your Helm 2 Secure and Scalable?

Recently Rimas Mocevicius, a Kubernaut at JFrog and co-founder of Helm, spoke at our recent JFrog Helm meetup about the security issues relating to Helm 2 and offered an elegant workaround to secure your k8s cluster. Tiller Poses a Potential Security Threat In Helm 2, a new server-side component called “Tiller” was added. Tiller is…

Get Your License Compliance Reports with a Click of a Button

When releasing software, one of the key aspects you need is ensuring that you’re compliant and safe from any legal risks. Our previous blog post on DevOps and Compliance described how compliance can be a seamless part of the DevOps workflow in your organization. This blog post will address the way your company is enforcing…

5 Reasons You Should Be Using JFrog CLI

JFrog CLI is a useful compact client, which was developed in order to enhance and simplify command line interactions with JFrog products. In this blog post, I will present 5 reasons why you should be using JFrog CLI, and the most common use cases where it comes in handy with your Artifactory repository manager. Reason…

Gain Code Insights with JFrog Artifactory and Atlassian Bitbucket

At the 2018 Atlassian European Summit in Barcelona, Atlassian introduced a new UX in Bitbucket Server that empowers developers to be more productive. Called Code Insights, it gathers information from across the DevOps toolchain into Bitbucket’s pull request experience. On the heels of this news, JFrog is announcing a new integration that brings critical data…

Reusable Cloud Infrastructure as Code with Pulumi and JFrog Artifactory

This guest post is submitted by Chris Smith of Pulumi and is co-posted on the Pulumi blog. Pulumi enables you to specify cloud infrastructure with code. This empowers you to program the cloud in your favorite language, and benefit from useful and familiar features of coding like  static analysis, type checking, IDEs, and more. One…

How to Achieve Fully Traceable Builds with Drone

A build without build-info is like a black box. You don’t know what’s in it, what dependencies it uses, who created it, when it was created and with which tool. And then there are properties, tags and a host of metadata that gives the build its identity. Without build-info, your build is essentially useless. The…

Accelerating C/C++ in IoT with Conan and Resin.io

With Conan and resin.io you can rapidly prototype and build your IoT tool reducing your C++ management pains. Creating C/C++ apps for IoT devices is always challenging. It requires setup of the compiler and toolchain to cross-build for the embedded architecture, managing dependencies of the app, and deploying it in a wise way. Conan takes…

Top 10 Reasons Why You Need JFrog Enterprise+

  More and more companies rely on software to provide value to their customers through product or service updates, websites, mobile apps and more. Whether large or small, these companies can be in any industry segment such as financial, retail, manufacturing or healthcare. To keep providing value through software,  you need to continuously develop new…

Accelerating Software Delivery in the Cloud

So you’ve decided to take your development to the cloud. That’s a smart choice as cloud automation offers the speed and agility businesses need to keep pace with competition and ever-changing market demands. Cloud DevOps tools offer greater flexibility, rapid deployment, reduced IT costs, and low upfront costs with subscription pricing. Cloud-based offerings are a…

12 Reasons You Don't Need Software Artifact Management

0. You have no code. If you have a project, which has no code, you don’t need to manage any artifacts. Well, you don’t need CI, you don’t need runtime, all you need is a bug tracker. And Kelsey, thank you again for the fun! 1. You have no users. If your software has no…

You have Docker; Now are your Docker images secure?

This is the second blog in our series on Docker. In our initial blog called You have Docker; Now what?, we discussed the reasons for using a universal binary repository when implementing Docker to production with confidence. It’s great that you're using Docker, but managing security vulnerabilities is vital to ensuring your Docker environment is free…

Delivering Shift-Left Security with NeuVector and JFrog Xray

Bringing Kubernetes app security insights to developers This post is co-authored by Craig Peters of JFrog and Henrik Rosendahl of NeuVector and is also cross-posted on the NeuVector blog. Kubernetes, the container and orchestration tool favored by enterprises, provides great benefit in automating many aspects of application deployment at scale. But, like any emerging technology,…

You have Docker; Now what?

Almost all organizations developing software today use Docker. However, there are some that still don’t have confidence to take Docker to production. Let’s take a closer look at two main challenges behind this hesitation, which are visibility into the Docker images and where/how they are managed. Challenge 1: What’s in your Docker images Docker images…

Xray Policies: Govern Your Software Supply Chain with Ease

In modern software, there are many important aspects to governing software. You no longer only care for the quality of your own code, but also care for the quality, security, integrity, legal and other aspects of the open source packages that you use. The knowledge of how to handle the risks in these quality domains…

DevOps and Compliance; A Match Made in Heaven

Like the Borg in Star Trek, compliance can strike alarm in one’s heart. And resistance is (for the most part) futile because regulations are just another component of doing business. In any organized civil society, we’re all required to comply with rules of one sort or another. Sometimes those rules and regulations really are burdensome.…

From Code to Cloud with JFrog Artifactory and Azure AKS

Our Kit Merker, VP of Business Development, recently made a guest appearance on the Azure Friday show on Microsoft's Channel 9, showing how to use JFrog Artifactory as your repository manager with Azure and the importance of a Kubernetes Registry. Kit demonstrated the seamless flow from code to cloud, that includes JFrog Artifactory and DevOps…

Twistlock and JFrog Steer the Container DevSecOps Seas

Twistlock and JFrog have partnered to provide continuous scanning and security for your builds. Twistlock directly integrates with JFrog Artifactory, which provides a fully automated Docker promotion pipeline for maintaining your Docker registries. What is Twistlock? Twistlock is a versatile security solution that works well with the Kubernetes container orchestrator and integrates smoothly with JFrog…

Accelerate R Package Development with Artifactory CRAN Repositories

'R' You Ready to Take the Leap? R is the leading statistical language used for statistical computation and graphics used by data scientists and data analytics to extract meaning from data. The Comprehensive R Archive Network (CRAN) serves as the package manager for R providing easy package install, the option to store multiple versions and…

What To Think About When Thinking About Onboarding Artifactory

If you’re reading this, you have probably decided to add Artifactory into your Software Development Life Cycle (SDLC) / CI and would like to understand the key points to consider for implementing this integration. In this blog post, we’ll review the high level aspects you should address when introducing Artifactory into your environment and CI/CD…

Containerize Node Microservices Using Atlassian Bitbucket Pipeline and JFrog CLI

Did you know? Atlassian provides tools to help development teams more effectively collaborate and deliver software fast. Atlassian introduced Bitbucket Pipelines in 2016 to automate continuous integration in a seamless way with the git repository. As Bitbucket Pipelines has matured we’ve seen more of our customers taking advantage of its ability to easily integrate CI/CD…

Latest Helm Chart Enhancements from JFrog

Google introduced Kubernetes (k8s) as an open-source container-orchestration system for automating deployment, scaling, and management of containerized applications less than four years ago. Since then it has been gaining rapid popularity. Today, it is being used in a number of vendor solutions including Microsoft for its Azure Kubernetes Service (AKS), Mesosphere for its DC/OS, Pivotal for its…

10+ Reasons to Use Artifactory as your Docker Registry

There are  so many good reasons to use Artifactory as your Docker registry: The recently-released Package Viewer emphasizes the most relevant metadata with the look and feel of a native Docker registry JFrog CLI lets you build Docker images with exhaustive build information and upload them to Artifactory JFrog Xray will do a deep recursive…

Deploy JFrog Artifactory High Availability Using Azure Resource Manager Templates

Why Use Microsoft Azure Services? Microsoft Azure services is used by many companies and government agencies for their software development and hosting infrastructure needs. Development teams can quickly set up and dismantle development environments and IT operation teams can quickly host their production software. It helps to avoid complexity and expenses in procuring and managing…

Artifactory: Your NPM Registry for Bit

We’re always excited to see the different ways Artifactory gets used. Bit (bitsrc.io) is a platform built to increase code reuse and reduce the overhead around it. It lets you isolate “bits” of Javascript source code from existing projects, share them with your teammates and the developer community, and use them as NPM packages by…

Use JFrog Artifactory to Deliver Software with Confidence to AWS EKS

AWS is launching the Amazon Elastic Container Service for Kubernetes (Amazon EKS) and is announcing JFrog as a proud integration partner. Over the past year, it seems that even companies that weren’t in the first phase of Kubernetes adoption are now joining the party. JFrog has been a key part of the container movement, launching…

swampUP 2018, RELOADED

If I had to summarize swampUP 2018 in one word, it would be “opportunity”. It was an opportunity to hear about the latest developments in DevOps and learn what the future holds from industry leaders in the biggest companies such as Google, Amazon, Microsoft and Netflix. It was an opportunity to share knowledge and experience…

Kubernetes Registry for Azure Container Instances (ACI)

What is an Azure Container Instance? Microsoft Azure Container Instances (ACI) offers users a fast and simple way to deploy container applications in the cloud without provisioning virtual machines or having to adopt a higher-level service. Using ACI, you can scale and orchestrate operations by deploying a Docker container that pulls a Docker image from…

Manage Your Docker Builds with JFROG CLI in 5 Easy Steps!

JFrog CLI is a useful client that provides a simple interface that works smoothly with JFrog Artifactory and Jfrog Xray. The simplified CLI commands enable you to create readable automation scripts that are easy to maintain, efficient and reliable. From version 1.14.0, JFrog CLI has extended its support to manage Docker builds, in addition to its…

Leap into the Universe of Fearless Updates

Most of us work in a modern company whose  survival depends, amongst other things, on how quickly we can release and update software. One might argue that this is only true for technology companies, but in reality, whether you are a financial, retail, manufacturer or healthcare company, you’re probably developing software to maintain your products,…

Set Up Your JFrog Services in No Time!

JFrog Mission Control provides an easy way for JFrog administrators to set up, manage and monitor their Artifactory & Xray services using Configuration Scripts. Additional support, including Jenkins, will be available soon. Configuration scripts are written in Groovy and can be applied to one or more service at a time to perform a variety of…

Running an In-house Go Registry with Artifactory

Updated on January 31, 2019 to reflect the current state of the technology and JFrog support for Go. The need for a Go registry Since its inception over eight years ago at Google, Go has emerged as one of the most popular languages used by developers and DevOps today, so much so that it was…

SUSE and JFrog Accelerate Cloud Native Development for the Enterprise

Oh the things you can find, if you don’t stay behind!  (On Beyond Zebra!, by Dr. Seuss (1955)) It’s time to get Enterprise class Kubernetes to run your applications. SUSE enables organizations to accelerate app development by providing a platform that streamlines lifecycle operations for traditional and cloud-native technologies. SUSE enables you to deploy, manage,…

Deploy JFrog Artifactory in Canonical Distribution of Kubernetes

This blog post is co-authored by Craig Peters of JFrog and Stephan Fabel of Canonical. A free-to-use rapid way to deploy Kubernetes (k8s) is a critical building block for accelerating development team’s adoption. The Canonical Distribution of Kubernetes (CDK) delivers a pure experience across a wide variety of cloud infrastructures. This enables enterprises to rapidly…