Welcome to the JFrog Blog

Automate DAST in DevSecOps With JFrog and NeuraLegion

Automate DAST in DevSecOps With JFrog and NeuraLegion

NeuraLegion’s VP Oliver Moradov takes us through how you can use JFrog and NeuraLegion to automate AppSec testing in your pipelines. The days of long release cycles are well and truly behind us -- it is simply not feasible in our agile development world, with developers delivering software and more features at an unprecedented scale…
Seven Tips to Evaluate and Choose the Right DevSecOps Solutions

Seven Tips to Evaluate and Choose the Right DevSecOps Solutions

Demand for DevSecOps products has been growing strongly, as more companies realize the importance of integrating security into their DevOps pipelines. However, IT and DevOps pros who dive into the DevSecOps market looking for options quickly realize that the number of DevSecOps tools and frameworks is vast and confusing. This overabundance of choices often leaves…
Stay Alert to Security With Xray and PagerDuty

Stay Alert to Security With Xray and PagerDuty

When it comes to securing your software development against open source vulnerabilities, the earlier action occurs -- by the right person -- the safer you and your enterprise will be. Many IT departments rely on the PagerDuty incident response platform to improve visibility and agility across the organization. The enterprise-quality incident management system provides reliable…
Worried about DevOps Security? Come to Our Webinar and Overcome Your Fears

Worried about DevOps Security? Come to Our Webinar and Overcome Your Fears

Are you afraid of inadvertently releasing unsafe code? Do you worry about hackers breaching your critical application -- and creating mayhem for your business and its customers? Are you overwhelmed by SDLC security concerns? You’re not alone. DevOps teams know they can’t overlook security or treat it as an afterthought. Doing so, they realize, puts…
Our Groundbreaking Partnership with Docker Is a Boon for DevOps Teams

Our Groundbreaking Partnership with Docker Is a Boon for DevOps Teams

Today we’re announcing a big move that will yield substantial, concrete benefits for our customers and for the entire DevOps community: A groundbreaking partnership with Docker that exempts Cloud users of the JFrog DevOps Platform from Docker Hub’s image-pull rate limits. This agreement further boosts JFrog’s vibrant ecosystem of integration partners, built on the “too…
SDLC Security: It’s Personal for JFrog

SDLC Security: It’s Personal for JFrog

The SolarWinds hack, which has affected high-profile Fortune 500 companies and large U.S. federal government agencies, has put the spotlight on software development security -- a critical issue for the DevOps community and for JFrog. At a fundamental level, if the code released via CI/CD pipelines is unsafe, all other DevOps benefits are for naught.…
Install JFrog Platform on Kubernetes in Under 20 Minutes

Install JFrog Platform on Kubernetes in Under 20 Minutes

We get it, installing Artifactory and the JFrog DevOps Platform on Kubernetes can be daunting. As easy as we’ve sought to make it with our official JFrog installation Helm charts, there are a lot of decisions to be made. That’s meant to give you the widest possible choice for how to best fit your JFrog…
A Few Minutes More: Add Xray DevSecOps to Artifactory Enterprise on Azure

A Few Minutes More: Add Xray DevSecOps to Artifactory Enterprise on Azure

In a prior blog post, we explained how to install or update Artifactory through the Azure Marketplace in the amount of time it takes for your coffee order to arrive on the counter. Now you can add to your self-managed (BYOL) Artifactory deployment Xray, the cream of software component analysis (SCA) tools, through the Azure…
Best Practices for Onboarding JFrog Xray

Best Practices for Onboarding JFrog Xray

Note: A version of this blog post is also published on dev.to Introducing, adding, or replacing a new SCA (Software Composition Analysis) tool such as JFrog Xray into your SDLC, if not handled correctly, can be very disruptive to the SDLC and organization. This blog post provides recommended best practices for onboarding JFrog Xray; in…