Welcome to the JFrog Blog

Latest from Xray :

How to Connect the JFrog Platform to Your GitHub Environment to Create a Seamless Integration

May 30, 2024 Batel Zohar, JFrog Developer Advocate Carmit Hershman, JFrog Senior Software Architect, CTO Office

8 min read

The latest JFrog collaboration with GitHub enables you to easily combine your favorite solutions for source code and binaries in a seamless integration. This means you now have a unified comprehensive and secure end-to-end experience that supports your software projects. This integration covers everything from curating open source packages, coding, CI, release management, deployment and…

Read More
What’s New with JFrog Artifactory and Xray

What’s New with JFrog Artifactory and Xray

March 9, 2021 Paul Garden | 7 min read

TL;DR Get the latest on self-hosted Docker rate limits, cutting through violation noise and new package type support. Without doubt, 2020 has been one of the most challenging years for everyone in recent history, but especially for those in the world of DevOps. JFrog has strived to continue developing and innovating at the same pace,…
Read More
Microservices Asynchronous Communication and Messaging | JFrog Xray

Microservices Asynchronous Communication and Messaging | JFrog Xray

February 25, 2021 Snir Ben Ami | 5 min read

Microservices have changed the way we build applications. Software design has moved from large monolithic applications (which are not really adaptable to changes and improvements) to a collection of small, independent processes infrastructure which is far more suited to adapt to changes in today’s agile world. How Do Microservices Communicate? Microservices are decoupled from each…
Read More
We’re Bringing Cloud DevOps to Government Clouds on AWS and Azure

We’re Bringing Cloud DevOps to Government Clouds on AWS and Azure

March 2, 2021 Steven Foster and Steven Miller | 4 min read

Helping software producers achieve compliance with regulatory requirements has been a huge part of our focus at JFrog. That’s why many in the most regulated industries such as banking, finance, manufacturing, and retail are our customers for DevOps. We’re excited to announce that JFrog DevOps Platform solutions - JFrog Artifactory and JFrog Xray - are…
Read More
GitHub vs JFrog: Who Can do the Job for DevOps?

GitHub vs JFrog: Who Can do the Job for DevOps?

February 17, 2021 Gianni Truzzi | 12 min read

When you choose a product, you're hiring it to do a job. You’ve put out the“Help Wanted” sign for DevOps, and choosing between two well-qualified prospects is high stakes. The hire you make can ensure the enterprise swiftly rises -- or sinks. With JFrog and GitHub, you have two of the best candidates. Now judge…
Read More
Automate DAST in DevSecOps With JFrog and NeuraLegion

Automate DAST in DevSecOps With JFrog and NeuraLegion

February 17, 2021 Oliver Moradov, VP of NeuraLegion | 9 min read

NeuraLegion’s VP Oliver Moradov takes us through how you can use JFrog and NeuraLegion to automate AppSec testing in your pipelines. The days of long release cycles are well and truly behind us -- it is simply not feasible in our agile development world, with developers delivering software and more features at an unprecedented scale…
Read More
7 Tips to Evaluate and Choose the Right DevSecOps Solution

7 Tips to Evaluate and Choose the Right DevSecOps Solution

February 17, 2021 Paul Garden | 6 min read

Demand for DevSecOps products has been growing strongly, as more companies realize the importance of integrating security into their DevOps pipelines. However, IT and DevOps pros who dive into the DevSecOps market looking for options quickly realize that the number of DevSecOps tools and frameworks is vast and confusing. This overabundance of choices often leaves…
Read More
Python wheel-jacking in supply chain attacks

Python wheel-jacking in supply chain attacks

February 16, 2021 Shachar Menashe and Tamir Bahar | 9 min read

Recently, a novel supply chain attack was published by security researcher Alex Birsan, detailing how dependency confusion (or "namesquatting") in package managers can be misused in order to execute malicious code on production and development systems. Background - dependency confusion & Birsan's attack In short, most package managers such as pip and npm do not…
Read More
Best DevSecOps Solution: DevOps Dozen 2020 Honors JFrog Xray

Best DevSecOps Solution: DevOps Dozen 2020 Honors JFrog Xray

February 2, 2021 Paul Garden | 3 min read

With so many esteemed adversaries competing in the same DevSecOps space, winning the “Best DevSecOps Solution” award feels even more special. We’re very grateful to the community and the DevOps Dozen2 judges who voted for JFrog Xray in this extremely tough category.  This was the 6th consecutive year that the DevOps Dozen2 Awards have been…
Read More
Stay Alert to Security With Xray and PagerDuty

Stay Alert to Security With Xray and PagerDuty

February 2, 2021 Mahitha Byreddy | 5 min read

When securing your software development against open-source vulnerabilities, the earlier action occurs -- by the right person -- the safer you and your enterprise will be. Many IT departments rely on the PagerDuty incident response platform to improve visibility and agility across the organization. The enterprise-quality incident management system provides reliable notifications, automatic escalations, on-call…
Read More

Popular Tags