Welcome to the JFrog Blog

Latest from Xray :

GitHub and JFrog Partner To Unify Code and Binaries for DevSecOps

May 29, 2024 Thomas Dohmke, GitHub CEO Shlomi Ben Haim, JFrog CEO and Co-Founder

5 min read

Note: This post is co-authored by JFrog and GitHub and has also been published on the GitHub blog As the volume of code continues to grow exponentially, software developers, DevOps engineers, operations teams, security specialists, and everyone else who touches code are increasingly spending their time in the weeds of securing, delivering, and scaling software.…

Read More
Automotive DevOps: Rules of the Road Ahead

Automotive DevOps: Rules of the Road Ahead

June 20, 2019 Kit Merker | 6 min read

With software powering all the devices that enable the things we do everyday, software engineers are now the mechanics that keep our modern times running. More and more, we trust the software they create with our lives. As JFrog works to fulfill its vision of continuous updates and liquid software, we’ve paid a lot of…
Read More
Shift Your IDE Left With Xray Plugins

Shift Your IDE Left With Xray Plugins

May 28, 2019 Yahav Itzhak and Alexei Vainshtein | 5 min read

"Forewarned is forearmed,” cautions the old proverb, and that truth coined in the 16th century is even more apt for DevSecOps in the 21st. The earlier you know about vulnerabilities, the better you can avoid making them part of your software. That’s the same principle behind a “Shift Left” DevSecOps strategy. Rather than waiting for…
Read More
How JFrog Makes Anthos DevOps Bloom

How JFrog Makes Anthos DevOps Bloom

April 15, 2019 Mark Galpin | 7 min read

It must be spring, because Google has sprouted flowers, and JFrog is helping with the bouquet. At this year’s GCP Next, Google announced the rollout of Anthos (the Greek word for “flowers”), a powerful service to build and manage a modern hybrid cloud. With Anthos (formerly Cloud Services Platform), your choices in a computing platform…
Read More
Two Tastes of Artifactory on Google Cloud Marketplace

Two Tastes of Artifactory on Google Cloud Marketplace

April 9, 2019 Mark Galpin | 7 min read

  Editor's Note (2024): Please refer to the current JFrog Software Supply Chain Platform listing on Google Cloud Marketplace to get started with JFrog on Google Cloud.   When you’ve chosen Google Cloud Platform for your cloud DevOps environment, which flavor of JFrog Artifactory suits you best? Do you crave an artifact repository manager that…
Read More
JFrog Xray: Creating Jira Issues using webhooks in a breeze

JFrog Xray: Creating Jira Issues using webhooks in a breeze

March 6, 2019 Shai Ben-Zvi | 5 min read

  JFrog Xray offers an end-to-end security scanning solution covering the full development lifecycle of your artifacts. This includes vulnerability analysis, security and license compliance, artifact flow control, distribution and more. When Xray finds a security or a licence issue, it will trigger a violation for it. One of the most common use cases during…
Read More
Pipes for JFrog, a Fitting Match for BitBucket Pipelines

Pipes for JFrog, a Fitting Match for BitBucket Pipelines

February 28, 2019 Jainish Shah | 4 min read

Many users of Atlassian Bitbucket already choose JFrog Artifactory as their artifact repository with Xray as their DevSecOps tool to bring certainty and trust to the binaries in their software delivery pipelines. With Atlassian’s launch of Pipes for Bitbucket Pipelines, it’s easy for developers to manage their software releases from code through testing and release.…
Read More
Xray and VulnDB: Security at the Speed of DevOps Automation

Xray and VulnDB: Security at the Speed of DevOps Automation

February 25, 2019 Samantha Sayar | 4 min read

Update February 2024: JFrog no longer utilizes the VulnDB database. We have a comprehensive database from multiple leading sources including the NVD, GitHub, Ubuntu, Debian, Red Hat, PHP, and vulnerability data uncovered by the JFrog Security Research Team. JFrog Xray: A Powerful DevSecOps Solution JFrog Xray was originally announced at our annual JFrog user event,…
Read More
Security is Hard. Let’s Make It Harder.

Security is Hard. Let’s Make It Harder.

December 27, 2018 Eldad Assis | 4 min read

We all know that data breaches are horribly expensive for enterprises, whether due to direct costs of remediation, or from collateral costs due to lost customers, excessive support tickets, etc. This report from McAfee estimates that the global cost resulting from cybercrime will reach $600 billion in 2018. What you might not have known is…
Read More
Looking Up: 4 Technical DevOps Predictions for 2020

Looking Up: 4 Technical DevOps Predictions for 2020

December 21, 2018 Kit Merker | 6 min read

Very soon, we won’t have to look to the heavens to predict our fortunes. By 2020, says a study by IDC, there will be as many bits in the world’s accumulated data and binaries as there are stars in the universe. It will be these 44 zetabytes (44 trillion gigabytes), doubling every two years, that…
Read More
Get Critical Insights About Security Vulnerabilities Directly in Visual Studio

Get Critical Insights About Security Vulnerabilities Directly in Visual Studio

December 17, 2018 Alexei Vainshtein | < 1 min read

The JFrog Visual Studio extension was created to allow the developers an easy integration with JFrog tools from within their Visual Studio environment. The extension provides you with critical insights about the licenses and security vulnerabilities JFrog Xray identifies in the NuGet packages used in your projects. With this extension, developers using Visual Studio can…
Read More

Popular Tags