Welcome to the JFrog Blog

Latest:

Stop Policies From Breaking Your Builds

March 25, 2026 Jacqueline Basil, JFrog Product Marketing Manager, Security Manish Mehra, JFrog Product Manager

4 min read

Security policies exist to protect your software supply chain. So why do they keep breaking your builds? This is the unspoken frustration inside most DevOps and security teams today. Supply chain attacks drove 30% of external breaches in 2025 . So your security team did the right thing. They added policies to flag packages that…

Read More

All Blogs

How a DevOps Company Does DevOps

How a DevOps Company Does DevOps

March 6, 2024 Noam Zilberman, JFrog Sr. Director of Engineering Productivity/DevX | 6 min read

At JFrog, we believe in practicing what we preach by "drinking our own champagne." This means that we not only develop and deliver market-leading products but also utilize our own solutions in our development processes. When it comes to managing development environments, we aim to implement the best-in-class approaches. By adopting these top-tier practices, we…
Read More
Evolving ML Model Versioning

Evolving ML Model Versioning

January 11, 2024 Zohar Sacks, JFrog Senior Director of Product Sean Pratt, Senior Manager, JFrog | 9 min read

TL;DR: JFrog’s ML Model Management capabilities, which help bridge the gap between AI/ML model development and DevSecOps, are now Generally Available and come with a new approach to versioning models that benefit Data Scientists and DevOps Engineers alike.  Model versioning can be a frustrating process with many considerations when taking models from Data Science to…
Read More
Data Scientists Targeted by Malicious Hugging Face ML Models with Silent Backdoor

Data Scientists Targeted by Malicious Hugging Face ML Models with Silent Backdoor

February 27, 2024 David Cohen, JFrog Senior Security Researcher | 13 min read

In the realm of AI collaboration, Hugging Face reigns supreme. But could it be the target of model-based attacks? Recent JFrog findings suggest a concerning possibility, prompting a closer look at the platform's security and signaling a new era of caution in AI research. The discussion on AI Machine Language (ML) models security is still…
Read More
Secure Access To Your Software Development with GitHub OpenID Connect (OIDC) and JFrog

Secure Access To Your Software Development with GitHub OpenID Connect (OIDC) and JFrog

February 14, 2024 Yonatan Arbel, JFrog Developer Advocacy Lead | 5 min read

Modern software development requires a seamless connection between multiple software development tools - particularly those used for code management and storing your software artifacts. Connecting between these tools often involves managing a variety of tokens, permissions, passwords, and keys, which if not handled correctly can expose organizations to potential security threats. The best solution is…
Read More
Migrating to the Cloud at Scale with Fidelity

Migrating to the Cloud at Scale with Fidelity

February 8, 2024 The JFrog Team | 9 min read

At swampUP 2023, JFrog’s annual user conference, Gerard McMahon, Head of Application Lifecycle Management (ALM) Tools and Platforms at Fidelity Investments, shared Fidelity’s cloud migration story and how it supports the overall company philosophy. He explored the company's focus on ensuring employee satisfaction while delivering great software and value to customers. He talked about the…
Read More
MyJFrog Portal: The Solution for Managing Your JFrog Cloud Subscription

MyJFrog Portal: The Solution for Managing Your JFrog Cloud Subscription

February 9, 2024 The JFrog Team | 3 min read

MyJFrog is a central management portal for managing your JFrog cloud subscriptions. It provides a single, centralized view to manage and monitor users, subscriptions, resources, and usage. This gives you the control, visibility, and predictability you need to make informed decisions about your environment. MyJFrog Portal If you have multiple JFrog Cloud subscriptions, MyJFrog lets…
Read More
DevOps and CI/CD for IoT: Automating Continuous Deployment with JFrog Connect

DevOps and CI/CD for IoT: Automating Continuous Deployment with JFrog Connect

December 4, 2024 Maxim Yurkovsky, Architect, JFrog Connect | 7 min read

The Internet of Things (IoT) landscape is rapidly expanding, presenting unique challenges and opportunities for software development and deployment. Managing and updating a fleet of IoT devices can be complex, but DevOps practices and Continuous Integration/Continuous Deployment (CI/CD) pipelines provide powerful solutions. This post explores the general concepts of DevOps and CI/CD for IoT and…
Read More
Enhancing IoT Deployment Security Under the Cyber Resilience Act

Enhancing IoT Deployment Security Under the Cyber Resilience Act

October 14, 2024 Shani Achwal, Senior Product Marketing Manager, JFrog Michal Lewinsohn, Director of Product, JFrog David Robin, Senior Solution Engineer, JFrog | 6 min read

The rise of connected devices has brought significant progress in various sectors, but it also increases vulnerability to cybersecurity risks. As global regulatory authorities tackle this critical issue, the European Union leads the way with the EU Cyber Resilience Act (CRA), which focuses on enhancing the security of embedded devices. Although the CRA is still…
Read More
IoT Trends in Manufacturing: Moving Beyond Smart to Virtual

IoT Trends in Manufacturing: Moving Beyond Smart to Virtual

September 5, 2024 Michal Lewinsohn, Director of Product, JFrog Connect | 7 min read

Note: This blog post was previously published on IoT For All. From the early 1900s to the 2000s, the manufacturing industry underwent significant innovation, beginning with the advent of lean manufacturing that introduced efficient assembly line production and specialized machinery tailored for specific tasks. Moving into the 2000s, the focus shifted towards the “smart factory”,…
Read More

Popular Tags