Welcome to the JFrog Blog

Update Repositories for PHP Composer v2 in JFrog Artifactory

Update Repositories for PHP Composer v2 in JFrog Artifactory

If you’re among the nearly one in four professional developers using PHP (according to StackOverflow’s 2021 survey), then the maintainers of Composer would really like you to migrate from v1 of the PHP package manager to v2.  On October 24 2020, Composer 2.0.0 was released with some major improvements.Since almost eight out of every ten…
The Importance of Prioritizing Product Security

The Importance of Prioritizing Product Security

Achieving comprehensive security for the products delivered and deployed by organizations is becoming more difficult, due to a variety of factors. A key one is the growing volume, variety and complexity of software and connected devices in use. Another is the overwhelming risk of inherited software supply chain exposures. The result: Companies struggle every day…
JFrog Xray + Splunk + SIEM: Towards Implementing a Complete DevSecOps Strategy

JFrog Xray + Splunk + SIEM: Towards Implementing a Complete DevSecOps Strategy

Making security an intrinsic part of a DevOps pipeline is a “must-have” for organizations looking to secure their applications earlier in the development process.  The combination of JFrog Artifactory and JFrog Xray enables organizations to build security into all phases of their software development lifecycle, so they can proactively detect and mitigate open source software…
Conan Center Celebrates 1,000+ Recipes

Conan Center Celebrates 1,000+ Recipes

We’re delighted to thank the Conan community on reaching a major milestone, the public contribution of over 1,000 Conan recipes to Conan Center, the repository for hosting C/C++ packages! Conan recipes are Python-language files that describe how a Conan package is consumed. Each recipe is used to produce hundreds of C/C++packages, so this is an…
Head-to-Head: Penetration Testing vs. Vulnerability Scanning

Head-to-Head: Penetration Testing vs. Vulnerability Scanning

To release reasonably secure products, vendors must integrate software security processes throughout all stages of the software development lifecycle. That would include product architecture and design; implementation and verification; deployment and monitoring in the field; and back again to design to address the changing threat landscape, market needs, and product issues. In this blog post,…
A Peek at JFrog’s Iron Bank Accreditation for Xray and Artifactory

A Peek at JFrog’s Iron Bank Accreditation for Xray and Artifactory

JFrog Artifactory and JFrog Xray recently underwent a rigorous hardening process to earn accreditation for inclusion in the U.S. Department of Defense’s Iron Bank, a centralized repository of digitally-signed and hardened container images. In this blog post, we’re pulling back the curtain on the process, in order to share our insights and lessons learned with…
Delivering on Our Commitments to the Public Sector with Iron Bank Certification

Delivering on Our Commitments to the Public Sector with Iron Bank Certification

Serving our customers in the public sector, including government agencies and contractors, is both a great honor and a major responsibility for JFrog. The applications and digital services that they release have a direct impact on the well-being of our communities, across critical areas including national defense, healthcare, public safety, education and more. Today, I’m…
Set Up a Remote Repository in Artifactory To Proxy Iron Bank Images

Set Up a Remote Repository in Artifactory To Proxy Iron Bank Images

U.S. Department of Defense (DoD) teams that manage DevSecOps software factories or that use DevSecOps factories to develop, secure and operate mission applications, need a trusted repository management system to store their local artifacts as well as artifacts pulled from Iron Bank, the DoD’s central repository of hardened container images. Artifacts that are stored include…
Transformers ‘21: Manisha Sahasrabudhe, Director of Product, JFrog

Transformers ‘21: Manisha Sahasrabudhe, Director of Product, JFrog

As we continue our series on JFrog “transformers” in honor of International Programmers Day, we introduce you to Manisha Sahsrabudhe, who transformed  her career as a software programmer focused on code, to becoming an entrepreneur co-founding a continuous delivery company, Shippable,  to Director of Product at JFrog. Shippable, a DevOps automation platform that easily connects DevOps…
Transformers ’21: Changing the Lens – Manager vs. Developer

Transformers ’21: Changing the Lens – Manager vs. Developer

As we wrap up our series on JFrog “transformers” in honor of International Programmers Day, we’d like you to meet Kavita Viswanath, General Manager, JFrog India, and Batel Zohar, JFrog Developer Advocate. Through their experiences, we’ll look at the two sides of DevOps -- the behind the scenes purview of management and the impact of…