Blog Home
JFrog AppTrust_ Secure Compliance__Thumbnail

JFrog AppTrust: A Technical Deep Dive into Building a Trusted Software Supply Chain
October 16, 2025

Software supply chains have grown more complex as software delivery accelerates across more teams, technologies and environments. While the pace of releases continues to increase, the ability to manage these releases has not accelerated correspondingly. Developers and development operations are now firmly in the spotlight, as new regulations demand clear, auditable proof that every stage …

Read More
JFrog Runtime Scope_Thumbnail

Don’t Guess What to Scan: Runtime Scope Ensures Full Production Coverage
October 15, 2025

Are you confident that you’re scanning for security vulnerabilities on all your software running in production? If this question makes you uncomfortable don’t worry. First, you’re not alone. Second – keep reading. Almost all security teams today face a massive challenge: they’re drowning in data but lack direction. They have an overwhelming amount of code …

Read More
Two cubes, labeled "JFrog" and "ServiceNow," are connected by a glowing link on a grid-patterned dark background.

JFrog and ServiceNow: Accelerate Trusted Software Application Development
September 30, 2025

Today’s software organizations can’t make tradeoffs between speed and trust – you need both to succeed. But juggling them is tough. Moving too fast can lead to security vulnerabilities and compliance issues, while moving too slow means your competitors beat you to market. This tension creates friction that slows down every release, a problem that …

Read More

Trusted AI Delivery: Introducing the JFrog AI Catalog
September 09, 2025

The rapid pace of AI innovation is driving new possibilities for every organization. Yet, for many, the journey from inception to reliable, production-ready AI applications is riddled with hidden challenges: proliferation of models, security blind spots, and a desperate need for consistent governance. You want to harness the power of AI, but not at the …

Read More

Announcing JFrog’s Evidence Partner Ecosystem
September 09, 2025

As software supply chains get more complex, your GRC initiatives become more critical. You need a deeper level of assurance that your software has gone through required processes as it moves toward release. The stakes are only getting higher; new software and AI regulations are gaining ground, and businesses that aren’t able to prove compliance …

Read More
UK Software Code - Blog_Thumbnail

The UK’s New Software Security Code of Practice and How JFrog Can Help
July 16, 2025

The UK government has taken a proactive step by recently releasing the Software Security Code of Practice, a vital framework aimed at strengthening the cybersecurity posture of organizations that develop and sell software. This code outlines essential practices and principles, guiding companies to enhance their software security throughout the development lifecycle, from initial design to …

Read More

RSAC 2025 Recap: Software Supply Chain Security Takes Center Stage
May 12, 2025

The RSA Conference 2025 at the Moscone Center in San Francisco on April 28 – May 1, brought together over 44,000 cybersecurity professionals from around the world. This year’s event, marking the 34th annual flagship conference, placed significant emphasis on software supply chain security and secure software development lifecycle (SDLC) practices. From the keynotes, speaking …

Read More

Now Available: Smart Archiving with the JFrog Platform
April 23, 2025

Every day development teams around the world release new software. But what happens to prior releases that are no longer in production? Most organizations save them, typically due to internal policies, external regulations, or simply the fear of losing data. Organizations typically take varied approaches to retaining their prior releases. Some use a dedicated repository …

Read More
FINMA-Compliance_V02b_Thumbnail

FINMA Compliance: DevSecOps Strategies for Securing the Swiss Financial Ecosystem
February 24, 2025

The Swiss Financial Market Supervisory Authority (FINMA) sets strict requirements to ensure that financial institutions operating in Switzerland maintain robust security and operational resilience. FINMA’s guidelines are crucial for protecting sensitive financial data, minimizing risks, and maintaining trust in the Swiss financial ecosystem. As part of that, software supply chain security plays an essential role …

Read More
CERT-In-Guidelines-Blog_Thumbnail

JFrog Simplifies Compliance with India’s new CERT SBOM Guidelines
February 12, 2025

Overview The Indian Computer Emergency Response Team (CERT-In) is the national agency responsible for addressing cybersecurity incidents in India. Established in 2004 and operating under the Ministry of Electronics and Information Technology (MeitY), CERT-In is dedicated to enhancing the security of India’s digital infrastructure. The organization plays a vital role in preventing, detecting, and responding …

Read More

Popular Tags