
Where are the Frogs?
Come see the Frogs at the next Meetup, Conference, or Community gathering.

EveryOps Skills, Unlocked
Learn at your own pace, for free. Prepare for JFrog professional certifications.
Stay up to date with curated blogs, articles, videos, and more
- 2025 Report: State of the Software Supply Chain
- A Vulnerable Future: MITRE’s Close Call in CVE Management
- Introducing Support for Chocolatey and PowerShell Packages
- Conan Launches C/C++ Audit Functionality
- Secure Access To Your Software Development with GitHub OpenID Connect (OIDC) and JFrog
- CVE-2025-29927 – Authorization Bypass Vulnerability in Next.js: All You Need to Know
- From Platform to Production with Alon Lev – KubeCon Europe 2025
- JFrog and Hugging Face Join Forces to Expose Malicious ML Models
- AI Pipelines With OPEA: Best Practices for Cloud Native ML Operations
- JFrog: Rooted in Open Source, Committed to the Community—A Reflection on Our Open Source Initiatives and Software Foundation Support
- [InfoWorld] Key strategies for MLOps success in 2025
- [ITPro] Developers spend 17 hours a week on security — but don't consider it a top priority
- [IT BREW] Open-source security summit shows way to deal with threats, expert says
- [DARKREADING] Static Scans, Red Teams, and Frameworks Aim to Find Bad AI Models
- [DEVOPS Digest] Critical Security Threats Emerge from AI in Software Supply Chain
- [HackerNews] Critical Next.js Vulnerability Allows Attackers to Bypass Middleware Authorization Checks
- Latest from the JFrog Security Research Team
- Latest from the Conan Team
- View the swampUP 2024 YT Playlist
- Get Ready for swampUP 2025!

Where are the Frogs?
Come see the Frogs at the next Meetup, Conference, or Community gathering.

EveryOps Skills, Unlocked
Learn at your own pace, for free. Prepare for JFrog professional certifications.
March 24, 2025 | 16 min read
JFrog and Hugging Face Join Forces to Expose Malicious ML Models
ML operations, data scientists, and developers currently face critical security challenges on multiple fronts. First, staying up to date with evolving attack techniques requires constant vigilance and security know-how, which...
April 3, 2025 | < 1 min read
AI Pipelines With OPEA: Best Practices for Cloud Native ML Operations
AI Pipelines With OPEA: Best Practices for Cloud Native ML Operations The Open Platform for Enterprise AI (OPEA) is an open source project intended to assist organizations with the realities...
February 14, 2025 | 5 min read
Secure Access To Your Software Development with GitHub OpenID Connect (OIDC) and JFrog
Modern software development requires a seamless connection between multiple software development tools – particularly those used for code management and storing your software artifacts. Connecting between these tools often involves...
April 25, 2025 | 10 min read
JFrog: Rooted in Open Source, Committed to the Community—A Reflection on Our Open Source Initiatives and Software Foundation Support
Today, I want to take you on a journey through the heart of JFrog, exploring our deep-seated connection with the open-source community. It’s more than just a part of our...