Updated November 27, 2024: JFrogโs SaaS Log Streamer now supports log streaming to Datadog, Dataset, Dynatrace, Elastic, Grafana Loki, New Relic, and Splunk. This log streaming service is available to customers on JFrog Cloud Enterprise+ subscriptions. The beauty of deploying SaaS-based applications is that you donโt have to worry about building the infrastructure, hiring engineers โฆ
As an integrator or government agency providing mission-critical software, the question to ask yourself is โIs my software development environment NIST SP 800-218 compliant?โ. Compliance with NIST SP 800-218 and the SSDF (Secure Software Development Framework) is mandatory, and itโs time to ensure your software supply chain is compliant. Learn more about JFrogโs DevSecOps solutions โฆ
The JFrog Security research team has recently discovered two security vulnerabilities in X.Org libX11, the widely popular graphics library โ CVE-2023-43786 and CVE-2023-43787 (with a high NVD severity CVSS 7.8). These vulnerabilities cause a denial-of-service and remote code execution. X11โs latest versions contain fixes for these vulnerabilities. The team constantly monitors open-source projects to find โฆ
While many are familiar with championship sports teams like Manchester United, the New York Yankees and Montreal Canadiens, the real question is whether you have ever heard of perennial champions such as โPlaid Parliament of Pwningโ, โMore Smoked Leet Chickenโ and โDragon Sectorโ. If not, then get ready to meet the leading teams in the โฆ
The JFrog Security research team has recently discovered two security vulnerabilities in X.Org libX11, the widely popular graphics library โ CVE-2023-43786 and CVE-2023-43787 (with a high NVD severity CVSS 7.8). These vulnerabilities cause a denial-of-service and remote code execution. X11โs latest versions contain fixes for these vulnerabilities. The team constantly monitors open-source projects to find โฆ
Today, weโre excited to announce a new integration with Amazon SageMaker! SageMaker helps companies build, train, and deploy machine learning (ML) models for any use case with fully managed infrastructure, tools, and workflows. By leveraging JFrog Artifactory and Amazon SageMaker together, ML models can be delivered alongside all other software development components in a modern โฆ
With over 29,000 CVEs and 5.5 billion malware attacks recorded in the past year, itโs no wonder that software supply chain security is a top priority for enterprise developers on a global scale. That is also why JFrog Security Research has been instrumental in identifying and analyzing the biggest threats and devising methods to protect โฆ
The security of the software supply chain is rapidly becoming a paramount concern for organizations โ and for good reason. With the increasing number of published Common Vulnerabilities and Exposures (CVEs), developers face the challenge of delivering software faster than ever before. However, in their quest for speed, many dev and security teams have resorted โฆ
TL;DR: JFrogโs ML Model Management capabilities, which help bridge the gap between AI/ML model development and DevSecOps, are now Generally Available and come with a new approach to versioning models that benefit Data Scientists and DevOps Engineers alike. Model versioning can be a frustrating process with many considerations when taking models from Data Science to โฆ
2023 was a big year. There were many interesting challenges and exciting developments within our industry, like the continued evolution of AI/ML, the discovery and remediation of widespread CVEs, and major leaps forward in the realm of end-to-end software supply chain security. In that spirit, we want to recap the news and articles that you โฆ
