DevOps Resource Posts Archive

SHARE:

JFrog swampUP 2024: News and Updates Live From the Show Floor

September 10, 2024

Live updates from this event have concluded. JFrog’s annual user conference, swampUP 2024, brings together developers, DevOps teams, security engineers, SREs, AI/ML Engineers, thought leaders, industry experts, and technical professionals from the world’s leading enterprises. Together, we’ll explore the latest advancements, best practices, and transformative strategies shaping modern EveryOps. Here are live keynote updates coming …

SHARE:

High-Performance AI Unleashed

September 10, 2024

The AI revolution is transforming enterprises faster than you can say, “sudo apt-get install skynet.” According to McKinsey, 65% of organizations now regularly use generative AI, nearly doubling from last year. However, as developers rush to integrate AI into their products, the shift from AI proof-of-concept to production can feel like trying to assemble flat-box …

SHARE:

Streamlining Secure, Intelligent Development: The Power of GitHub and JFrog Together

September 10, 2024

Today’s Hurdles to Efficient Software Development Picture this: You’ve just settled in at home after a long day, ready to relax, when suddenly your phone buzzes. It’s a notification about a failed build in your latest project. Your heart sinks. Your mind starts racing to connect the dots… What went wrong? Where is it broken? …

SHARE:

Revival Hijack – PyPI hijack technique exploited in the wild, puts 22K packages at risk

September 04, 2024

JFrog’s security research team continuously monitors open-source software registries, proactively identifying and addressing potential malware and vulnerability threats to foster a secure and reliable ecosystem for open-source software development and deployment. This blog details a PyPI supply chain attack technique the JFrog research team discovered had been recently exploited in the wild. This attack technique …

SHARE:

Mind the Gap: The Disconnect Between Execs & Developers

August 12, 2024

Note: This blog post was previously published on Hackeroon We surveyed 1,200+ technology professionals from around the globe, including 300+ VP and C-level executives, on their AI/ML usage and software supply chain security efforts. Upon analysis, a surprising gap emerged between what executives believe is happening and what developers and engineers report is happening. Here’s …

SHARE:

Expanding Artifactory’s Hugging Face Support with Datasets

July 16, 2024

When working with ML models, it’s fair to say that a model is only as good as the data it was trained on. Training and testing models on quality datasets of an appropriate size is essential for model performance. Because of the intricate link between a model and the data it was trained on, it’s …

SHARE:

Out with the Old – Keeping Your Software Secure by Managing Dependencies

August 19, 2024

During 2023, the U.S. witnessed a record high in supply chain cyber-attacks, affecting 2,769 organizations. This figure represents the largest number recorded since 2017, marking an approximate 58% annual increase in impacted entities. If there ever was a doubt, now it’s crystal clear that YOUR SOFTWARE SUPPLY CHAIN IS A TARGET. Developers, DevOps and Security …

SHARE:

The Software Extinction Event That Wasn’t

August 15, 2024

Note: This blog post was previously published on DevOps.com Imagine if the world’s most pervasive programming language, used in the majority of organizations, services, websites and infrastructure today, was itself made to be malicious? Cybersecurity researchers from JFrog recently discovered a GitHub Personal Access Token in a public Docker container… due to the popularity of …

SHARE:

CVE-2024-38428 Wget Vulnerability: All you need to know

August 12, 2024

On Sunday, June 2nd 2024, a fix commit was pushed for a vulnerability in GNU’s popular Wget tool. Two weeks later, the vulnerability was assigned the ID CVE-2024-38428 and later was classified as a critical vulnerability – with a CVSS score of 9.1. In this blog, we take a dive deep into this threat by …

SHARE:

Accelerate Your Migration to JFrog SaaS with the AWS ISV Workload Migration Program

August 14, 2024

In the fast-paced, ever-evolving world of software development, the ability to seamlessly migrate and manage workloads on the cloud is a game changer. At JFrog, we’re committed to empowering organizations to achieve their DevOps, DevSecOps, and MLOps goals with speed, security, and efficiency. Migrating these workloads to the cloud offers numerous advantages, including increased scalability, …

JFrog swampUP 2024: News and Updates Live From the Show Floor

High-Performance AI Unleashed

Streamlining Secure, Intelligent Development: The Power of GitHub and JFrog Together

Revival Hijack – PyPI hijack technique exploited in the wild, puts 22K packages at risk

Mind the Gap: The Disconnect Between Execs & Developers

Expanding Artifactory’s Hugging Face Support with Datasets

Out with the Old – Keeping Your Software Secure by Managing Dependencies

The Software Extinction Event That Wasn’t

CVE-2024-38428 Wget Vulnerability: All you need to know

Accelerate Your Migration to JFrog SaaS with the AWS ISV Workload Migration Program

Popular Tags