Devops Resources Home

JFrog Named as a Visionary in the 2025 Gartner® Magic Quadrant™ for Application Security Testing
October 22, 2025

We’re excited to announce that Gartner has named JFrog a ‘Visionary’ in the 2025 Magic QuadrantTM for Application Security Testing. We believe this reflects JFrog’s forward thinking strategy of integrating application security seamlessly throughout the entire software development lifecycle in ways that help organizations deliver their most secure, trusted applications without impacting developers’ productivity.  Innovation …

Read More

Shifting Security ‘Lefter’ Than Left Is The Key To Avoiding Risky Packages
September 19, 2025

As the AI revolution accelerates, developers are being inundated with a dazzling array of new software packages and game-changing tools such as GitHub CoPilot, Sourcegraph, Qodo, Cursor, Goose, and others that promise incredible advances in productivity and impact. The excitement over this is high and just keeps on growing. Cyberattackers share equally in this excitement; …

Read More

From Silos to Synergy: Unifying Your Security Tools for a Stronger More Resilient Software Supply Chain
October 01, 2025

In the race to secure today’s ever-expanding attack surface, many companies have made a  practice of using a mix of tools to monitor, assess, and remediate threats. This practice has resulted in a fragmented and chaotic landscape of security solutions across several teams, increasing complexity and forcing companies to have a reactive vs. proactive security …

Read More
Chaos-Mesh Vulnerability__Th

Chaotic Deputy: Critical vulnerabilities in Chaos Mesh lead to Kubernetes cluster takeover
September 16, 2025

JFrog Security Research recently discovered and disclosed multiple CVEs in the highly popular Chaos engineering platform – Chaos-Mesh. The discovered CVEs, which we’ve named Chaotic Deputy are CVE-2025-59358, CVE-2025-59360, CVE-2025-59361 and CVE-2025-59359. The last three Chaotic Deputy CVEs are critical severity (CVSS 9.8) vulnerabilities which can be easily exploited by in-cluster attackers to run arbitrary …

Read More
Robotic frog standing upright with mechanical limbs on a green background;

Key Takeaways from Frogward Innovation Days in India
September 18, 2025

At JFrog India, we recently wrapped up Frogward Innovation Days—a week-long celebration in Bangalore where internal teams from engineering, IT, marketing, sales ops, and support came together to collaborate, experiment, and solve real-world challenges. Before diving into the highlights, it’s worth sharing what makes Frogward Innovation Days unique. This isn’t just a week of fun …

Read More

The AI/ML Regulatory Landscape and How to Stay Ahead
September 11, 2025

The entire world of technology is abuzz about AI/ML. It’s arguably the most disruptive technology to society since the smartphone. In fact, Gartner estimates that the number of companies using open-source AI directly will increase tenfold by 2027. While this rapid advance is fueling quantum leaps in innovation, it also ignites increasing scrutiny from regulatory …

Read More
A computer screen displays code with floating app icons, including Python and Chrome

Stop the Chaos: How to Centralize, Secure, and Control Developer Extensions
September 10, 2025

Picture this: A new developer joins your team, excited to start contributing. On day one, they spend hours installing and configuring their IDE, searching for the “right” extensions. Their setup ends up being completely different from everyone else’s. Sound familiar? Worse yet, what if that “productivity-boosting” extension or new MCP server they just installed also …

Read More
Blog_Thumbnail (1)

swampUP 2025 Recap: The Quantum Shift in Software Delivery Requires a Unified Approach
September 17, 2025

And that’s a wrap! Held in beautiful Napa Valley, swampUP 2025, JFrog’s annual customer conference brought together developers, operations, security, compliance, and AI/ML leaders – all facing the same burning challenges posed by the AI-driven quantum shift in software delivery. In the keynotes, breakout sessions, and side-conversations over wine and coffee, a common theme was …

Read More

Trusted AI Delivery: Introducing the JFrog AI Catalog
September 09, 2025

The rapid pace of AI innovation is driving new possibilities for every organization. Yet, for many, the journey from inception to reliable, production-ready AI applications is riddled with hidden challenges: proliferation of models, security blind spots, and a desperate need for consistent governance. You want to harness the power of AI, but not at the …

Read More

Announcing JFrog’s Evidence Partner Ecosystem
September 09, 2025

As software supply chains get more complex, your GRC initiatives become more critical. You need a deeper level of assurance that your software has gone through required processes as it moves toward release. The stakes are only getting higher; new software and AI regulations are gaining ground, and businesses that aren’t able to prove compliance …

Read More

Popular Tags