Product | Update | Details |
---|---|---|
Platform | JFrog Platform Integration with HashiCorp Vault JFrog Subscriptions: ENTERPRISE WITH SECURITY PACK | ENTERPRISE + | The JFrog Platform integration with HashiCorp Vault now enables you to configure an external vault connection to use as a centralized secret management tool not only through the APIs but also using the JFrog Platform UI. |
JFrog Platform SCIM Integration JFrog Subscriptions: ENTERPRISE WITH SECURITY PACK | ENTERPRISE + JFrog Subscriptions: ENTERPRISE WITH SECURITY PACK | ENTERPRISE+ | JFrog Platform now enables you to generate a dedicated admin access token for SCIM in the JFrog Platform, which can then be used in the identity service setup. | |
Signing Keys Management JFrog Subscriptions: ENTERPRISE WITH SECURITY PACK | ENTERPRISE+ | The JFrog Platform now features a centralized dashboard for creating and managing all signing keys. This feature enables you to create and control the keys used to encrypt or digitally sign your artifacts - in one central location | |
Extended Flagging Safe Repositories Support | Declaring local and remote repositories as ‘safe’ by enabling the ‘Priority Resolution’ field for Local and Remoterepositories has been extended to support Alpine, Bower, Conan, Conda, Cran, Go, Gradle, Ivy, Maven, Nuget, and SBT Packages. | |
Support for Controlling Signed URL Download Methods | You now have the option to set your signed URL redirects Direct Cloud Storage using one of these methods: S3, CloudFront, or using a direct download without a signed URL redirect. | |
Security & Compliance | Distroless Scanning | Xray now can scan Google Distroless Images that only contain your application and its runtime dependencies. |
Red Hat Vulnerability Scanner Certification | JFrog Xray is now certified with the Red Hat Vulnerability Scanner Certification. The certification recognizes Xray as a trusted Red Hat security partner. |