JFrog Frogbot is a Git bot that scans your Git repositories for security vulnerabilities. It scans a pull request immediately after it is opened but before it is merged. This process notifies the user if the pull request is about to introduce new vulnerabilities to the code. This capability ensures that the code is scanned and can be fixed even before vulnerabilities are introduced into the code. JFrog Frogbot also scans the Git repository regularly and creates a pull request with a fix for each detected vulnerability.
JFrog Frogbot documentation can be found at this location.