JFrog's Xray and PagerDuty integrations allow DevSecOps teams to receive PagerDuty notifications for open source security vulnerabilities, license compliance violations and continuous scanning of packages and container images to quickly fix issues.
PagerDuty and Xray
Xray Provides Deep Recursive Scan Through All Layers
Unprecedented visibility of your artifacts and dependencies enables Xray to provide an impact analysis of any issues discovered in your software. Deep recursive scanning examines all the underlying layers and dependencies of components, even those packaged in Docker images and ZIP files.
Enterprise Ready Build Integrations
As scaling complexity grows, the need for composition analysis becomes more important. Xray allows you to drill down or zoom out within your entire components graph and identify the real impact of every violation found. This can help you reduce the cost, time, and risk of delivering changes by allowing for more incremental updates to applications in production. Additionally, with our PagerDuty and Pipelines integrations with your CI/CD servers, you can stop infected builds from ever getting to your repositories. During the build process, Xray will notify your CI server if an infected artifact is being included in your packages so the build can be halted before completion.