Use Case: Package Management Tool Consolidation
Tool Consolidation
A single place for developer packages to streamline development
BACKGROUND
Teams ramping up development on new products are often asked, or left, to make do with free or low cost solutions. As they grow and mature, they naturally adopt additional tooling and technologies. Over time this increases the number of places teams use to store their development artifacts creating sprawl, impeding automation, hindering security, and requiring manual efforts to build and release software updates.
It’s not uncommon for organizations to get to a point where they’re storing software artifacts in any number of the following locations:
- Dependencies fetched from multiple package managers such as Maven, PyPi, and NPM
- DockerHub or other container registries
- GitHub or other Git/VCS solutions
- General purpose storage such as S3 buckets, google drive, local share drives
Storing and managing artifacts in multiple locations works for small scale development, but when teams need to accelerate releases, share components across teams (e.g., microservice architectures), or work across geographical boundaries, the adhoc web of storage solutions falls flat.
SOLUTION
JFrog tames the sprawl associated with managing developer artifacts. As a single system to house and manage all artifacts, JFrog Artifactory consolidates an organization’s component ecosystem into a well-governed, automated, universal solution.
Key capabilities supporting package management consolidation with JFrog:
- 30+ package and file types natively supported plus generic storage
- Proxy public registries and cache dependencies
- Federated repositories across locations
- Integrates OOTB with all popular CI/CD tools
- Extensive metadata capture
- Self-hosted, hybrid, and multi-cloud
- Robust RBACs
JFrog serves as the central hub of development processes, caching dependencies and receiving build outputs, then serving them up where needed – whether that’s IDEs, QA environments, CI tools, or for deployment. The extensive automation and integration capabilities allow DevOps teams to set up pipelines/workflows once and know that they will work without any manual interference.
“We wanted to figure out what we can really use instead of having five, six different applications. Maintaining them. Is there anything we can use as a single solution? And JFrog Artifactory came to the rescue. It really turned out to be a one-stop shop for us. It really provided everything that we needed.” Keith Krissl, principal developer, cars.com
With a single system to house all artifacts and builds, organizations can track the binary journey from start to finish to ensure the provenance, quality, and security of all software they release.
RESULTS
Improved Build Efficiency
Organizations typically report 30% faster builds
Holistic Security
A single place to apply supply chain security efforts
Returned Hours
Hundreds of hours saved annually
Greater Visibility
Capture all build info, custom and user generated metadata