JFrog Xray is a universal software composition analysis (SCA) solution that natively integrates with Artifactory. Try our Free cloud Tier. START FOR FREE. Xray empowers developers and DevSecOps teams to identify and mitigate open source vulnerabilities and license compliance violations before they manifest in production.
Xray scans for security vulnerabilities providing visibility into all your artifact metadata and dependencies. Deep recursive scanning is used to reveal any security and license compliance issues in the underlying layers and dependencies, especially those packaged in Docker images and zip files. Should a vulnerability be discovered, a component graph and impact analysis of the component in question is generated to assess any impact to other components — helping you deliver trusted software to your customers.