JFrog

DevOps Speakeasy with Tracy Ragan

Aug 7, 2023 By JFrog In JFrog

This episode of DevOps Speakeasy features Tracy Ragan, CEO of DeployHub and CDF board member. Ragan joins us to discuss how to secure your DevOps pipeline with new security tools. There has been a security awakening among IT teams around the world. This awakening has resulted in the release of new open source tools that you can use today. From hardening the build process to gathering actionable supply chain intelligence. Her session will review the new generation of open source security tools to incorporate into your security strategy.

View Video

JFrog

Read more about DevOps Speakeasy with Tracy Ragan

Introducing JFrog Curation

Jul 31, 2023 By JFrog In JFrog

JFrog Curation is an automated DevSecOps solution designed to thoroughly vet and block malicious open source or third-party software packages and their respective dependencies before entering an organization’s software development environment. With JFrog Curation enterprise companies can: Find out more about what's under the hood with JFrog Curation in this informative webinar.

View Video

JFrog

Read more about Introducing JFrog Curation

Addressing the npm Manifest Confusion Vulnerability

Jul 20, 2023 By Adam Browning In JFrog

A potential security risk in the npm ecosystem known as “manifest confusion” has recently been spotlighted in a blog post by Darcy Clarke, a former Staff Engineering Manager at GitHub. Clarke mentioned that JFrog Artifactory seems to replicate this issue, so of course we investigated it right away. In this post, we will explain what the issue is and what it might mean for JFrog Artifactory users.

Read Post

JFrog

Read more about Addressing the npm Manifest Confusion Vulnerability

Defend Your Software Supply Chain by Curating Open-Source Packages Entering Your Organization | Announcing JFrog Curation

Jul 12, 2023 By Asaf Karas In JFrog

Modern organizations are constantly striving to gain a competitive advantage by delivering software solutions at a remarkable pace. To achieve this, they heavily rely on open-source software (OSS) libraries and packages, which constitute a significant portion (80-90%) of their software solution. However, while open-source software offers numerous benefits, it also presents potential security challenges.

Read Post

JFrog

Read more about Defend Your Software Supply Chain by Curating Open-Source Packages Entering Your Organization | Announcing JFrog Curation

Prevent Credential Exposure in Code

Jun 28, 2023 By Paul Garden In JFrog

In today’s software development world, developers rely on numerous types of secrets (credentials), to facilitate seamless interaction between application components. As modern applications become more complex and require authentication for services and dependencies, the practice of hardcoding secrets during software development is on the rise.

Read Post

JFrog

Read more about Prevent Credential Exposure in Code

How to Spend Less Time Fixing CVEs

Jun 23, 2023 By JFrog In JFrog

One of the most common complaints of SCA tools from developers is that they generate far too many results, requiring them to fix lots of vulnerabilities that don’t in reality, pose any risk. This wastes time, money and lowers productivity.

View Video

JFrog

Read more about How to Spend Less Time Fixing CVEs

Securing Your Software Supply Chain with JFrog and Azure

Jun 22, 2023 By JFrog In JFrog

Building your software supply chain on Azure can make your supply chain easier to manage, more scalable, and more secure. View this walkthrough on how to start building your supply chain today and leave with a roadmap for keeping your company and customers safe!

View Video

JFrog

Read more about Securing Your Software Supply Chain with JFrog and Azure

Three approaches to strengthening security with allowlists

Jun 21, 2023 By Avinash Jha In JFrog

There are many ways bad actors try to infiltrate and exploit companies, including by gaining access to your internal network and the applications connected to it. With more organizations adopting products in the cloud, or at the very least connected to the internet, addressing this potential attack vector is an important element of any security strategy.

Read Post

JFrog

Read more about Three approaches to strengthening security with allowlists

JFrog and Atlassian simplify DevOps-Centric security

Jun 6, 2023 By Kristian Taernhed In JFrog

Atlassian has long been helping agile teams collaborate, track progress, and manage projects more efficiently, and is now simplifying software security for Jira Software Cloud users. We’re excited to announce that JFrog has joined Atlassian as a security partner.

Read Post

JFrog

Read more about JFrog and Atlassian simplify DevOps-Centric security

Jfrog Security in Jira Demo

Jun 1, 2023 By JFrog In JFrog

JFrog Security in Jira empowers development teams to directly impact an organization's security posture by integrating vulnerability remediation into Jira DevOps workflows for trusted releases at scale. JFrog and #Atlassian are simplifying DevOps-centric security.

View Video

JFrog

Read more about Jfrog Security in Jira Demo

Subscribe to JFrog

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

JFrog

DevOps Speakeasy with Tracy Ragan

Introducing JFrog Curation

Addressing the npm Manifest Confusion Vulnerability

Defend Your Software Supply Chain by Curating Open-Source Packages Entering Your Organization | Announcing JFrog Curation

Prevent Credential Exposure in Code

How to Spend Less Time Fixing CVEs

Securing Your Software Supply Chain with JFrog and Azure

Three approaches to strengthening security with allowlists

JFrog and Atlassian simplify DevOps-Centric security

Jfrog Security in Jira Demo

Monthly Archive

Follow Us