Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

October 2022

jfrog

Malicious Packages Are a Rising Threat in Software Supply Chain Attacks

Oct 24, 2022 By Jonathan Sar Shalom In JFrog

Welcome to the first post of the malicious software packages series for the DevOps and DevSecOps community. Each Monday, this technical series will focus on various malicious packages and their effects on the software supply chain, all published over the next four weeks. We’ll dive deeper into malicious packages in each post, including Here we go. Let’s discuss malicious software packages in your software supply chain.

Read Post
jfrog

JFrog's Advanced Security Scanners Discovered Thousands of Publicly Exposed API Tokens - And They're Active

Oct 20, 2022 By The JFrog Security Research Team In JFrog

The JFrog Security Research team released the findings of a recent investigation wherein they uncovered thousands of publicly exposed, active API tokens. This was accomplished while the team tested the new Secrets Detection feature in the company’s JFrog Advanced Security solution, part of JFrog Xray.

Read Post
jfrog

DevOps-Centric Security is Finally Here | Announcing JFrog Advanced Security

Oct 18, 2022 By Nati Davidi In JFrog

Today marks an exciting day for JFrog and a substantial step forward towards ensuring end-to-end software supply chain security. JFrog Advanced Security is our unique approach for DevOps-centric security, and the only solution that was built especially for today’s modern DevOps workflows.

Read Post

JFrog Advanced Security

Oct 18, 2022 By JFrog In JFrog
Introducing JFrog Advanced Security, the world’s first DevOps-centric security solution designed to control and protect your software supply chain from code to containers to production. As part of JFrog Xray and integrated into the universal JFrog DevOps Platform, these security features focus at the binary level, revealing issues that are not visible in source code alone. These new features go beyond the traditional software composition analysis (SCA) capabilities of JFrog Xray, with a focus on container security.
View Video

#DevOpsSpeakeasy at #devoxxMA 2022 with Carlos Sanchez @csanchez

Oct 6, 2022 By JFrog In JFrog
In this interview, we speak with Carlos Sanchez @csanchez Senior Cloud Software Engineer at Adobe, member at the Apache Software Foundation, author of Jenkins Kubernetes plugin about Kubernetes!! How moving to Kubernetes opens the door to a world of possibilities, the amount of workloads that can be run and the flexibility it provides. However this comes at a cost on managing the resources used by many applications and teams. Java applications can be specially challenging when running in containers.
View Video

#DevOpsSpeakeasy at #swampUP San Diego 2022 with Eyal Ben Moshe

Oct 3, 2022 By JFrog In JFrog
In this interview, we speak to Eyal Ben Moshe, Head of the Ecosystem Engineering Group at JFrog, about the importance of shifting left and providing tools for developers to keep their software secure. He specifically discusses the release of Frogbit and Docker Desktop Extension and teases the BuildInfo resource, the metadata associated with a build in Artifactory.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.