Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

July 2023

Introducing JFrog Curation

Jul 31, 2023 By JFrog In JFrog
JFrog Curation is an automated DevSecOps solution designed to thoroughly vet and block malicious open source or third-party software packages and their respective dependencies before entering an organization’s software development environment. With JFrog Curation enterprise companies can: Find out more about what's under the hood with JFrog Curation in this informative webinar.
View Video
jfrog

Addressing the npm Manifest Confusion Vulnerability

Jul 20, 2023 By Adam Browning In JFrog

A potential security risk in the npm ecosystem known as “manifest confusion” has recently been spotlighted in a blog post by Darcy Clarke, a former Staff Engineering Manager at GitHub. Clarke mentioned that JFrog Artifactory seems to replicate this issue, so of course we investigated it right away. In this post, we will explain what the issue is and what it might mean for JFrog Artifactory users.

Read Post
jfrog

Defend Your Software Supply Chain by Curating Open-Source Packages Entering Your Organization | Announcing JFrog Curation

Jul 12, 2023 By Asaf Karas In JFrog

Modern organizations are constantly striving to gain a competitive advantage by delivering software solutions at a remarkable pace. To achieve this, they heavily rely on open-source software (OSS) libraries and packages, which constitute a significant portion (80-90%) of their software solution. However, while open-source software offers numerous benefits, it also presents potential security challenges.

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.