Best Practices: Onboarding Jfrog Xray

JFrog Xray is a Software Composition Analysis tool (SCA) which is tightly integrated with JFrog Artifactory to ensure security and compliance governance for the organization binaries throughout the SDLC. This video provides best practices learned from customers for successfully deploying JFrog Xray into your organization and performing a real Shift-Left. It will focus on two keys to success, 1. involving R&D and 2. starting small and working in cycles.

Speed Up Your Maven Builds With Jfrog Artifactory

The code we develop ends up being packaged into artifacts that are consumed as dependencies during the development of other software components. JFrog offers an end-to-end Maven repository solution to resolve complex challenges that come with consuming and developing all these artifacts. There are many reasons why you may want to use JFrog Artifactory as your Maven repository. As a Maven repo, Artifactory is both a source for artifacts needed for Maven builds and a target to deploy artifacts generated in the build process.

Managing Sensu Go 6 using Ansible

Earlier this year, we shared the certified Ansible Collection for Sensu Go, which makes it easy to automate your monitoring and achieve real-time visibility into auto-scaling infrastructure. Now that Sensu Go 6 has been released, we’ll share the latest updates on the Collection, including the management aspects of Sensu Go 6, with a focus on the structure of Ansible playbooks in the Sensu Go 6 world.


Reduce Security Cost by Shifting Left

With the emergence of “Shift Left” as common practice for development, we’re seeing many opportunities to reduce costs around our development practices, but what about security? Prisma Cloud is supporting “Shift Left” by making their scanning capabilities available to Developers and CI Tooling to run scans against microservice projects. As a bonus, the Prisma Cloud product suite scanning capabilities fit perfectly within Codefresh.


Top Go Modules: Writing Unit Tests with Testify

All developers have seen them, even in well-structured Golang programs: comments suggesting you keep away from lines of code since they seem to be working in a magic way. These warnings make us timid, fearing we might break something. But applications need to change, to improve and innovate. That’s why unit tests are a vital part of software development. They help developers know whether the small parts of their software perform their intended function correctly.

Microsoft Azure & JFrog: Accelerating Deployment With Virtual Kubelet And Artifactory

Virtual Kubelet simplifies the management of your Kubernetes cluster by rapidly spinning up pods behind an abstraction that takes care of scaling up and down your cluster. JFrog Artifactory is a universal binary repository that serves as a highly scalable container registry with advanced security scanning of container images. By combining Virtual Kubelet on Azure Container Instances (ACI) for fast orchestration and Artifactory to reliably serve container images, you get a highly scalable and secure platform for application deployment.

Monitor your Package Activity and Save on Storage!

With the introduction of the Package Activity API and accompanying CLI command, you can now quickly and easily check your entire repository for packages' activity status or even take a detailed approach and view packages individually (per day/per package). You can save on your storage costs by eliminating inactive packages and retaining only the packages you or your users derive value from storing and distributing via Cloudsmith.