Operations | Monitoring | ITSM | DevOps | Cloud

We've Agreed to Acquire Vdoo, Unifying Developers and Security Teams from Source to Device

We’re extremely excited to announce we’ve agreed to acquire Vdoo, a leading, Israeli-based product security company with its roots in binaries and IoT/devices. Vdoo’s team and entire technology portfolio will be incorporated into JFrog, delivering a solution that truly unifies development and security teams with a holistic security approach.

Understanding and tracking the impact of your ever-changing k8s deployments

As developers we’re not always fully aware of security implications stipulated from changes to our code whether these are done in the CI, CD or an artifact database. It is always challenging to predict the impact of a changed 3rd party library, a security context or an RBAC permission, accessing a different network to the same resource or even using an API in a different way than we used to. Understanding the impact immediately and being able to make a change without disrupting the pipeline is therefore an important requirement. This session will present best practices to cope with these day to day changes and will propose a set of tools to address them cohesively.

The Top 4 DevOps Headlines of 2025

Welcome to swampUP 2021! A year ago, we said that in 2020, every company would be a DevOps company. We couldn’t have imagined the news stories 2020 would bring, both globally and in our industry, with DevOps now affecting all business stakeholders. While the worldwide pandemic has shaped the immediate future of DevOps and digital transformation, we move ever-closer to a post-pandemic world, where the foundations laid today will have ripple effects across the marketplace. Join Shlomi Ben Haim, CEO of JFrog, as he kicks off swampUP with some unexpected headlines, taken directly (probably) from the pages of 2025’s news cycle.

The Biggest DevSecOps Hits From swampUP 2021

In the wake of recent events like the SolarWinds hack and the White House executive order on cybersecurity, DevSecOps and security are top-of-mind for most DevOps and security professionals. How to efficiently adapt or adopt a sound DevSecOps practice has become a priority, especially with the U.S. government’s impending mandate requiring software applications to be vetted, and to create a trusted Software Bill Of Materials (SBOM) for each one.

Drive DevSecOps Visibility with JFrog Partner Integrations

If you need your teams to act, you need to alert them where they’re already looking. Yet yesterday’s DevOps practices demand individuals to wrangle with uncorrelated events, multiple UIs, and siloed technologies. Tomorrow’s DevOps must enable teams with: To practice DevSecOps, you’ll need to know where a vulnerable build has been deployed into production, and where to find the corrected build that should replace it.

JFrog How To's - How to Set Up Xray to Scan Repositories, Builds or Bundles

In this video, I'll show you how to get started with JFrog Xray. You will see how to create rules, policies and watches and what the individual components mean. We will also take a look at the Vulnerabilities Reports. Here I will show you how to create, evaluate and export them. This introduction gives you all the essential elements you can use to start looking for vulnerabilities in your project.

How to set up a Private, Remote and Virtual Maven/Gradle Registry

The simplest way to manage and organize your Java dependencies is with a Maven or Gradle repository. You need reliable, secure, consistent and efficient access to your dependencies that are shared across your team, in a central location. Including a place to set up multiple registries, that work transparently with the Maven and Gradle clients.