JFrog, a renowned provider of software supply chain management tools, has recently announced the launch of JFrog Curation, an automated DevSecOps solution designed to safeguard organizations’ development environments by preventing malicious open source software packages from entering their systems. By offering centralized control and visibility over third-party binaries, JFrog Curation enhances software development processes while ensuring the safety and compliance of the organization.
According to Huzaifa Dalal, the DevSecOps evangelist at JFrog, the main objective of security developers is to enable their developers to work more efficiently while keeping their organizations secure and compliant. JFrog Curation directly addresses these challenges by blocking malicious packages and providing improved CVE compliance and risk filters. Additionally, the solution offers a comprehensive audit trail, allowing organizations to track the origin and flow of software packages within their systems.
JFrog Curation comes preloaded with a range of template policies that adhere to different regulatory requirements. Customers also have the flexibility to edit or add their own policies, ensuring that their software development processes align with their unique needs. The audit trail feature plays a crucial role in providing centralized visibility and control, enabling organizations to maintain a secure software supply chain.
JFrog already boasts an impressive customer base of around 7,200 organizations, with 89% of the Fortune 100 utilizing JFrog Artifactory. The launch of JFrog Curation further solidifies the company’s position in the market and expands its portfolio of enterprise solutions.
In a world where software plays an increasingly vital role in business success, securing the software supply chain has become paramount. Shlomi Ben Haim, the CEO and co-founder of JFrog, emphasizes the significance of JFrog Curation as an addition to their suite of enterprise solutions, enabling organizations to build and deliver software quickly and securely.
The launch of JFrog Curation comes at a time when enterprises are growing more concerned about the security of their software pipelines. According to a recent report by Gartner, 60% of enterprise application security budgets will be allocated to rapid detection and response approaches by 2025, up from 30% in 2020.
JFrog’s move into the enterprise security space is a strategic one, leveraging its current market position and addressing a critical need for businesses. As the demand for enterprise security solutions continues to rise, JFrog is well-positioned to capitalize on this trend and expand its range of offerings.
In conclusion, JFrog Curation serves as an automated DevSecOps solution that bolsters the security of software supply chains. With its centralized control, improved compliance, and comprehensive audit trail capabilities, JFrog Curation offers organizations the peace of mind they need to develop software faster while ensuring safety and compliance.
