Shift Left Security with Golang in VS Code
Most modern software today has moved aggressively into using third-party open source dependencies to reduce duplication and accelerate development by using pre-existing code.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
DevSecOps for Kubernetes-based Applications
In this webinar, we will discuss concerns over security, privacy, and compliance holding back organizations from making the move to fully cloud-native initiatives. As more and more companies orchestrate their containerized applications in Kubernetes, enabling DevSecOps and continuous security becomes a must. We will look at the end-to-end SDLC process - from the first line of code up to an application running in a Kubernetes cluster - to examine the importance of DevSecOps.
CI/CD and the Promise of Agile Transformation
Continuous integration/continuous delivery, more commonly known as CI/CD, promises to help software companies become more agile by delivering software faster and more reliably. The goal of CI/CD is to reduce software development and delivery timelines from months or weeks down to days or even hours. It does this by pushing frequent updates and fixes regardless of size and using automation tools to help the process run smoothly.
Make DevSecOps So: Cloud Enterprise+ on AWS Marketplace
JFrog is pleased to announce that our comprehensive Cloud Enterprise+ plan is now available on Amazon Web Services (AWS) Marketplace through Private Offers. JFrog Cloud Enterprise+ on AWS is a universal, highly-available SaaS offering of the JFrog Platform for demanding DevSecOps at global scale.
CI/CD In Confidence: How Pipelines Keeps Your Secrets
A friend that can’t keep a secret isn’t one you’ll rely on. The same is true for your mission critical CI/CD tool that you have to entrust with credentials for each integrated component. Keeping your secrets safe can be a challenge for CI/CD tools, since they need to connect to such a variety of other services. Each one needs its own password or token that must be kept hidden from prying eyes.
Building Secure Go Projects with Free Vulnerability Scanning in VSC Code
Go 1.13 introduced important security features to Go Modules including a checksumdb that verifies that your dependencies haven’t been tampered with. While the integrity of the data can be verified this way - Go Modules can still have security vulnerabilities. Join this webinar to watch a technical walkthrough on how to keep your Go Modules secure.
Getting DevSecOps Right in Financial Services
Join this webinar to learn best practices and patterns used by some of the largest FinServ enterprises in the world to accelerate software releases while mitigating risk. Discover how to enable security, compliance, and auditability as an integral part of your DevOps processes, at scale.
Detecting, Reporting and Mitigating Vulnerabilities for Go Modules
Go Module vulnerabilities frustrate the lives of many Go developers and can turn a simple project into a battle of endurance between the dev and their patience. With the process of CI/CD shifting left more and more, it’s becoming even more pertinent for developers to be able to track and report vulnerabilities as early as possible. JFrog GoCenter can help track and mitigate vulnerabilities and make the lives of Go developers easier.
Free Go Module Vulnerability Scanning in Visual Studio Code
If you’re a Golang developer using Visual Studio Code, keeping at-risk Go Modules out of your apps just got easier, and for free. Today we’re announcing a new version of the JFrog extension for VS Code, available for free download. This integration brings live vulnerability information about every public Go Module you’re using directly into your source editor from the rich metadata of JFrog GoCenter.
Universal Artifact Management and Security Scanning - DevSecOps with JFrog Cloud ProX
Are you ready to deliver higher quality releases more quickly, efficiently and securely? In this webinar you will learn how to accelerate your delivery, with confidence. We will demo how JFrog Cloud ProX combines all the benefits of Artifactory Universal Repository Manager, with JFrog Xray - for integrated security vulnerability scanning & license compliance.