JFrog Ltd. (“JFrog”) (NASDAQ: FROG), the Liquid Software company and creators of the JFrog DevOps Platform, today introduced a new Docker Desktop Extension for JFrog Xray that allows organizations to automatically scan Docker Containers for vulnerabilities and violations early in the development process. Available through JFrog’s free tier subscription, the new Xray integration with Docker Desktop helps increase productivity, reduce risk, and speed time-to-deployment.
“We’re thrilled to extend our partnership and integrations with Docker to now include JFrog Xray for vulnerability scanning, forensics, and compliance capabilities,” said Stephen Chin, Vice President of Developer Relations, JFrog. “At a time when software supply chain attacks are on the rise, we’re glad we can empower developers to have greater insight into any exposures, early, so they can engage the necessary teams for timely response and remediation – reducing downtime and avoiding loss of trust from end customers.”
Research by IDC indicates there will be 500 million new applications developed in the next few years – more than all applications that have been developed in the past 40 years of IT1. At the same time, the recent surge in software supply chain attacks makes securing those applications paramount – meaning developers must integrate security checks at every stage of the software development lifecycle.
Also Read: Top Three API Security Practices for CISOs
The JFrog integration with Docker Desktop Extensions allows developers to:
- Monitor and audit the security of software encapsulated in Docker containers
- Identify vulnerable artifacts inside Docker containers prior to deployment and once they are in production
- Conduct enhanced forensic investigations that provide a complete view of software security incidents
- Get up and running quickly with an easy connection from the JFrog Platform to the Docker Desktop application.
“Docker is obsessed with developer ergonomics and is committed to filling and improving the developer experience gap,” said Webb Stevens, Docker’s SVP of Secure Software Supply Chain. “We welcome JFrog to the Docker Extension marketplace, expanding the applications and capabilities available for millions of registered Docker developers.”
For more information on the features and advantages of the Docker Desktop Extension for JFrog Xray, read this blog or visit JFrog’s virtual booth during DockerCon 2022, taking place online May 9-10th. Additional details on the Docker Extensions program can be found here. Stephen Chin, VP of Developer Relations for JFrog, will kick-off the DockerCon proceedings on Tuesday, May 10th at 8:00 am PT with his keynote session titled, “Security and Development at Harmony.” The keynote will be followed by a breakout session at 11:45 am PT featuring JFrog Developer Advocate, Melissa McKay, and members of the F5 team, detailing how Docker Desktop and JFrog Xray enabled their teams to be proactive vs. reactive in their security practices. View the complete show agenda and register here.