Тёмный
JFrog
JFrog
JFrog
Подписаться
jfrog.co/JFrogRU-vid
Fundamentals of DevOps Automation
34:42
12 часов назад
JFrog for MLOps
1:47
День назад
swampUP 2024: Attendee Recap
1:25
14 дней назад
swampUP 2024 Sponsors Highlights
3:00
14 дней назад
swampUP 2023: Attendees recap
1:44
4 месяца назад
JFrog + Qwak for Enterprise MLOps
5:21
4 месяца назад
We’re Hiring! JFrog Referral Program 2024
1:46
4 месяца назад
The JFrog Software Supply Chain Platform
1:44
5 месяцев назад
Комментарии
@JustVlogsHub
@JustVlogsHub 11 часов назад
Great content
@reaperhammer
@reaperhammer 4 дня назад
Cool cool cool
@BettyWilliams-v1q
@BettyWilliams-v1q Месяц назад
Walter Way
@BigBigBadaboom
@BigBigBadaboom Месяц назад
Error occurred during import: Transaction is already completed - do not call commit or rollback more than once per transaction
@walex8393
@walex8393 Месяц назад
なるほど、CopilotとJFrogのインテグレーションを見たいですね
@ReelsCompilation-l6z
@ReelsCompilation-l6z 2 месяца назад
how to setup multiple repository connection ?. I am trying {"repository":[" pac/git-1"," pac/git-2"]}, not working ?
@JFrogInc
@JFrogInc 2 месяца назад
This functionality is not yet supported by Access due to the 1-to-1 matching of properties with the claim JSON sent by GitHub, the current approach is to create an additional identity mapping within the same OIDC integration provider. This setup works as a cascading array until it finds a matching JSON.
@jerikho04
@jerikho04 3 месяца назад
Dear Jfrog folks, this video, just like the rest of your documentation, is horrible. Do you want to improve developer productivity? Well stop wasting people's time searching for trivial things in your documentation website, it looks and behaves like its a first coding project in high school, made with Dreamweaver. Surely you can do better, right?
@realspacemusicvideos
@realspacemusicvideos 3 месяца назад
Could you please elaborate on the specific issues with the Jfrog documentation?
@jerikho04
@jerikho04 3 месяца назад
​@@realspacemusicvideos Yes, here are some of my personal experiences. One has to scroll between links that lead to other links, that lead to more links for some basic info. Artifactory product documentation page has no reference of the installation, which is apparently located at a different page. The Debian/Ubuntu installer is missing some dependencies that must be installed separately. Some features are explained by a single line or so. There is no documentation available for download. Honestly, I used Chatgpt to pull the stuff I needed from the website, which kinda beats the purpose.
@Feelyourbodyallways
@Feelyourbodyallways 4 месяца назад
Nice! How is the repository validated to run this action? Or rather, who can use this cli action snippet.
@JFrogInc
@JFrogInc 3 месяца назад
Hi @Feelyourbodyalways, great question. We provide a straightforward example to keep things simple, with a basic verification process. However, as you can see at timestamp 2:28 in the video, we provide an example of the matching object sent by GitHub. Once GitHub sends this object, we match it against the identity mappings. If they are equal, then you are good to go. Otherwise, the claim JSON verification will fail, and the token won't be sent back. Please let us know if you have further questions.
@WanjaGich
@WanjaGich 4 месяца назад
Hi Sowjanya,Please explain how to migrate data from default db to external postgres db?
@baraluttam
@baraluttam 5 месяцев назад
timeestamp 5:50, Can the scan be filtered based on artifact? in the include subpath can you include only the artifact that you want the report for? if so how would you do that?
@excellencementoringclub
@excellencementoringclub 5 месяцев назад
thank you for the great presentations
@singh46928
@singh46928 6 месяцев назад
what about mastery key for 2 instances?
@fb-gu2er
@fb-gu2er 6 месяцев назад
Jfrog is the worst when it comes to supporting its clients or helping them
@TristanBailey
@TristanBailey 7 месяцев назад
Here's a list of the points mentioned in the transcript: 1. Being an early adopter and providing feedback on new features. 2. Utilizing jfactory as a central place for dependency management and repository use. 3. Implementing code review processes to identify and address security vulnerabilities. 4. Automating static code analysis into the CI/CD pipeline. 5. Integrating security checks into the CI pipeline. 6. Automating security testing, potentially through nightly builds. 7. Utilizing software composition analysis (SCA) with tools like X-ray. 8. Prioritizing vulnerabilities for handling. 9. Ensuring container security by scanning container images for vulnerabilities. 10. Signing and verifying packages and pipelines. 11. Implementing access control and least privilege principles, especially in repositories. 12. Simulating purple team activities and red team challenges to the supply chain. 13. Monitoring threats, including simulating attacks. 14. Having an incident response plan in place for supply chain attacks. 15. Practicing incident response for supply chain attacks. 16. Creating an outline of steps to take in case of a security breach within the software supply chain.
@TristanBailey
@TristanBailey 7 месяцев назад
good summary of points
@obivanbeluii
@obivanbeluii 8 месяцев назад
super👍
@viktorpaulsen627
@viktorpaulsen627 8 месяцев назад
Exercises do not work!
@darthVikes
@darthVikes 8 месяцев назад
@jfrog - is the script still the only way to verify replication success since this was created 3 years ago?
@darthVikes
@darthVikes 8 месяцев назад
@jfrog, would be good to cover how to upgrade mysql5 to mysql8
@gargoyles9999
@gargoyles9999 8 месяцев назад
What is best in life?
@AjitaGupta-d1r
@AjitaGupta-d1r 8 месяцев назад
Quick and dirty - nice! And thankyou!
@ashishmundra
@ashishmundra 8 месяцев назад
Not useful video. - JFrog CLI basic demo is missing, would be good to show some commands to publish or consume, preferably from Github action - Example of Custom User Plugin not provided. It says cleanup plugin, but what exactly it cleans? No enterprise use case is provided that when I should write it. An example states Perform Searches but what does it even mean to perform searches by Custom User Plugin. Also, does not give example on how to make one, upload one and demo. Will be good to re-record as really did not receive much info after spending 18:56 mins (except that I looked up file-spec documentation which went to a site which says documentation moved so not frutiful).
@HelloWorld-lj5xg
@HelloWorld-lj5xg 8 месяцев назад
How GC work ok checksome and deletd data is not affecting on disk space
@rohanbari
@rohanbari 9 месяцев назад
Right now, I'm reading his book. 😂 Love to have such an author!
@EmmanuelOuzan-y1r
@EmmanuelOuzan-y1r 9 месяцев назад
Great Video!
@andrejflieger4182
@andrejflieger4182 9 месяцев назад
Is there any suitable IDE integration for developing user-plugins to have code complein available? I can't find anythig
@JFrogInc
@JFrogInc 9 месяцев назад
Hi! Are you looking for IDE integrations to build user plugins for code completion (you wrote "complein" above) or IDE integrations that support code completion for developing user plugins?
@andrejflieger4182
@andrejflieger4182 9 месяцев назад
@@JFrogInc Damn autocompletion. I mean Code completion. Especially vscode. Furthermore also a suitable documentation probably. The documentation on the Website is really poor
@irshviralvideo
@irshviralvideo 9 месяцев назад
opsera and circleci is way better. dont use froggies
@rahithyareddy6248
@rahithyareddy6248 9 месяцев назад
Could you please tell which version ur using. I am unable to find system import and export options in jrog latest 7x version
@rbaleksandar
@rbaleksandar 9 месяцев назад
The free tier of this tool is useless.
@vajjabageeradha6740
@vajjabageeradha6740 10 месяцев назад
How to export these details from IntelliJ
@sarvo-tha-man
@sarvo-tha-man 10 месяцев назад
is JFrog Curation SAST, DAST or SCA tool. What category does JFrog Curation fall under
@andrewlarsen7074
@andrewlarsen7074 9 месяцев назад
It's none of the above. Curation would be used to prevent SCA violations. So rather than running an SCA scan and finding a bunch of vulnerabilities, curation would prevent developers from pulling the vulnerable packages in to begin with. That assumes you set the policies up properly. It wouldn't catch everything, but it would keep known malicious packages out.
@sarvo-tha-man
@sarvo-tha-man 9 месяцев назад
So what's the category Curation falls under. Any term exists or needs to be coined
@sarvo-tha-man
@sarvo-tha-man 9 месяцев назад
What are the competitor products for Curation
@andrewlarsen7074
@andrewlarsen7074 9 месяцев назад
@@sarvo-tha-man Not sure there's a term for this type of thing. I've just started using curation, so I really can't say what it's competitors are.
@איתיקקה
@איתיקקה 10 месяцев назад
אני ירון חפץ אני חושב שהסרטון לא ברמה לא מכבד מעליב מאוד כמה אתה שוקל?
@Pilouface95
@Pilouface95 10 месяцев назад
Still have no idea of what it is and what does it do after watching it...
@MrNeuroMind
@MrNeuroMind Месяц назад
same xd
@shitshow_1
@shitshow_1 10 месяцев назад
Amazing, this is really a good starter video to understand how Jenkins can be integrated with C/C++ for CI/CD.
@varaprasad6050
@varaprasad6050 11 месяцев назад
How to download the conda install python 3.9.5 through jfrog conda
@EmmanuelOuzan
@EmmanuelOuzan 11 месяцев назад
Still relevent for today?
@LucasHildenbrand256
@LucasHildenbrand256 11 месяцев назад
this helped a lot
@RobertWells-l7e
@RobertWells-l7e 11 месяцев назад
Thanks for this Very useful
@ЕгорГавриленко-е5з
@ЕгорГавриленко-е5з 11 месяцев назад
ammm.... aaaammmm....
@2707marcel
@2707marcel 11 месяцев назад
also ich spreche nochmal für die Jäger unter uns..... Du DaRfSt dA ObEn NeD DrAuF💀🤬
@strato824
@strato824 Год назад
This is fine and well but what if your user is not admin
@sivakumarl31
@sivakumarl31 Год назад
Appreciable, Presentation is very clear and understandable.
@davehaertel5011
@davehaertel5011 Год назад
When I run the install script, I receive "Jq is mandatory to download latest version of jfrog xray native package". Can you explain how to resolve this?
@bruceedge
@bruceedge Год назад
Does not make up the the lack of adequate documentation. Similarly, highlighting commands does not explain the "why" or the context around it. Not to mention the inexplicable use of curl to shore up the glaring missing helm upload support.
@djustinger
@djustinger Год назад
How do you delete, curl doesnt work...
@olympusbiz9583
@olympusbiz9583 Год назад
My id doesn't show the repository but package, artifact are available. Why
@abura3d2012
@abura3d2012 Год назад
why there is no Distroless images for ruby ?
@shubhamkavale5387
@shubhamkavale5387 Год назад
It is very good video
@brunorcabral
@brunorcabral Год назад
Where are "file_manager.h/.cpp" and "opengl_shader.h/cpp"?