Deployment Coordinator at a government with 10,001+ employees
Real User
Top 20
2024-02-21T23:09:00Z
Feb 21, 2024
My role involves coordinating work and ensuring smooth progress, as well as conducting research and analysis. I don't focus on heavy coding instead, I primarily work on the data and database. JFrog Xray has fixed a static issue where two versions were flagging major vulnerabilities. Additionally, it detects issues like file uploads, enabling the Accelerate tool to alert the development team promptly. They can then investigate CPE from the vulnerability system to understand the criticality, apply fixes, and implement necessary fixes. Xray is a valuable tool for capturing such issues efficiently, making it a handy tool for our development team. When the development team reports to management, the tool assists in identifying and managing the flagged issues. Some can be marked as false positives, while others can be addressed promptly. JFrog Xray is a useful tool. It helps us identify vulnerabilities in dependency libraries. I recommend others to give it a try and see how it can benefit them. Overall, I rate the solution an eight out of ten.
We are using the previous version of JFrog Xray. We have recently moved to JFrog Xray and are onboarding all our projects into JFrog Xray. We are onboarding all our projects into Artifactory, and once everything is in Artifactory, we'll start the indexing. So we've already done the indexing for a few projects, which are being scanned. For others, we are still asking the different project people not to use ACR and GCR and move everything into Artifactory. Overall, I rate JFrog Xray an eight out of ten.
I'm an end-user. We're likely using a version that is the latest or close to the latest. I'd recommend the solution to others. There haven't been any disappointments so far. I'd rate the solution eight out of ten. It's done what is expected so far.
Lead Vulnerability Analyst/ DevSec Ops Specialist at a non-profit with 501-1,000 employees
Real User
Top 20
2023-03-10T14:51:43Z
Mar 10, 2023
Regarding other people looking into this solution, I would definitely recommend this product. Overall, I would rate this solution an eight, on a scale from one to 10, with one being the worst and 10 being the best.
JFrog is on a mission to enable continuous updates through Liquid Software, empowering developers to code high-quality applications that securely flow to end-users with zero downtime. The world’s top brands such as Amazon, Facebook, Google, Netflix, Uber, VMware, and Spotify are among the 4500 companies that already depend on JFrog to manage binaries for their mission-critical applications. JFrog is a privately-held, global company, and is a proud sponsor of the Cloud Native Computing...
My role involves coordinating work and ensuring smooth progress, as well as conducting research and analysis. I don't focus on heavy coding instead, I primarily work on the data and database. JFrog Xray has fixed a static issue where two versions were flagging major vulnerabilities. Additionally, it detects issues like file uploads, enabling the Accelerate tool to alert the development team promptly. They can then investigate CPE from the vulnerability system to understand the criticality, apply fixes, and implement necessary fixes. Xray is a valuable tool for capturing such issues efficiently, making it a handy tool for our development team. When the development team reports to management, the tool assists in identifying and managing the flagged issues. Some can be marked as false positives, while others can be addressed promptly. JFrog Xray is a useful tool. It helps us identify vulnerabilities in dependency libraries. I recommend others to give it a try and see how it can benefit them. Overall, I rate the solution an eight out of ten.
We are using the previous version of JFrog Xray. We have recently moved to JFrog Xray and are onboarding all our projects into JFrog Xray. We are onboarding all our projects into Artifactory, and once everything is in Artifactory, we'll start the indexing. So we've already done the indexing for a few projects, which are being scanned. For others, we are still asking the different project people not to use ACR and GCR and move everything into Artifactory. Overall, I rate JFrog Xray an eight out of ten.
I'm an end-user. We're likely using a version that is the latest or close to the latest. I'd recommend the solution to others. There haven't been any disappointments so far. I'd rate the solution eight out of ten. It's done what is expected so far.
Regarding other people looking into this solution, I would definitely recommend this product. Overall, I would rate this solution an eight, on a scale from one to 10, with one being the worst and 10 being the best.