Join us

ContentUpdates and recent posts about JFrog Xray..
Discovery IconThat's all about @JFrog Xray — explore more posts below...
 Activity
devopslinks
@devopslinks added a new tool Syft , 1 hour, 10 minutes ago.
 Activity
kaptain
@kaptain added a new tool KubeLinter , 1 hour, 14 minutes ago.
 Activity
bridgecrewio
@bridgecrewio started using tool checkov , 1 hour, 18 minutes ago.
 Activity
devopslinks
@devopslinks added a new tool Grype , 1 hour, 21 minutes ago.
 Activity
kaptain
@kaptain added a new tool Hadolint , 1 hour, 30 minutes ago.
 Activity
varbear
@varbear added a new tool Bandit , 1 hour, 33 minutes ago.
 Activity
devopslinks
@devopslinks added a new tool JFrog Xray , 1 hour, 35 minutes ago.
 Activity
devopslinks
@devopslinks added a new tool OWASP Dependency-Check , 1 hour, 39 minutes ago.
 Activity
varbear
@varbear added a new tool pre-commit , 1 hour, 43 minutes ago.
 Activity
devopslinks
@devopslinks added a new tool GitGuardian , 1 hour, 47 minutes ago.
JFrog Xray is an enterprise-grade Software Composition Analysis (SCA) and security platform built to work deeply with JFrog Artifactory. It analyzes binaries, dependencies, and container images to detect vulnerabilities, license issues, and policy violations across the entire software supply chain. Xray performs recursive scanning, meaning it inspects every layer and transitive dependency of an artifact. It integrates with CI/CD pipelines, IDEs, and developer workflows to block risky components before they reach production. Large organizations use Xray to enforce governance, accelerate secure release cycles, and maintain continuous visibility into their artifacts from build to deployment.