The software supply chain can’t be secured in isolation. DevOps leaders must talk to the rest of the enterprise to see where the gaps are that they need to fill. These frameworks are a starting ...

The US National Institute of Standards and Technology (NIST) offers its Secure Software Development Framework (SSDF [PDF]) and Cybersecurity Supply Chain Risk Management Practices guide. CISA has ...

CISOs are on the look out for novel attack vectors or future breaches of the upstream assets partners use to deliver their ...

Pharma needs to utilise the latest technology to maintain agility, and hence competitiveness, across the supply chain, says Patrick Lemoine. The pharmaceutical industry has been one of the best ...

A new report out today from software supply chain company JFrog Ltd. warns that an expansion of artificial intelligence ...

Supply chain security emerges as perhaps the most significant vulnerability in CMMC 2.0 readiness. While 66% of organizations ...

Open source software used by more than 23,000 organizations, some of them in large enterprises, was compromised with credential-stealing code after attackers gained unauthorized access to a maintainer ...

The explosive growth in the use of generative artificial intelligence (gen AI) has overwhelmed enterprise IT teams. To keep up with the demand for new AI-based features in software — and to deliver ...

AI/ML Model Proliferation and Attacks are Growing: In 2024, more than 1 million new ML models were added to Hugging Face, with an accompanying 6.5x increase in malicious models, indicating AI and ML ...

The 2025 Best Software Award winners represent the very best in the industry, standing out for their exceptional performance and customer satisfaction. Congratulations to this year’s honorees!” ...

Share this on X (a.k.a. Twitter): @JFrog shares research findings in their Software Supply Chain State of the Union 2025 report. Discover the emerging #DevSecOps trends, risks & best practices to ...