Home / Companies / JFrog / Blog / October 2018

October 2018 Summaries

4 posts from JFrog

Filter
Month: Year:
Post Summaries Back to Blog
C/C++ developers often find transitioning to continuous integration (CI) challenging due to the unfamiliarity with CI servers and tools for managing dependencies and binaries. Microsoft’s Azure DevOps and TFS offer a familiar environment for these developers, but integrating CI servers with build management tools can be cumbersome, often requiring complex shell commands. To streamline this process, the JFrog Artifactory Extension for Azure DevOps and TFS has been introduced, enabling easy integration with the Artifactory binary repository manager. This extension now includes support for Conan, an open-source package manager for C/C++ developers, facilitating tasks such as running Conan commands, resolving dependencies, and publishing build metadata within Azure DevOps. By configuring Azure DevOps to use Artifactory with Conan tasks, developers can automate their builds and manage binaries more efficiently. Additionally, the extension supports various build types beyond C/C++, like npm for JavaScript and Maven for Java, offering comprehensive build and dependency management capabilities.
Oct 29, 2018 773 words in the original blog post.
HashiCorp Nomad is a versatile cluster management tool that extends cloud-native benefits to a wide range of infrastructures, accommodating applications beyond just cloud-native environments. Unlike more complex clustering tools such as Kubernetes, Nomad offers a simpler and more flexible approach, making it appealing to organizations dealing with diverse infrastructure, from bare metal and on-prem virtual machines to cloud services. It allows DevOps teams to efficiently distribute applications and services across various platforms. However, managing dependencies on third-party software remains a challenge, and this is where JFrog Artifactory complements Nomad by providing a robust repository management solution that ensures builds are repeatable, safe, and efficient. Together, Nomad and Artifactory create a seamless application infrastructure experience.
Oct 23, 2018 228 words in the original blog post.
JFrog Access is a critical component for managing authentication and authorization across JFrog services, ensuring that only authorized users can access and perform actions on binaries, depending on their permissions. As part of JFrog Artifactory, Access operates seamlessly in the background without its own user interface, relying on internal REST APIs to connect with services like JFrog Xray, Mission Control, and Distribution. It offers robust security features such as managing user, group, and permission relationships, and introducing access tokens that simplify cross-instance authentication and enable non-user authentication for systems like CI/CD servers. Access tokens can be time-limited or refreshable and can include group privileges, facilitating secure and efficient access within a "circle of trust" among multiple Artifactory instances. Furthermore, Access Federation automates the synchronization of security entities across global JFrog services, streamlining complex user and permission management tasks, and supporting disaster recovery by maintaining up-to-date security configurations across all instances. Through these mechanisms, JFrog Access enhances security from development to production, embodying the DevSecOps principle of integrating security throughout the software development lifecycle.
Oct 21, 2018 1,170 words in the original blog post.
Node.js is a highly popular development technology, widely used as evidenced by data from sources like Stack Overflow and modulecounts.com, with npm registries being critical resources for developers. To efficiently manage npm dependencies and meet tight deadlines, tools like JFrog Artifactory and JFrog Xray are recommended. Artifactory ensures availability by caching dependencies locally, which not only protects against the risks of removed packages but also speeds up build processes. Additionally, Xray scans for security vulnerabilities and unwanted open-source licenses, alerting developers to potential issues before they impact projects. Artifactory's high availability setup guards against server failures, ensuring continuous access to npm registries. Moreover, as a universal artifact repository, Artifactory supports over 20 technologies and provides a native experience for managing npm packages, making it a versatile solution for diverse development needs.
Oct 15, 2018 1,326 words in the original blog post.