Home / Companies / JFrog / Blog / Post Details
Content Deep Dive

Stop Policies From Breaking Your Builds

Blog post from JFrog

Post Details
Company
Date Published
Author
Jacqueline Basil, JFrog Product Marketing Manager, Security
Word Count
671
Company Posts That Month
15
Language
English
Hacker News Points
-
Summary

Security policies are critical for protecting software supply chains, yet they often disrupt builds, causing frustration among DevOps and security teams. This challenge arises when security measures, meant to prevent supply chain attacks, block packages due to policy violations, leading to failed builds and wasted developer time. The solution is not to relax policies but to enhance tooling, as demonstrated by JFrog Curation's Compliant Version Selection (CVS). This capability finds and serves the highest policy-compliant package versions automatically, transforming security enforcement from a roadblock into a seamless process. Unlike traditional binary approaches that halt builds, CVS offers a block-and-serve model, ensuring that developers receive compliant packages without workflow interruptions. This not only maintains security without impeding development but also saves significant developer time, enhancing trust in security policies. CVS is integrated into JFrog Curation, applying instantly across ecosystems, and extends its governance to AI/ML models, ensuring robust policy compliance without additional burden on developers.

Trends Found in this Post

No tracked trend matches for this post yet.