Upgrade to Pro — share decks privately, control downloads, hide ads and more …

安全なソフトウェアサプライチェーンの実現 / secure-software-supply-c...

Avatar for Tsuyoshi Miyake Tsuyoshi Miyake
May 18, 2022
Technology
0
34

安全なソフトウェアサプライチェーンの実現 / secure-software-supply-chain-with-jfrog

2022/05/18 に実施した JFrog x SoftBank x PrismaCloud 共同 DevSecOps セミナーの JFrog 発表分です

Avatar for Tsuyoshi Miyake

Tsuyoshi Miyake

May 18, 2022
Tweet

More Decks by Tsuyoshi Miyake

See All by Tsuyoshi Miyake
JFrog 最新情報 - JFrog DevOps プラットフォームの今までとこれから / jfrog-update-for-devopskaigi-2022
Avatar for Tsuyoshi Miyake tsuyo
0
420
猿でもわかるコンテナ V3 / a-monkeys-guide-to-container-v3
Avatar for Tsuyoshi Miyake tsuyo
0
65
猿でもわかる DevOps / a-monkeys-guide-to-devops
Avatar for Tsuyoshi Miyake tsuyo
0
800
はじめての JFrog Platform V2 / getting-started-with-jfrog-platform-v2
Avatar for Tsuyoshi Miyake tsuyo
0
350
はじめての JFrog Distribution / getting-started-with-jfrog-distribution
Avatar for Tsuyoshi Miyake tsuyo
0
170
はじめての JFrog Pipelines / getting-started-with-jfrog-pipelines
Avatar for Tsuyoshi Miyake tsuyo
0
200
はじめての JFrog Xray / getting-started-with-jfrog-xray
Avatar for Tsuyoshi Miyake tsuyo
0
1.5k
はじめての JFrog Artifactory / getting-started-with-jfrog-artifactory
Avatar for Tsuyoshi Miyake tsuyo
0
1.1k
はじめての JFrog Platform / getting-started-with-jfrog-platform
Avatar for Tsuyoshi Miyake tsuyo
0
810

Other Decks in Technology

See All in Technology
AIエージェント開発用SDKとローカルLLMをLINE Botと組み合わせてみた / LINEを使ったLT大会 #14
Avatar for you(@youtoy) you
PRO
0
100
バッチ処理で悩むバックエンドエンジニアに捧げるAWS Glue入門
Avatar for morimorikochan diggymo
3
190
生成AI時代のデータ基盤設計〜ペースレイヤリングで実現する高速開発と持続性〜 / Levtech Meetup_Session_2
Avatar for Sansan R&D sansan_randd
1
150
現場で効くClaude Code ─ 最新動向と企業導入
Avatar for TakaakiKakei takaakikakei
1
230
Terraformで構築する セルフサービス型データプラットフォーム / terraform-self-service-data-platform
Avatar for pei0804 pei0804
1
160
AIのグローバルトレンド2025 #scrummikawa / global ai trend
Avatar for kyonmm kyonmm
PRO
1
270
Snowflakeの生成AI機能を活用したデータ分析アプリの作成 〜Cortex AnalystとCortex Searchの活用とStreamlitアプリでの利用〜
Avatar for Nayuta S. nayuts
1
470
Obsidian応用活用術
Avatar for 松濤Vimmer onikun94
1
470
品質視点から考える組織デザイン/Organizational Design from Quality
Avatar for miisan mii3king
0
200
AI開発ツールCreateがAnythingになったよ
Avatar for s sato tendasato
0
120
Function Body Macros で、SwiftUI の View に Accessibility Identifier を自動付与する/Function Body Macros: Autogenerate accessibility identifiers for SwiftUI Views
Avatar for Yuki Miida miichan
2
180
Evolución del razonamiento matemático de GPT-4.1 a GPT-5 - Data Aventura Summit 2025 & VSCode DevDays
Avatar for Lautaro Carro lauchacarro
0
170

Featured

See All Featured
Fight the Zombie Pattern Library - RWD Summit 2016
Avatar for Marcelo Somers marcelosomers
234
17k
Rebuilding a faster, lazier Slack
Avatar for samanthasiow samanthasiow
83
9.2k
Intergalactic Javascript Robots from Outer Space
Avatar for Vicent Martí tanoku
272
27k
Code Reviewing Like a Champion
Avatar for maltzj maltzj
525
40k
Making the Leap to Tech Lead
Avatar for Ryan Cromwell cromwellryan
135
9.5k
XXLCSS - How to scale CSS and keep your sanity
Avatar for Zaharenia Atzitzikaki sugarenia
248
1.3M
Learning to Love Humans: Emotional Interface Design
Avatar for Aarron Walter aarron
273
40k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
Avatar for panda_program panda_program
112
20k
Connecting the Dots Between Site Speed, User Experience & Your Business [WebExpo 2025]
Avatar for Tammy Everts tammyeverts
8
520
Easily Structure & Communicate Ideas using Wireframe
Avatar for Afnizar Nur Ghifari afnizarnur
194
16k
Put a Button on it: Removing Barriers to Going Fast.
Avatar for kastner kastner
60
4k
Fireside Chat
Avatar for paigeccino paigeccino
39
3.6k

Transcript

  1. DevSecOps with JFrog Platform

  2. 2 § § Sr. DevOps Acceleration Engineer @JFrog § DevOps

    Liquid Software § @tsuyoshi_miyake [email protected]

  3. 3 TPS TPS - Wikipedia: Toyota Production System (https://en.wikipedia.org/wiki/Toyota_Production_System) DevOps

  4. • • • 4

  5. 1 SSC N 5 • • •

  6. 1 N 6 VCS (Git) CI/CD ??? • • •

  7. SSC OSS B C A OSS OSS SSC SSC 7

  8. 8 • • • •

  9. (CVE) by OSS (CVE) Executive Order on Improving the Nation

    s Cybersecurity CVE 9

  10. 24/7 Dedicated Support + DevOps Acceleration Service Arm BUILD TEST

    RELEASE DEPLOY CI/CD On Premises & Multicloud VCS ACCESS FEDERATION ACL SSO 10 JFrog Platform

  11. Artifactory for 11 docker-prod-local docker-dev-local (default) docker-qa-local Docker Hub docker-remote

    docker

  12. WATCHES Xray for SBOM (Software Bill of Materials) 12 POLICIES

    Security License Fail Build Web Hooks, Slack, Emails XUC (Xray Update Center) Bundle Build Build Repo Repo Frogbot IDE XRAY ARTIFACTORY SBOM (SPDX, CycloneDX)

  13. 13 PIPELINES > git commit Public Repos IDE Git Repo

    package .json ARTIFACTORY XRAY PLUGIN XRAY DISTRIBUTION DISTRIBUTION EDGE DISTRIBUTION EDGE Connect Pull Request with JFrog Platform

  14. JFrog 14

  15. THANK YOU!