Lock in $30 Savings on PRO—Offer Ends Soon! ⏳
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
安全なソフトウェアサプライチェーンの実現 / secure-software-supply-c...
Search
Tsuyoshi Miyake
May 18, 2022
Technology
0
45
安全なソフトウェアサプライチェーンの実現 / secure-software-supply-chain-with-jfrog
2022/05/18 に実施した JFrog x SoftBank x PrismaCloud 共同 DevSecOps セミナーの JFrog 発表分です
Tsuyoshi Miyake
May 18, 2022
Tweet
Share
More Decks by Tsuyoshi Miyake
See All by Tsuyoshi Miyake
JFrog 最新情報 - JFrog DevOps プラットフォームの今までとこれから / jfrog-update-for-devopskaigi-2022
tsuyo
0
440
猿でもわかるコンテナ V3 / a-monkeys-guide-to-container-v3
tsuyo
0
75
猿でもわかる DevOps / a-monkeys-guide-to-devops
tsuyo
0
820
はじめての JFrog Platform V2 / getting-started-with-jfrog-platform-v2
tsuyo
0
380
はじめての JFrog Distribution / getting-started-with-jfrog-distribution
tsuyo
0
180
はじめての JFrog Pipelines / getting-started-with-jfrog-pipelines
tsuyo
0
220
はじめての JFrog Xray / getting-started-with-jfrog-xray
tsuyo
0
1.5k
はじめての JFrog Artifactory / getting-started-with-jfrog-artifactory
tsuyo
0
1.2k
はじめての JFrog Platform / getting-started-with-jfrog-platform
tsuyo
0
830
Other Decks in Technology
See All in Technology
AI駆動開発の実践とその未来
eltociear
1
480
「図面」から「法則」へ 〜メタ視点で読み解く現代のソフトウェアアーキテクチャ〜
scova0731
0
490
意外と知らない状態遷移テストの世界
nihonbuson
PRO
1
240
AIエージェント開発と活用を加速するワークフロー自動生成への挑戦
shibuiwilliam
4
840
投資戦略を量産せよ 2 - マケデコセミナー(2025/12/26)
gamella
0
260
Oracle Database@Google Cloud:サービス概要のご紹介
oracle4engineer
PRO
1
760
Bedrock AgentCore Evaluationsで学ぶLLM as a judge入門
shichijoyuhi
2
240
テストセンター受験、オンライン受験、どっちなんだい?
yama3133
0
140
マイクロサービスへの5年間 ぶっちゃけ何をしてどうなったか
joker1007
19
7.5k
『君の名は』と聞く君の名は。 / Your name, you who asks for mine.
nttcom
1
120
[Data & AI Summit '25 Fall] AIでデータ活用を進化させる!Google Cloudで作るデータ活用の未来
kirimaru
0
3.7k
Identity Management for Agentic AI 解説
fujie
0
460
Featured
See All Featured
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
35
3.3k
Ruling the World: When Life Gets Gamed
codingconduct
0
100
Claude Code のすすめ
schroneko
65
200k
The MySQL Ecosystem @ GitHub 2015
samlambert
251
13k
What the history of the web can teach us about the future of AI
inesmontani
PRO
0
370
Discover your Explorer Soul
emna__ayadi
2
1k
Git: the NoSQL Database
bkeepers
PRO
432
66k
AI Search: Where Are We & What Can We Do About It?
aleyda
0
6.7k
Designing for Timeless Needs
cassininazir
0
93
The AI Search Optimization Roadmap by Aleyda Solis
aleyda
1
5k
The Organizational Zoo: Understanding Human Behavior Agility Through Metaphoric Constructive Conversations (based on the works of Arthur Shelley, Ph.D)
kimpetersen
PRO
0
200
Building Flexible Design Systems
yeseniaperezcruz
330
39k
Transcript
DevSecOps with JFrog Platform
2 § § Sr. DevOps Acceleration Engineer @JFrog § DevOps
Liquid Software § @tsuyoshi_miyake
[email protected]
3 TPS TPS - Wikipedia: Toyota Production System (https://en.wikipedia.org/wiki/Toyota_Production_System) DevOps
• • • 4
1 SSC N 5 • • •
1 N 6 VCS (Git) CI/CD ??? • • •
SSC OSS B C A OSS OSS SSC SSC 7
8 • • • •
(CVE) by OSS (CVE) Executive Order on Improving the Nation
s Cybersecurity CVE 9
24/7 Dedicated Support + DevOps Acceleration Service Arm BUILD TEST
RELEASE DEPLOY CI/CD On Premises & Multicloud VCS ACCESS FEDERATION ACL SSO 10 JFrog Platform
Artifactory for 11 docker-prod-local docker-dev-local (default) docker-qa-local Docker Hub docker-remote
docker
WATCHES Xray for SBOM (Software Bill of Materials) 12 POLICIES
Security License Fail Build Web Hooks, Slack, Emails XUC (Xray Update Center) Bundle Build Build Repo Repo Frogbot IDE XRAY ARTIFACTORY SBOM (SPDX, CycloneDX)
13 PIPELINES > git commit Public Repos IDE Git Repo
package .json ARTIFACTORY XRAY PLUGIN XRAY DISTRIBUTION DISTRIBUTION EDGE DISTRIBUTION EDGE Connect Pull Request with JFrog Platform
JFrog 14
THANK YOU!
tsuyo
eltociear
scova0731
nihonbuson
shibuiwilliam
gamella
oracle4engineer
shichijoyuhi
yama3133
joker1007
nttcom
kirimaru
fujie
rmw
codingconduct
schroneko
samlambert
inesmontani
emna__ayadi
bkeepers
aleyda
cassininazir
kimpetersen
yeseniaperezcruz
