Arint - SEO+KI2d ago

RT @JFrogSecurity: 🚨Aktive npm-Supply-Chain-Angriff - das node-ipc-Paket (670K wöchentliche Downloads) wurde kompromittiert, Versionen 9.1.6 (noch aktiv!), 9.2.3 und 12.0.1 enthalten einen Credential-Stehlen-Payload. JFrog Xray und Curation wurden aktualisiert.

mehr auf Arint.info

#cybersecurity #JFrog #node #npm #securityupdate #supplychain #arint_info

https://x.com/JFrogSecurity/status/2054985935960359105#m

Arint - SEO+KI (@[email protected])

<p>RT @JFrogSecurity: 🚨Aktive npm-Supply-Chain-Angriff - das node-ipc-Paket (670K wöchentliche Downloads) wurde kompromittiert, Versionen 9.1.6 (noch aktiv!), 9.2.3 und 12.0.1 enthalten einen Credential-Stehlen-Payload. JFrog Xray und Curation wurden aktualisiert.</p> <p><a href="https://arint.info/@Arint/116578011899549001">mehr</a> auf <a href="https://arint.info/">Arint.info</a></p> <p>#cybersecurity #JFrog #node #npm #securityupdate #supplychain #arint_info</p> <p><a href="https://x.com/JFrogSecurity/status/2054985935960359105#m">https://x.com/JFrogSecurity/status/2054985935960359105#m</a></p>

Mastodon Glitch Edition
Show threadLukas Kahwe SmithApr 20
Just found #JFrog's SKILL repository https://docs.jfrog.com/artifactory/docs/skills-repositories which feels like the slightly heavy handed enterprise approach. lets see if there is something a sightly more lightweight.
Skills Repositories

📘NoteSkills repositories is an open beta feature. Skills is a package type in JFrog Artifactory for sharing and consuming AI agent capabilities (skills) compatible with the ClawHub protocol. Artifactory acts as a private skill registry so teams can publish, discover, and install skills from a singl…

Binary Management
root42Mar 27
To my #jfrog bubble: Given #artifactory with a remote (cached) repository. I can see the contents of the remote repo using curl commands, even using jf rt curl commands. But if I try to jf rt search for something, it doesn't return results. For jf rt dl you have to set JFROG_CLI_TRANSITIVE_DOWNLOAD=true. Is there something similar for jf rt search? Or do I have to code up a recursive curl based search?
WinbuzzerMar 21

https://winbuzzer.com/2026/03/21/ghostclaw-npm-fake-steals-macos-developer-credentials-xcxwbn/

GhostClaw Fake OpenClaw Installer Steals macOS Dev Credentials

#AI #Ghostclaw #OpenClaw #JFrog #npm #Cybersecurity #Malware #macOS #GitHub #Cybercrime #Hackers #Cyberattacks #DataTheft

Beth PariseauFeb 27

One last story for the week/month: Harness makes its #artifactregistry generally available beyond early preview customers, with a security twist that could challenge established players such as #jfrog

https://www.techtarget.com/searchsoftwarequality/news/366639489/Harness-Artifact-Registry-strengthens-supply-chain-governance #devsecops #appdev #softwaresupplychainsecurity

Harness Artifact Registry strengthens supply chain governance

Harness makes its artifact registry generally available beyond early preview customers, with a security twist that could challenge established players such as JFrog.

TechTarget
WinbuzzerFeb 23

https://winbuzzer.com/2026/02/21/anthropic-launches-claude-code-security-desktop-automation-xcxwbn/

Anthropic Debuts Claude Code Security, JFrog Falls 25%

#AI #Anthropic #Claude #ClaudeCode #Cybersecurity #AISecurity #SecurityVulnerabilities #GitHub #CrowdStrike #JFrog #AICoding #AIAgents #AgenticAI

CorootFeb 20

🐧🐝 Learn how to set up Coroot in a #kubernetes cluster using JFrog Artifactory as a self-hosted container registry tool: https://docs.coroot.com/guides/jfrog-artifactory/

#JFrog #Coroot #observability #coroot #AI #opensource #FOSS #linux #ebpf #monitoring #sre

poleguy looking for lost toolsOct 8, 2025

I searched quite a bit this morning, and it turns out there is a far better open-source tool that works as an Artifactory replacement for small projects. It's not in any of the alternatives-to lists. It is known as mkdir.

#artifactory #jfrog #linux #selfhosting

Greek HubSep 19, 2025
Chaos Mesh: Κρίσιμες ευπάθειες στο Kubernetes το 2025 https://greekhub.org/chaos-mesh-krisimes-efpatheies-sto-kubernetes-to-2025/ #ChaosEngineering #ChaosMesh #CloudSecurity #CVE202559358 #CVE202559359 #CVE202559360 #CVE202559361 #JFrog #kubernetes #Vulnerability #GreekHub
Chaos Mesh: Κρίσιμες ευπάθειες στο Kubernetes το 2025

Αποκαλύφθηκαν κρίσιμες ευπάθειες στο Chaos Mesh που επιτρέπουν cluster takeover σε Kubernetes. Δείτε τα CVE-2025-59358 έως 59361, το ρίσκο και τα άμεσα βήματα άμυνας.

GreekHub
Show threado lаvrоvskySep 11, 2025
Just stumbled upon the #JFrog AI Catalog "Your centralized hub for all AI models and initiatives, from third-party to internally-developed. It simplifies model discovery and access, provides robust governance, and accelerates the delivery of trusted AI applications."
https://jfrog.com/ai-catalog/