jfrog.com

HTML metadata

Title

Software Supply Chain Solutions for DevOps & Security | JFrog

Description

JFrog software supply chain solutions provide an end-to-end pipeline to control your binaries from build to production. Power your software updates to the edge.

Language

en-US

Generator

WordPress 6.8.1

Canonical

https://jfrog.com/

Translations

de
en
fr
ja

Open Graph

url: https://jfrog.com/
title: Software Supply Chain Platform for DevOps & Security | JFrog
locale: en_US
site name: JFrog
description: JFrog software supply chain solutions provide an end-to-end pipeline to control your binaries from build to production. Power your software updates to the edge.

Technology

CDN: Amazon CloudFront
CMS: WordPress

Analytics

Google Tag Manager

Ads

Google Ads (DoubleClick)
Meta Pixel

Third-party hosts loaded (17)

connect.facebook.net×1
googleads.g.doubleclick.net×1
j.6sc.co×1
js.nagich.co.il×1
lonrtp1-cdn.marketo.com×1
lonrtp1.marketo.com×1
munchkin.marketo.net×1
rtp-static.marketo.com×1
sec.webeyez.com×1
snap.licdn.com×1
tr.capterra.com×1
tracking-api.g2.com×1
transcend-cdn.com×1
ws.zoominfo.com×1
www.googletagmanager.com×1
www.influ2.com×1
www.redditstatic.com×1

Social

Registration

Registrar

DomainSite, Inc.

Created

2001-07-24

Expires

2026-07-24 64 days left

Updated

2025-07-02

Name servers

ns-1274.awsdns-31.org
ns-1999.awsdns-57.co.uk
ns-35.awsdns-04.com
ns-867.awsdns-44.net

DNS records live

NS

ns-1274.awsdns-31.org
ns-1999.awsdns-57.co.uk
ns-35.awsdns-04.com
ns-867.awsdns-44.net

MX

Show 7 MX records

10 aspmx.l.google.com
20 alt1.aspmx.l.google.com
20 alt2.aspmx.l.google.com
30 aspmx2.googlemail.com
30 aspmx3.googlemail.com
30 aspmx4.googlemail.com
30 aspmx5.googlemail.com

TXT

Show 31 TXT records

n3h0qjljh62fd1d9y9t516djnjbzczx5
n936k4558tvw47qbzwkk5bwbhq5yxs6c
profound-domain-verification-0e1wrx=oeP51k6ifN6RW6inAuXNVVaHF
r8wrq828jf3481mtbvf51dl4wtq5z10v
tdcqdkznjm9kzp3lsv63cyp6zr9w0nht
wiz-domain-verification=f8a7923748b5aec55624a8638920c1ce68152e6e821ce3b0aa2605b1e7a198cf
wrike-verification=MjE3Nzg3MzpiM2FlY2E3ODgzYWMzOTI3ZTg3ZDNjOThhNDg0ZWE2NGY0YTdhNTJkZmVmMGViNmU4ZmIwMjI1MTk2NzczMDQ3
0zjf862w1mcqn5t5s8rk1494pl4rr66x
9b75t1rn7hlyvtrckjl2glm539136xg5
DirectFedAuthUrl=https://jfrog.okta.com/app/jfrog_azurestaging_1/exkgob3clvSEAeAQ85d7/sso/saml
_5chvbi8ocvsva0n5mttk7whskx4jjzx
_62n0zwa517zye9ei21xed2rd4ws9ypl
_h7riaazdlnon6x7eibqpef1w2vzidq3
_k9t85vcod1x2k1qk5k11vz6eedzysgt
_mmbctqw3xrc0g427glwu1dwu85q5gff
_rgmu73ihcqjb5a17wmv8e6dmz9xckxf
_uxwomykmrzi4gnzimzngr53lkyfqpjt
_xt4yq59s31g6hkge7osaeq2zasiiip2
_yafxnn3nvea582fh564dwr1u98wdtkc
_yrpdr07dx4o4zjc6rdy3m6ltkjav1yd
docker-verification=e25f3c44-d1c3-4aa6-9c86-707e791d694e
drift-domain-verification=16c37cc4e28866e8a146bbbaaac4b4d7dca6726b138144f002583e2c43114162
dzfwyt6lnhp2d3b9v5nf3n0x6zc4zyw9
fnh4yg6fw0y8zjlbrc2j3px7ttx88ynt
gc-ai-domain-verification-wa59dy=XAIe1I9pIXW1JNWbX69glXMnx
gqwm5rnz5740thbcs8mcp2grq023fk73
include:sendgrid.net ip4:149.72.251.202 ip4:149.72.63.221
jamf-site-verification=U3j1r_dnXxKcaHWDLprEhg
jgx3n95sd7yfyd5kzkgrmhwb4y08q0s7
kyn27xqsr4kln0dghgrmdgp1xj4p97d5
lovable_verification=LM3EIiLGGpVlHQ9AGVqY

Verified for

Anthropic
Apple
Atlassian
CloudHealth
Cursor
DocuSign
Google
HackerOne
Mailgun
Meta
Miro
MongoDB
Postman
Slack
Stripe
Zapier

Email authentication strong

SPF

v=spf1 include:%{i}._ip.%{h}._ehlo.%{d}._spf.vali.email ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; rua=mailto:dmarc_agg@vali.email,mailto:dmarc@jfrog.com; ruf=mailto:dmarc@jfrog.com

policy: reject (enforced)

DKIM

Show 4 DKIM selectors

k1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDBYpeEyt7x3CzlxFmO4KihY13j4AXgCzyCfuUl9SukMF5OrJGeS+dkh846YtcDLyFnNuhWXC0i0Gake5unuV…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswYYqxgWx8ReZQicm8oEfiRBBnMtvkXoZ+3HYc3+qZUPuGclNELbHdb+EdJGJW1yN043sT+/nYqy5NC4xN…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2WgYudXip6D4ubTNjf3PwGIchC5w6PzaenoxMOLeiN0r3Ft3HREYEcc3RCJ+uhAh4KIN3SICZZpLUGy94F…
smtpapi: v=DKIM1; k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprz…

selectors probed

Certificate (current)

Amazon RSA 2048 M03

from 2025-08-06 to 2026-09-04

Expires in 106 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://jfrog.com/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Permissions Policy

Header values

referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
content-security-policy: default-src 'self' *.jfrog.com *.visualwebsiteoptimizer.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.jfrog.com https://geoip-js.com https://www.googletagmanager.com https://cdn.cookielaw.org *.nagich.co.il https://www.recaptcha.net https://sec.webeyez.com https://pagead2.googlesyndication.com https://www.gstatic.com https://www.gstatic.cn https://dev.visualwebsiteoptimizer.com https://gtm.jfrog.com https://munchkin.marketo.net *.marketo.com https://static.oktopost.com https://ws.zoominfo.com https://ws-assets.zoominfo.com https://js.zi-scripts.com https://static.ads-twitter.com https://snap.licdn.com https://connect.facebook.net https://www.redditstatic.com *.outbrain.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://okt.to https://www.google-analytics.com blob: https://tracking.g2crowd.com https://platform.twitter.com https://www.google.com *.6sc.co https://cdn.heapanalytics.com *.zuora.com https://256-fnz-187.mktoutil.com https://js-eu1.hsform
strict-transport-security: max-age=31536000; includeSubDomains