JFrog Ltd and GitHub announced a new partnership to drive a best of breed, integrated platform solution, allowing joint customers to holistically manage EveryOps for developers, including DevOps, DevSecOps, MLOps and GenAI-powered apps. Development teams must manage both source code and binaries, making a bi-directional integration between JFrog and GitHub a natural fit. A jointly-built roadmap developed by the two companies focuses on seamless navigation and traceability between source code and binaries, continuous integration and deployment with GitHub Actions and JFrog Artifactory, a unified view of security findings to provide one solution for software supply chain security and policies across GitHub & JFrog Advanced Security offerings, and the ability to leverage GitHub Copilot to chat and query artifact and pipeline status to keep projects moving forward.

JFrog and GitHub now provide organizations with a seamless end-to-end experience in managing the Software Supply Chain: Bi-directional code and software package navigation ? Allowing precise tracking and triage by offering native linking between code and built packages and vice versa, for more streamlined data, deeper compliance and security-oriented outputs, and software provenance. GitHub Actions tracking for stored artifacts - Seamless integration for resolving packages from Artifactory and storing binary artifacts generated by Actions, alongside build metadata in Artifactory, aiding more accurate SBOM generation.

SSO, roles and project structures unification - Enabling seamless sign on, project role mapping and access management and CI integration to keep developers moving efficiently. Single pane of glass for JFrog & GitHub Advanced Security findings - Providing full security view of both source-focused and binary-focused security scans in a single place, providing full visibility of security posture from source to production and native linking of findings to either source or binaries (coming months). Copilot Chat integration - Allows developers to extend their Copilot Chat interactions to be interactively advised about the best software packages and versions to use, and to ask questions regarding security and JFrog project setup, etc., to gain a more complete view of the software development lifecycle (coming months).

As an ongoing initiative, both companies are dedicated to maintaining a roadmap for continuous enhancements, ensuring users of both platforms can efficiently manage their code and binaries. Additional integration points will be introduced and shared regularly.