JFrog introduces AppTrust to improve its compliance and governance to provide safe and trusted software releases with embedded evidence and policy implementations.

The Liquid Software Company, JFrog Ltd., has announced the release of JFrog AppTrust, a tool to enable enterprises to automate compliance and governance throughout their software supply chains. The platform offers evidence-based, secure policies and insights to organizations, lowering the risk but ensuring each application release is trusted and verified.

JFrog AppTrust enables development, security and operational integration through the use of the ServiceNow AI Platform, providing a single approach to compliance and governance. It also provides a mechanism for documenting signed evidence, hence allowing companies to respond to the decisive audit questions and to comply with industry requirements effectively.

Compliance is the second biggest challenge after DevOps and DevSecOps, and this is why DevGovOps needs to take place, according to JFrog CEO Shlomi Ben Haim. He stressed JFrog AppTrust as governance infrastructure to make sure that organizations strike a balance between the pace of development and regulatory requirements.

JFrog is being partnered with by industry leaders such as ServiceNow and Sonar to grow its ecosystem of evidence partners, strengthening confidence in and exposure to application lifecycles. Analysts opine that the move has the potential to assist the companies that face a problem with the supply chain risks and reinforce compliance and governance strategies.

As software releases grow faster in the AI era, JFrog AppTrust becomes an essential requirement of any company that wants to scale innovation while at the same time retaining a high level of compliance and governance.