Sold by: JFrog
Deployed on AWS
The only platform to give you end-to-end visibility, security, and control
for automating delivery of trusted releases.
4.2
Overview
Trusted by millions of developers, engineers, architects, and security professionals at thousands of enterprises, including the majority of the Fortune 100, the cloud-native JFrog Software Supply Chain Platform is the single source of truth for all software packages, data, and ML models utilized and generated in the development process.
The JFrog Platform on AWS manages all software inputs and outputs, providing organizations with complete visibility across their supply chain. This flexible, massively scalable, and hybrid platform helps improve developer efficiency by reducing wait times from builds to security scans. It allows organizations to take to the clouds with agility, leveraging both managed and self-managed instances. Critically, it enables teams to manage application risk end-to-end by applying evidence-based policies across the SDLC. Finally, the JFrog Platform helps accelerate AI/ML pipelines by treating models like a package, simplifying AI development and ensuring the success of initiatives.
Contact JFrog at cloud@jfrog.com for private offers on annual subscriptions, or visit <www.jfrog.com/pricing > for more information.
The JFrog Platform is often leveraged to consolidate enterprise DevSecOps solutions for companies utilizing GitLab, Sonatype, Snyk, or Veracode, among other solutions. Key capabilities include:
- Universal artifact management with JFrog Artifactory
- Modern, holistic SCA with JFrog Xray
- Contextual analysis of vulnerabilities with JFrog Advanced Security
- Early blocking of malicious open source packages with JFrog Curation
- Application risk governance with JFrog AppTrust
- Control and govern AI/ML development with JFrog ML
- Simplify model discovery and access with JFrog AI Catalog
- AI-assisted remediation with Agentic Software Supply Chain Security
- Real-time Kubernetes security monitoring with JFrog Runtime
- Speed up secure software consumption with JFrog Distribution
- IoT device management with JFrog Connect
- Includes 24x7 Support and in-region 99.99% uptime SLA, plus an assigned support resource with regular touch points
Highlights
- 50+ natively supported package and file types, including ML models and generic repositories.
- Comprehensive, enterprise-grade security solution integrated across the entire SDLC, eliminating tool sprawl and alert fatigue. Go beyond scanning with contextual analysis and vulnerability prioritization, anti-tampering mechanisms, and signed provenance, ensuring best practices and compliance.
- Fast, secure distribution of verified, multi-repository release bundles to sync large-scale geo-distributed teams and accelerate deployments to any target: SaaS, self-managed, or connected devices.
Details
Sold by
Delivery method
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor, and additional usage. You pay upfront or in installments according to your contract terms with the vendor. This entitles you to a specified quantity of use for the contract duration. Usage-based pricing is in effect for overages or additional usage not covered in the contract. These charges are applied on top of the contract price. If you choose not to renew or replace your contract before the contract end date, access to your entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Cost/month |
|---|---|
Pro | $50.00 |
Enterprise X | $950.00 |
Dimension | Cost/unit |
|---|---|
JFrog Consumption Unit | $0.01 |
Vendor refund policy
Contact service@jfrog.com
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
24/7 SLA support service@jfrog.com
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Digital.ai
By Cloudsmith
Top
10
In Continuous Integration and Continuous Delivery, Application Development, Security
Top
50
In Agile Lifecycle Management
Top
10
In Source Control
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Artifact Repository Management
Universal artifact management supporting 50+ natively supported package and file types, including ML models and generic repositories.
Software Composition Analysis
Modern, holistic software composition analysis with contextual vulnerability analysis and prioritization across the software development lifecycle.
Supply Chain Security Governance
Application risk governance with evidence-based policy enforcement, anti-tampering mechanisms, and signed provenance across the entire software development lifecycle.
Secure Artifact Distribution
Fast, secure distribution of verified, multi-repository release bundles with geo-distributed synchronization capabilities to multiple deployment targets.
AI-Powered Predictive Analytics
Generate predictive insights across the software lifecycle to enable data-driven decision making and smarter software investments.
Unified DevOps and Security Integration
Integrate DevOps and security capabilities across the full software lifecycle to enable continuous delivery with built-in protections against tampering, reverse-engineering, and application-based attack vectors.
Enterprise Agile Planning and Scaling
Scale agile practices across all organizational levels from individual teams to entire product portfolios with consistency and efficiency.
Multi-Environment Application Deployment
Deploy applications to any target environment including mainframes, virtual machines, containers, and cloud platforms with support for thousands of simultaneous deployments and automatic rollback capabilities.
Continuous Testing at Scale
Enable enterprise-level testing with increased test coverage across web and mobile applications to deliver high-quality, error-free software.
Universal Package Format Support
Support for 30 package formats enabling organizations to create a single source of truth for artifact management across diverse software types.
Dependency Firewall with Vulnerability Scanning
Caching of packages from open-source repositories with vulnerability scanning and policy compliance validation before distribution to developers.
Zero Trust Security Architecture
Automated zero-trust workflows across services, teams and users for controlling software intellectual property and mitigating risks.
Cloud-Native Global Distribution
Fully managed, cloud-native architecture optimized for fast and reliable artifact delivery across distributed teams and geographic locations.
ISO27001 Accreditation and Access Control
ISO27001 accredited platform with comprehensive access management, compliance enforcement and security best practices implementation.
Standard contract
No
No
No
Customer reviews
Financial Services
Powerful Artifact Repository for Scaling Apps
Reviewed on Jun 01, 2026
Review provided by G2
What do you like best about the product?
It is not only use for small scale apps but also for large scale apps, best thing about it. It provides the repository for all the components, making it easy to publish, retrieve and cache the artifacts effectively
What do you dislike about the product?
It needs extensive training to be used and is a bit complex to understand at first but once you get hands on, nothing like it, sometimes also faced the slowness, causing the performance issues
What problems is the product solving and how is that benefiting you?
It actually helps us providing enterprise grade devops platform that automates the software supply chain. Also for global distribution which updates really quick
Consulting
Universal Repository Support That Connects All Our Artifacts
Reviewed on Jun 01, 2026
Review provided by G2
What do you like best about the product?
The main advantage is its universal repository support, which allows you to connect different artifact types such as Docker, Apache Airflow, PostgreSQL, and cloud infrastructure.
What do you dislike about the product?
Even though JFrog is open source, I find that the free plan comes with too many limitations compared to the paid plan. It only supports Java/C++, doesn’t include security scanning (Xray), and offers no HA clustering. Storage is capped at 25GB, and it also lacks key enterprise features such as SSO and artifact replication.
What problems is the product solving and how is that benefiting you?
As I mentioned before, JFrog addresses fragmented artifact management by offering a centralized, universal repository for all package types. It also helps reduce DevOps bottlenecks by enabling self-service team provisioning and supporting faster onboarding.
Gonçalo P.
Powerful Artifact Centralization, but Pricing and Large-Scale Setup Need Work
Reviewed on Jun 01, 2026
Review provided by G2
What do you like best about the product?
What I find most helpful about JFrog is that it gives teams a single place to manage software artifacts and dependencies across the entire delivery pipeline. That centralization makes builds, releases, and deployments faster and easier to trace. JFrog Artifactory stands out in particular because it supports many package formats and fits naturally at the center of DevOps workflows.
What do you dislike about the product?
Pricing, configuration complexity in large environments, and support quality are the main concerns. It can feel heavy when it needs to fit into highly customized CI/CD workflows, and enterprise support may be costly or harder to access.
What problems is the product solving and how is that benefiting you?
It solves software supply chain challenges by offering a centralized platform to manage, secure, and distribute software artifacts across the development lifecycle. As organizations build increasingly complex applications that rely on open-source dependencies, containers, and AI models, JFrog helps ensure these components are properly versioned, traceable, and secure.
Mupparapu S.
Smooth Process, Clear Communication, and Helpful Support
Reviewed on Jun 01, 2026
Review provided by G2
What do you like best about the product?
I had a very positive experience. The process was smooth, communication was clear, and the support provided was helpful throughout. Everything was handled professionally and efficiently. I would recommend this service to others
What do you dislike about the product?
The main challenge is the learning curve for new users. Initial setup and repository management can be complex, and some advanced features require time to fully understand and configure.
What problems is the product solving and how is that benefiting you?
"JFrog solves the challenge of managing software artifacts and dependencies across development and deployment environments. It benefits us by improving CI/CD automation, ensuring version consistency, enhancing security, and making software releases more reliable and efficient.
Filip Grasheski
Standardized artifact workflows have boosted collaboration and saved significant delivery time
Reviewed on Jun 01, 2026
Review provided by PeerSpot
What is our primary use case?
My main use case for JFrog Artifactory is hosting artifacts for products, ranging from Docker images to Helm charts, and regular binaries.
I can give you a specific example of how I use JFrog Artifactory in my workflow: we have automated steps in our pipelines where once we build our artifact, such as Docker images, we push them to JFrog Artifactory, and then in the deploy pipeline, we have automated steps that pull the artifact from JFrog Artifactory and deploy them to different environments.
What is most valuable?
The best features that JFrog Artifactory offers are that you can have all kinds of artifacts, supporting many different ones such as Docker images, Helm charts, and different binaries from different software languages. It has versioning that you can use, proxying as well that you can use as a mirror proxy, and there is also nice access control around it, so you can limit who has access to which parts of your JFrog Artifactory tree.
Regarding access control and proxying, those features help my team by making it easy to provide read access to many different teams for different artifact repositories, which works really nicely when you have many teams requiring the same package but then have one team that is actually the developer of that package or artifact. In terms of the proxy, you can use it as a mirror proxy so that all your pulls for an image can go through JFrog Artifactory before they reach Docker or something, adding an extra layer of security in the company.
JFrog Artifactory has impacted my organization positively by helping us have a standard artifact management solution, so everybody is aligned, allowing us to use the same best practices and same documentation, making it easy to implement in many different pipelines.
Having a standard solution such as JFrog Artifactory has affected productivity and collaboration positively. Documentation is available for everybody that is using it, so my team, as clients to JFrog Artifactory, finds it easy to pull the documentation and implement it in our pipelines or for whatever needs we have related to JFrog Artifactory, which eases up collaboration by providing a single way of doing package management.
What needs improvement?
I cannot say much about how JFrog Artifactory can be improved.
I appreciate the opportunity to add more about the needed improvements, even small ones. Maybe around user experience, I think one improvement could be the UX, which shows its age, as it has not changed for a bit, but other than that, it is fine.
I do not think JFrog Artifactory needs any other improvements. I cannot think of anything else apart from the UX that I mentioned already.
For how long have I used the solution?
I have been using JFrog Artifactory for about seven years.
What do I think about the stability of the solution?
JFrog Artifactory is stable.
What do I think about the scalability of the solution?
JFrog Artifactory scales very well for large organizations and is a nice enterprise solution.
How are customer service and support?
I think JFrog Artifactory's customer support is good.
Which solution did I use previously and why did I switch?
I have not used a different solution before JFrog Artifactory.
How was the initial setup?
I do not have much experience with pricing, setup cost, and licensing, as it was set up by a different team.
What about the implementation team?
My company does not have a business relationship with this vendor other than being a customer.
What was our ROI?
I have seen a return on investment with JFrog Artifactory. It saves time by being a standard go-to product that every team uses, which avoids different paths to explore and spend time figuring out different solutions. When many teams collaborate on one solution for artifact management, it results in significant time cost savings.
I would estimate that my teams have saved around 70% of the time compared to figuring out their own solutions and using custom-built team solutions.
What's my experience with pricing, setup cost, and licensing?
I do not have much experience with pricing, setup cost, and licensing, as it was set up by a different team.
Which other solutions did I evaluate?
I have not evaluated other options before choosing JFrog Artifactory.
What other advice do I have?
My advice for others looking into using JFrog Artifactory is to give it a try. Once you set it up, it is very easy to use and teach other teams how to use it. I would rate this product an 8 overall.