Sold by: JFrog
Deployed on AWS
The only platform to give you end-to-end visibility, security, and control
for automating delivery of trusted releases.
4.2
Overview
Trusted by millions of developers, engineers, architects, and security professionals at thousands of enterprises, including the majority of the Fortune 100, the cloud-native JFrog Software Supply Chain Platform is the single source of truth for all software packages, data, and ML models utilized and generated in the development process.
The JFrog Platform on AWS manages all software inputs and outputs, providing organizations with complete visibility across their supply chain. This flexible, massively scalable, and hybrid platform helps improve developer efficiency by reducing wait times from builds to security scans. It allows organizations to take to the clouds with agility, leveraging both managed and self-managed instances. Critically, it enables teams to manage application risk end-to-end by applying evidence-based policies across the SDLC. Finally, the JFrog Platform helps accelerate AI/ML pipelines by treating models like a package, simplifying AI development and ensuring the success of initiatives.
Contact JFrog at cloud@jfrog.com for private offers on annual subscriptions, or visit <www.jfrog.com/pricing > for more information.
The JFrog Platform is often leveraged to consolidate enterprise DevSecOps solutions for companies utilizing GitLab, Sonatype, Snyk, or Veracode, among other solutions. Key capabilities include:
- Universal artifact management with JFrog Artifactory
- Modern, holistic SCA with JFrog Xray
- Contextual analysis of vulnerabilities with JFrog Advanced Security
- Early blocking of malicious open source packages with JFrog Curation
- Application risk governance with JFrog AppTrust
- Control and govern AI/ML development with JFrog ML
- Simplify model discovery and access with JFrog AI Catalog
- AI-assisted remediation with Agentic Software Supply Chain Security
- Real-time Kubernetes security monitoring with JFrog Runtime
- Speed up secure software consumption with JFrog Distribution
- IoT device management with JFrog Connect
- Includes 24x7 Support and in-region 99.99% uptime SLA, plus an assigned support resource with regular touch points
Highlights
- 50+ natively supported package and file types, including ML models and generic repositories.
- Comprehensive, enterprise-grade security solution integrated across the entire SDLC, eliminating tool sprawl and alert fatigue. Go beyond scanning with contextual analysis and vulnerability prioritization, anti-tampering mechanisms, and signed provenance, ensuring best practices and compliance.
- Fast, secure distribution of verified, multi-repository release bundles to sync large-scale geo-distributed teams and accelerate deployments to any target: SaaS, self-managed, or connected devices.
Details
Sold by
Delivery method
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor, and additional usage. You pay upfront or in installments according to your contract terms with the vendor. This entitles you to a specified quantity of use for the contract duration. Usage-based pricing is in effect for overages or additional usage not covered in the contract. These charges are applied on top of the contract price. If you choose not to renew or replace your contract before the contract end date, access to your entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Cost/month |
|---|---|
Pro | $150.00 |
Enterprise X | $950.00 |
Dimension | Cost/unit |
|---|---|
JFrog Consumption Unit | $0.01 |
Vendor refund policy
Contact service@jfrog.com
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
24/7 SLA support service@jfrog.com
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Digital.ai
By Cloudsmith
Top
10
In Continuous Integration and Continuous Delivery, Application Development, Security
Top
50
In Agile Lifecycle Management
Top
10
In Source Control
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Artifact Repository Management
Universal artifact management supporting 50+ natively supported package and file types, including ML models and generic repositories.
Software Composition Analysis
Modern, holistic software composition analysis with contextual vulnerability analysis and prioritization across the software development lifecycle.
Supply Chain Security Governance
Application risk governance with evidence-based policy enforcement, anti-tampering mechanisms, and signed provenance across the entire software development lifecycle.
Secure Artifact Distribution
Fast, secure distribution of verified, multi-repository release bundles with geo-distributed synchronization capabilities to multiple deployment targets.
AI-Powered Predictive Analytics
Generate predictive insights across the software lifecycle to enable data-driven decision making and smarter software investments.
Unified DevOps and Security Integration
Integrate DevOps and security capabilities across the full software lifecycle to enable continuous delivery with built-in protections against tampering, reverse-engineering, and application-based attack vectors.
Enterprise Agile Planning and Scaling
Scale agile practices across all organizational levels from individual teams to entire product portfolios with consistency and efficiency.
Multi-Environment Application Deployment
Deploy applications to any target environment including mainframes, virtual machines, containers, and cloud platforms with support for thousands of simultaneous deployments and automatic rollback capabilities.
Continuous Testing at Scale
Enable enterprise-level testing with increased test coverage across web and mobile applications to deliver high-quality, error-free software.
Universal Package Format Support
Support for 30 package formats enabling organizations to create a single source of truth for artifact management across diverse software types.
Dependency Firewall with Vulnerability Scanning
Caching of packages from open-source repositories with vulnerability scanning and policy compliance validation before distribution to developers.
Zero Trust Security Architecture
Automated zero-trust workflows across services, teams and users for controlling software intellectual property and mitigating risks.
Cloud-Native Global Distribution
Fully managed, cloud-native architecture optimized for fast and reliable artifact delivery across distributed teams and geographic locations.
ISO27001 Accreditation and Access Control
ISO27001 accredited platform with comprehensive access management, compliance enforcement and security best practices implementation.
Standard contract
No
No
No
Customer reviews
Sifiso M.
Reliable for deployments but it has a learning curve
Reviewed on Mar 23, 2026
Review provided by G2
What do you like best about the product?
I love how JFrog keeps software versions consistent across multiple machines, which is crucial for my work. It helps reduce errors during installs and upgrades, saving me a lot of time. Additionally, the fact that JFrog works very well with automation allows me to automate processes and focus on other tasks simultaneously.
What do you dislike about the product?
To be honest it is not beginner friendly. I think you must provide free training for the beginners. Lol it was not easy but through research and help from my team I managed.
What problems is the product solving and how is that benefiting you?
I use JFrog to keep software versions consistent across machines, reducing errors during installs and upgrades. It saves me a lot of time by automating tasks, allowing me to focus on other things.
Computer Software
Powerful Central Artifact Repository, but Feels Heavy for Simple Hosting Needs
Reviewed on Mar 23, 2026
Review provided by G2
What do you like best about the product?
I think it provides a bery good central repository to store libraries and artifacts, that can be shared across the organization
What do you dislike about the product?
Nothing specific. But It can feel heavy and “enterprise”y. Artifactory is powerful, but that usually comes with more operational complexity, more knobs, and more moving pieces than teams actually need if all they want is “host Maven/npm/Docker reliably.”
What problems is the product solving and how is that benefiting you?
It also has good enterprise plumbing. The repository model of local, remote, and virtual repos is useful in practice, and replication support helps when you need caching, regional distribution, or controlled synchronization across sites.
ELzubair B.
A comprehensive solution for package management and software security
Reviewed on Mar 22, 2026
Review provided by G2
What do you like best about the product?
I love JFrog's support for all types of packages, as it acts like a 'joker' and supports more than 30 types of technologies in one place. I am impressed by the proactive security provided by JFrog Xray, which automatically and continuously scans for vulnerabilities, alerting us immediately if a new vulnerability appears. I also appreciate the version and metadata management, where JFrog maintains a complete identity for each file, greatly facilitating error tracking. Additionally, I like the lifecycle automation tool that ensures what has been tested is what will be deployed to the public, along with the very seamless cloud setup that eliminates concerns about infrastructure, and the interface that helps in quickly creating the first repository.
What do you dislike about the product?
The learning curve due to the vastness of the platform and its numerous features causes new users to struggle initially. The problem: The user interface (UI) is filled with complex options and settings.
What problems is the product solving and how is that benefiting you?
I use JFrog to accelerate downloads and support continuity by storing libraries locally and enhancing security by scanning for vulnerabilities and licenses. JFrog helps reduce technical debt with a unified interface and increases confidence with version tracking and automation capabilities.
Rishabh Dev D.
Efficient Monitoring with Seamless Cloud Integrations
Reviewed on Mar 20, 2026
Review provided by G2
What do you like best about the product?
I use JFrog for learning more about the services and product offered, as well as Cloud deployments with features like end-to-end visibility. I like the features, especially the ones doing the heavy lifting of the work, including monitoring and flows. Also, I like the integrations available like ServiceNow and Sonar for code quality. The initial setup of JFrog was quite easy.
What do you dislike about the product?
I would like to see more integrations where things can be out of the box
What problems is the product solving and how is that benefiting you?
JFrog helps with monitoring and logging, offering features that do the heavy lifting and provide integrations like ServiceNow and Sonar for code quality.
Akashraj K.
Centralized Management with User-Friendly Interface
Reviewed on Mar 19, 2026
Review provided by G2
What do you like best about the product?
I really like how easy to use JFrog is and its user-friendly UI. It helps me navigate dependencies easily and search for required repositories under the central and virtual repo. The setup process was also straightforward, taking just a day to complete.
What do you dislike about the product?
API key expiring and rotating every 30 days
What problems is the product solving and how is that benefiting you?
I use JFrog for managing builds and artifacts, and it solves having a central repository across the organization. The easy-to-use UI helps me navigate dependencies and search for required repositories efficiently.