DEVOPSdigest

JFrog announced its partnership with iZeno Pte Ltd, a Singapore-headquartered enterprise technology solutions provider.

This new collaboration aims to help organizations across Southeast Asia seamlessly govern, secure, and manage business and AI-powered applications at scale, both on-premises and in the cloud. Starting immediately, businesses across the region can enjoy the benefits of the JFrog Platform through iZeno with access to iZeno’s full range of DevSecOps consulting and implementation services, including enablement, regulatory compliance, cybersecurity expertise, governance, risk management, and cloud-native modernization initiatives.

“Partnering with iZeno, which has an established presence working with forward-thinking organizations across Southeast Asia, makes perfect sense as the APAC market continues to rapidly adopt AI and cloud-native technologies,” said Sunny Rao, SVP APAC at JFrog. “Our combined efforts are intended to help customers drive automation, strengthen software supply chain security, and deliver trusted software releases at scale, furthering their overall competitive innovation and growth.”

“At iZeno, our focus has always been on helping enterprises adopt modern technologies in a way that is secure, scalable, and aligned with their regulatory and business requirements,” said Jason Lin, Managing Director of iZeno Group. “Our partnership with JFrog reinforces this commitment by enabling customers to integrate security into every phase of software delivery while maintaining the flexibility to deploy their applications on-premises or in the cloud. Together, we can help organizations strengthen their DevSecOps best practices and confidently scale innovation across the region.”

Through this partnership, iZeno will provide organizations in Southeast Asia with regional security, governance, and compliance guidance, plus enterprise-grade access and implementation support for JFrog’s full suite of software supply chain solutions, including:

- JFrog Artifactory – A universal binary repository serving as a single source of truth for all software packages and technologies, enabling organisations to maintain reliability and efficiency across DevOps pipelines. Its native integration with GitHub enhances collaboration, provides AI-driven insights, and supports secure, streamlined development.

- JFrog Xray – JFrog’s flagship Software Composition Analysis (SCA) tool empowers developers to find, prioritize, and fix security vulnerabilities and license compliance issues in open-source software (OSS) and third-party components.

- JFrog Curation – Defends customers’ software supply chains with policy-based blocking of malicious or risky open-source packages before they enter your pipeline, providing control, visibility, improved security, and compliance across all DevSecOps workflows.

- JFrog Advanced Security – Offers DevOps-centric scanning including SAST, secrets detection, and contextual analysis to help organizations shift security left by blocking risky code before it enters development environments, prioritizing and reducing false positives with CVE contextual analysis, plus source code scanning (SAST), and security exposure scanning for both source code and binaries.

- JFrog Runtime – Helps security and DevOps teams monitor Kubernetes clusters in real time, identify, prioritize, and remediate security incidents based on actual risk, verify image integrity, and maintain compliance requirements.

- JFrog ML – An all-in-one solution for managing AI, enabling organisations to build, deploy, manage, and monitor AI workflows, from GenAI and LLMs to classic ML model lifecycles.

- JFrog AI Catalog – Offers centralized governance and proactive security for all AI binaries – including the recently announced Agent Skills Registry and MCP Registry – helps eliminate Shadow AI, and is designed to enable swift delivery of trusted AI applications with enhanced control.

- JFrog AppTrust – Application security and governance platform providing CISOs centralized control with evidence-based gates designed to ensure every release is certified, compliant, and risk-free.