# JFrog Reviews **Vendor:** JFrog Ltd **Category:** [DevOps Platforms](https://www.g2.com/categories/devops-platforms) **Average Rating:** 4.2/5.0 **Total Reviews:** 123 ## About JFrog JFrog Ltd. (Nasdaq: FROG), the creators of the unified DevOps, DevSecOps, DevGovOps and MLOps platform, is on a mission to create a world of software delivered without friction from development to production. Driven by a “Liquid Software” vision, the JFrog Platform is a software supply chain system of record that is designed to power organizations as they build, manage, and distribute secure software with speed and scale. Holistic security features help identify, protect, and remediate against threats and vulnerabilities. The universal, hybrid, multi-cloud JFrog Platform is available as both SaaS services across major cloud service providers and self-hosted. Millions of users and approximately 6,600 organizations worldwide, including a majority of the Fortune 100, depend on JFrog solutions to securely embrace digital transformation in the AI era. Learn more at www.jfrog.com or follow us on X @JFrog. ## JFrog Pros & Cons **What users like:** - Users value the **seamless integration** of JFrog with CI/CD tools, enhancing their DevOps workflow and artifact management. (18 reviews) - Users value the **centralized platform** of JFrog for efficiently managing artifacts in DevOps and CI/CD workflows. (14 reviews) - Users value JFrog's **seamless deployment integration** , enhancing CI/CD pipelines and streamlining artifact management and security. (13 reviews) - Users value the **seamless integrations** of JFrog, enabling efficient management of diverse package formats and CI/CD workflows. (12 reviews) - Users highlight the **seamless integrations** of JFrog with multiple tools and formats for efficient artifact management. (11 reviews) - Users appreciate the **robust security measures** of JFrog, enhancing compliance and protection for their binaries. (11 reviews) - Users value the **seamless CI/CD integration** of JFrog, enhancing efficiency in their DevOps workflows. (10 reviews) - Users value the **seamless integration support** of JFrog, facilitating effortless migrations and workflow automation. (10 reviews) - CD Tools (9 reviews) - Users find JFrog's **user-friendly interface** and centralized repository enhance efficiency and simplify package management. (9 reviews) **What users dislike:** - Users find the **complexity** of JFrog overwhelming, often needing extensive training to navigate its functionalities effectively. (9 reviews) - Users find JFrog to be **expensive** , making it difficult for smaller teams to adopt and implement effectively. (8 reviews) - Users find the **steep learning curve** of JFrog challenging, requiring significant time and effort to master. (8 reviews) - Users find JFrog's **difficult learning** curve challenging, needing extensive training to navigate its complex features effectively. (7 reviews) - Users find the **steep learning curve** of JFrog challenging, requiring significant time to master its complexity. (7 reviews) - Users face **performance issues** with JFrog, noting slow system responses and sudden service downtimes during high resource usage. (6 reviews) - Users express concern over **pricing issues** , citing a lack of transparency and unexpected costs with JFrog. (6 reviews) - Users find the **complex setup** of JFrog challenging, especially for those unfamiliar with its extensive tools. (5 reviews) - Confusing Interface (5 reviews) - Difficult Setup (4 reviews) ## JFrog Reviews ### 1. JFrog Simplifies Artifact Management for Organized, Reliable Deployments **Rating:** 4.5/5.0 stars **Reviewed by:** Subhashree S. | System Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** May 29, 2026 **What do you like best about JFrog?** What I like best about JFrog is how it simplifies the entire artifact management process in one place. Managing dependencies, builds, and releases becomes much more organized and reliable, especially when working across multiple environments and teams. It reduces a lot of manual effort and helps keep deployments consistent. **What do you dislike about JFrog?** One challenge with JFrog is managing repository storage as artifacts grow over time. However, implementing automated cleanup policies and regular monitoring helps keep repositories organized, optimize storage usage, and maintain smooth CI/CD performance. **What problems is JFrog solving and how is that benefiting you?** It helps solve challenges related to artifact management, dependency control, and software release reliability in DevOps environments. It centralizes binaries, packages, and build artifacts in one place, making deployments more organized and consistent across teams. This has helped improve build reliability, simplify version tracking, and reduce issues caused by dependency mismatches. It also supports faster CI/CD workflows and provides better traceability for both modern and legacy applications, making release management more efficient and secure. ### 2. Efficient, Scalable Artifact Management That Streamlines the Software Delivery Lifecycle **Rating:** 4.0/5.0 stars **Reviewed by:** Arkajit D. | Chief Technology Officer, Information Technology and Services, Mid-Market (51-1000 emp.) **Reviewed Date:** May 11, 2026 **What do you like best about JFrog?** The thing that I appreciate most about JFrog is its efficiency in managing artifacts, distributing software, scanning for security vulnerabilities, and handling DevOps practices in one single platform without adding any extra operational complexity. In rapidly scaling engineering setups, where there is constant creation, deployment, and management of cloud-based applications from multiple engineering teams, having control over software packages, their dependencies, and the release pipelines has been a challenge. JFrog has been immensely useful for streamlining and improving the entire software delivery lifecycle. The ability to manage artifacts and packages via JFrog Artifactory stands out as one of the main advantages for me. Performance and scalability have also been strong in my experience, particularly when handling large-scale artifact storage, container registries, and high-frequency deployment pipelines. **What do you dislike about JFrog?** Dislikes about JFrog include its complexity to be configured and managed in large environments with customized CI/CD workflows. In other words, while the platform is indeed very useful and powerful in enterprise DevOps and artifact management use cases, at times it could be somewhat complicated to set up. One particular difficulty I've encountered is the necessity to understand various aspects of repository management, including permission handling, pipeline integration, and software supply chains. It becomes somewhat burdensome to onboard engineers into using the platform if there are not so many of them or their background is somewhat simple. In terms of usability and user experience, one might say that the platform is very efficient and offers lots of opportunities but some administrative functions may come as challenging. Namely, working with multiple repositories, access controls, and distributed environments at once can require certain skills and experience. Finally, I would mention some of the difficulties I had with some of the integrations and automation processes. While JFrog works excellently within different CI/CD ecosystems in general, it might take some effort to make the most out of advanced workflow configurations and automations. **What problems is JFrog solving and how is that benefiting you?** In the past, our development process had an inefficient workflow of artifact storage, dependency management, and CI/CD pipeline. As applications were delivered on cloud, microservice, container, and cross-team levels, it was very hard to maintain transparency and governance of software packages and releases. The biggest advantage I found with JFrog is its ability to manage artifacts and packages through JFrog Artifactory. Previously, we had to manage different repositories and track dependencies manually, but now it’s way more organized. It's pricing is also balanced. ### 3. JFrog Centralized Our Artifacts and Streamlined CI/CD **Rating:** 4.5/5.0 stars **Reviewed by:** Nijat I. | Full-stack Developer, Information Technology and Services, Small-Business (50 or fewer emp.) **Reviewed Date:** May 07, 2026 **What do you like best about JFrog?** JFrog work well for me.Mainly because I noticed a lot of improvement in our build and deployment process due to the centralization of all resources. We had different artifacts and different version numbers of packages before, which created confusion regarding which build to use. In JFrog, I was able to upload all artifacts in a single place and link them to my CI/CD processes. Also, the repositories used here included build packages as well as container images, and I found it very easy to troubleshoot any issues with the deployed build by referring to the version history. **What do you dislike about JFrog?** The first configuration was a lot harder for me to configure than anticipated. I still vividly recall spending hours comprehending the organizational structure of repositories, permissions, and the classification of various packages. As soon as I began to have many repositories, it took consistent effort on my part to maintain their organization or else they would easily get disorganized. I further realized that there were portions of the interface that were not as user-friendly as I would expect them to be, such as switching from one repository to another or dealing with access problems. **What problems is JFrog solving and how is that benefiting you?** Prior to using JFrog, the builds and dependencies were done in an uncontrolled fashion that led to problems with consistent versions and reliable deployments. There were instances where the various environments had different packages causing the debugging process to be much more difficult than it ought to have been. The use of JFrog for artifact management made it easy to keep track of the deployed version as well as its origin point. This made it possible to avoid deployment errors that could have easily occurred otherwise. ### 4. Strong artifact management platform for DevOps teams **Rating:** 4.5/5.0 stars **Reviewed by:** Himanshu J. | Founder, Information Technology and Services, Small-Business (50 or fewer emp.) **Reviewed Date:** May 14, 2026 **What do you like best about JFrog?** JFrog is really useful when you need a centralized place to manage build artifacts, Docker images, packages and dependencies across teams. Security scanning and supply chain visibility are nice additions, especially with modern DevSecOps expectations. **What do you dislike about JFrog?** The UI feels capable but not always intuitive. Finding specific settings or admin configurations sometimes takes more clicks than it should. Initial setup can also be heavier than expected if you’re not already familiar with artifact repository concepts. Storage management and cleanup policies need planning too, otherwise things can grow messy fast. **What problems is JFrog solving and how is that benefiting you?** It solves the dependency/artifact chaos problem. Instead of builds depending on public registries or scattered package sources, everything becomes controlled and reproducible. ### 5. A comprehensive solution for package management and software security **Rating:** 4.5/5.0 stars **Reviewed by:** ELzubair B. | Backend Developer (Freelance / Remote), Small-Business (50 or fewer emp.) **Reviewed Date:** March 22, 2026 **What do you like best about JFrog?** I love JFrog's support for all types of packages, as it acts like a 'joker' and supports more than 30 types of technologies in one place. I am impressed by the proactive security provided by JFrog Xray, which automatically and continuously scans for vulnerabilities, alerting us immediately if a new vulnerability appears. I also appreciate the version and metadata management, where JFrog maintains a complete identity for each file, greatly facilitating error tracking. Additionally, I like the lifecycle automation tool that ensures what has been tested is what will be deployed to the public, along with the very seamless cloud setup that eliminates concerns about infrastructure, and the interface that helps in quickly creating the first repository. **What do you dislike about JFrog?** The learning curve due to the vastness of the platform and its numerous features causes new users to struggle initially. The problem: The user interface (UI) is filled with complex options and settings. **What problems is JFrog solving and how is that benefiting you?** I use JFrog to accelerate downloads and support continuity by storing libraries locally and enhancing security by scanning for vulnerabilities and licenses. JFrog helps reduce technical debt with a unified interface and increases confidence with version tracking and automation capabilities. ### 6. Ultimate Safety Net for Large Teams **Rating:** 5.0/5.0 stars **Reviewed by:** prashanth r. | Network Development Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** March 18, 2026 **What do you like best about JFrog?** I primarily use JFrog Artifactory as a centralized repository manager to handle the lifecycle of my software packages, and it effectively eliminates the friction that slows down a high-stakes development cycle. I love how it serves as the ultimate safety net and speed booster for our entire software supply chain. Thinking of JFrog as a 'safety net' and 'speed booster' isn't just marketing—it literally describes the difference between a smooth release and a weekend spent fixing a broken production environment. It's particularly beneficial when juggling the responsibilities of a Senior Full Stack Developer in a fast-paced environment. JFrog acts as the 'connective tissue' that links my code to my infrastructure, and its key integrations keep my workflow moving smoothly. **What do you dislike about JFrog?** While I’m a big advocate for JFrog, being a Senior Java Full Stack Developer means I also have to deal with its 'rougher' edges. No tool is perfect, especially one that tries to do as much as the JFrog platform. Based on my experience as a Senior Java Full Stack Developer, there are several technical and workflow-specific areas where I’d like to see JFrog push further. While it’s the backbone of our supply chain here in Seattle, these improvements would significantly reduce the daily 'to-do' list for a senior dev. **What problems is JFrog solving and how is that benefiting you?** I use JFrog Artifactory as a centralized repository manager, eliminating friction in development cycles and acting as a safety net and speed booster for our software supply chain. ### 7. JFrog as a handy DevTool Platform for devops **Rating:** 4.0/5.0 stars **Reviewed by:** Aastha M. | Engineer - Platform Team (Developer Experience), Enterprise (> 1000 emp.) **Reviewed Date:** December 18, 2024 **What do you like best about JFrog?** Since my earlier experience, I’ve started using JFrog beyond just artifact management. I’ve explored its capabilities around end-to-end CI/CD pipelines, security integrations, and automation workflows, especially while working on more infrastructure and DevOps-heavy tasks. I particularly like how JFrog brings together artifact management, security scanning, and release orchestration into a single platform. Features like Software Bill of Materials (SBOM) and Software Composition Analysis (SCA) have been useful for improving visibility into dependencies and maintaining better security hygiene. **What do you dislike about JFrog?** While JFrog is powerful, some areas like release bundle distribution and configuration workflows can still feel a bit complex and not very intuitive at first. There’s definitely a learning curve, especially for new users working with advanced DevOps features. Improving UI clarity, onboarding documentation, and simplifying certain workflows would make adoption smoother. **What problems is JFrog solving and how is that benefiting you?** The security offerings & artifact management are our primary usecases of having JFrog in place to manage it. ### 8. JFrog Streamlines Artifact Management and CI/CD Integration **Rating:** 5.0/5.0 stars **Reviewed by:** Faiz k. | Information Technology Network Support, Small-Business (50 or fewer emp.) **Reviewed Date:** March 11, 2026 **What do you like best about JFrog?** Building on our existing use of JFrog for artifact management and CI/CD, several newer capabilities stand out: AI Model Governance is a big one. JFrog AI Catalog lets teams identify and access AI models approved for use within their org, with governance controls over AI added to applications JFrog — essential as AI adoption accelerates across teams. Shadow AI Detection adds visibility we didn't have before. It gives enterprises control over unmanaged AI models and API usage, guarding against security and compliance risks from uncontrolled AI adoption. JFrog Auto-remediation is a real time-saver. JFrog can now automatically replace risky packages with approved compliant versions JFrog, reducing manual triage significantly. Proven ROI makes the investment easy to justify. A Forrester study found the platform delivered 282% ROI and saved 38 hours per developer on onboarding. **What do you dislike about JFrog?** Beyond the earlier feedback on complexity and pricing, a few additional areas stand out: UI Cohesion — As JFrog adds products like AppTrust, AI Catalog, and Advanced Security, the experience between modules still feels disjointed. A more unified interface would help daily usability. Pricing Transparency — It's not always clear which newer features are included in existing plans versus requiring upgrades, making budgeting harder for smaller teams. Documentation for Advanced Use Cases — Complex setups like multi-repo configurations or custom SBOM workflows often require piecing together answers from community forums rather than official docs. Uptrust Timeline — JFrog's supply chain trust product isn't expected until September 2026 Investing.com, leaving a gap for teams who need those capabilities now. **What problems is JFrog solving and how is that benefiting you?** JFrog solves the challenge of managing and distributing software artifacts by providing a centralized repository. It helps track versions, manage dependencies, and integrate with CI/CD pipelines, which improves collaboration and speeds up the software delivery process. ### 9. Streamlined Dependency Management with Robust Features **Rating:** 4.0/5.0 stars **Reviewed by:** Ugnius A. | ServiceNow Developer, Enterprise (> 1000 emp.) **Reviewed Date:** March 04, 2026 **What do you like best about JFrog?** I use JFrog mainly as an artifactory for Docker images and npm packages. I love its universal package management, and my favorite feature is virtual repositories, which provide my team with a single URL for all our dependencies. I really appreciate how well JFrog integrates with the rest of our 2026 stack, especially GitHub Copilot. JFrog's curation is excellent for blocking malicious zero-day packages before they can even hit our local cache. Using the JFrog app for GitHub, I can link my source code directly to the final binary, making traceability automatic. The 2026 stack integration allows me to see security alerts directly in my IDE, so I don't have to switch to a dashboard. Lastly, the technical setup through Docker was a breeze. **What do you dislike about JFrog?** I dislike the false positives and high entry fee. The configuration setup was a bit of a maze. **What problems is JFrog solving and how is that benefiting you?** I use JFrog to prevent outages by caching dependencies and solving 'worked on my machine' issues with binary linking to commits. It integrates well with my stack, blocks malicious packages, and streamlines dependency management with virtual repositories. ### 10. Simplifies DevOps with Security, But Setup Needs Work **Rating:** 4.0/5.0 stars **Reviewed by:** Mohamed A. | Small-Business (50 or fewer emp.) **Reviewed Date:** March 04, 2026 **What do you like best about JFrog?** I like how JFrog simplifies and secures the entire software delivery process. The platform brings together artifact management and security scanning and I appreciate how strongly it focuses on DevOps and automations. Having a single trusted source of dependencies removes a lot of friction instead of pulling packages from multiple external repositories, and the security scanning features add another layer of confidence. **What do you dislike about JFrog?** I don't like the complexity of setup and configuration, especially for large DevOps teams. Clearer onboarding and documentation for new users would really help since it took some time to figure out the initial configuration. **What problems is JFrog solving and how is that benefiting you?** I use JFrog to streamline the development and integration process. It simplifies and secures our software delivery, managing artifacts and conducting security scans, providing a single trusted source of dependencies and reducing friction by avoiding multiple external repositories. ## JFrog Discussions - [What are the benefits and challenges of using JFrog for managing your software supply chain?](https://www.g2.com/discussions/what-are-the-benefits-and-challenges-of-using-jfrog-for-managing-your-software-supply-chain) - [What does Jfrog Platform do?](https://www.g2.com/discussions/what-does-jfrog-platform-do) - [What is difference between JFrog and Nexus?](https://www.g2.com/discussions/what-is-difference-between-jfrog-and-nexus) - [What is Artifactory software used for?](https://www.g2.com/discussions/what-is-artifactory-software-used-for) - [View JFrog pricing details and edition comparison](https://www.g2.com/products/jfrog-2024-03-28/reviews/jfrog-review-12851805?section=pricing&secure%5Bexpires_at%5D=2026-05-30+20%3A01%3A53+-0500&secure%5Bsession_id%5D=b6f0f92e-54b3-49bc-a406-2cf7e0b1bc42&secure%5Btoken%5D=dbd12fe636ec34e488d7506861b2b7257fc99fa17b117fb2e786cc633cfa12ea&format=llm_user) ## JFrog Integrations - [Amazon Redshift](https://www.g2.com/products/amazon-redshift/reviews) - [Bitbucket](https://www.g2.com/products/bitbucket/reviews) - [Docker](https://www.g2.com/products/docker-inc-docker/reviews) - [Elastic Stack](https://www.g2.com/products/elastic-stack/reviews) - [Git](https://www.g2.com/products/git/reviews) - [GitHub](https://www.g2.com/products/github/reviews) - [GitLab](https://www.g2.com/products/gitlab/reviews) - [Jenkins](https://www.g2.com/products/jenkins/reviews) - [Kubernetes](https://www.g2.com/products/kubernetes/reviews) ## JFrog Features **Administration** - Configuration Management - Access Control - Dashboards **Administration** - API / Integrations - Extensibility **Administration ** - Administration Console - Task Management - Dashboards and Visualizations - Access Control **Deployment** - Language Flexibility - Framework Flexibility - Versioning - Ease of Deployment - Scalability **Functionality** - Deployment-Ready Staging - Integration - Extensible **Functionality** - Package Management - Integration - Code Analysis - Vulnerability Checks **Functionality - Software Composition Analysis ** - Language Support - Integration - Transparency **Device Recognition** - Device Discovery - Device Types - Dashboard **Management** - Configuration Management - Access Control - Orchestration **Functionality** - Integrations - Extensibility - Test Customization **Deployment** - Language Flexibility - Framework Flexibility - Versioning - Ease of Deployment - Scalability **Security** - Tampering - Malicious Code - Verification - Security Risks **Functionality - Software Bill of Materials (SBOM)** - Format Support - Annotations - Attestation **Functionality** - Deployment Automation - Process Analytics - Plugins - APIs / Integrations **Analysis** - Reporting and Analytics - Issue Tracking - Static Code Analysis - Code Analysis **Automation** - Test Automation - Release Automation **Management** - Cataloging - Monitoring - Governing - Model Registry **Management** - Processes and Workflow - Reporting - Automation **Management** - Package Access Control - Package Tracking - Automation - Rollback **Effectiveness - Software Composition Analysis** - Remediation Suggestions - Continuous Monitoring - Thorough Detection **Monitoring** - Device Status - Alerts & Notifications - Analytics **Functionality** - Automation - Integrations - Extensibility **Management** - Automation - Processes and Workflow - Reporting **Operations** - Metrics - Infrastructure management - Collaboration **Tracking** - Bill of Materials - Audit Trails - Monitoring **Management - Software Bill of Materials (SBOM)** - Monitoring - Dashboards - User Provisioning **Processes** - Pipelines - Orchestration - Workflow Visualization **Testing** - Command-Line Tools - Manual Testing - Test Automation - Compliance Testing - Black-Box Scanning - Detection Rate - False Positives **IT Management** - Workflow Management - Infrastructure Management - IT Discovery **Provisioning** - Remote Configuration - Event Triggering - Device Diagnostics & Repair - Firmware Updates **Processes** - Pipeline Control - Workflow Visualization - Continuous Deployment **Management** - Cataloging - Monitoring - Governing **Agentic AI - Continuous Integration** - Autonomous Task Execution - Cross-system Integration - Adaptive Learning - Natural Language Interaction - Proactive Assistance **Agentic AI - Continuous Delivery** - Autonomous Task Execution - Cross-system Integration - Adaptive Learning - Natural Language Interaction - Proactive Assistance **Generative AI** - AI Text Generation - AI Text Summarization **Agentic AI - Static Application Security Testing (SAST)** - Autonomous Task Execution ## Top JFrog Alternatives - [GitLab](https://www.g2.com/products/gitlab/reviews) - 4.5/5.0 (876 reviews) - [GitHub](https://www.g2.com/products/github/reviews) - 4.7/5.0 (2,290 reviews) - [Jenkins](https://www.g2.com/products/jenkins/reviews) - 4.4/5.0 (552 reviews)