Getting Started with Xray Security
A policy without a watch does nothing — silently. A watch on the wrong repo leaves gaps. A fail-build gate with no grace period breaks every build on day one. This path closes those gaps in the right order, so your security posture is real — not just configured.
JFrog Xray: Overview
Understand what Xray does, how it fits into your software delivery pipeline, and why scanning alone isn't enough. This is your starting point before configuring policies, watches, or integrations.
0 hr 20 min
Show Overview
JFrog Xray: Policies and Watches
Define policies to enforce security, legal compliance, and operational governance across your SLDC.
0 hr 15 min
Show Overview
Xray Indexing
Learn how to index in JFrog Xray to define which resources will be scanned for vulnerabilities and compliance risks.
0 hr 10 min
Show Overview
JFrog Xray: Scanning
Learn how Xray scans your artifacts, builds, and release bundles for security vulnerabilities, license violations, and operational risks. Covers scan triggers, supported package types, and how to interpret scan results in the UI and via API.
0 hr 25 min
Show Overview
JFrog Xray: Administration
0 hr 22 min
Show Overview