JFrog DevOps: Secure Software Pipelines & CI/CD Mastery
Keep adding new skills with 10,000+ programs for $239 (usually $399). Save now.
Ask Coursera
Recommended experience
Recommended experience
What you'll learn
Explain the roles of JFrog Artifactory and JFrog Xray in automating and securing CI/CD pipelines.
Integrate JFrog Artifactory and JFrog Xray with GitHub Actions workflows to manage build artefacts within a CI/CD pipeline.
Use JFrog Artifactory to efficiently manage and secure artefacts within CI/CD pipelines.
Evaluate software vulnerabilities and license compliance issues by interpreting JFrog Xray scan results.
Skills you'll gain
Tools you'll learn
Details to know
See how employees at top companies are mastering in-demand skills
There is 1 module in this course
Did you know that over 80% of modern software comprises third-party components, and most
breaches exploit known vulnerabilities in these outside dependencies? In today’s fast-paced DevOps world, securing your CI/CD pipeline is not optional but essential. This course covers a comprehensive understanding of DevOps security, focusing on the integration of JFrog tools within CI/CD pipelines. Learners will explore key concepts such as artefact management, vulnerability scanning, and secure deployment strategies. Through practical examples and hands-on projects, you will gain insights into best practices for securing your software delivery pipelines. This course is designed for professionals involved in the software delivery lifecycle, including DevOps engineers, software engineers, solutions architects, and software developers. It is also well-suited for aspiring DevOps practitioners who want to deepen their understanding of secure DevOps practices. Whether you're building CI/CD pipelines or looking to enhance the security of your software delivery workflows, this course offers practical, tool-focused insights tailored to your role. To get the most out of this course, learners should have a basic understanding of software development principles and DevOps concepts. Prior experience with version control systems—specifically Git—and familiarity with GitHub will be essential, as the course includes hands-on integration with GitHub Actions. These foundational skills ensure learners can effectively apply the tools and techniques covered in securing and automating CI/CD pipelines. By the end of this course, learners will be able to clearly explain the roles of JFrog Artifactory and JFrog Xray in securing and automating CI/CD workflows. They will gain practical experience integrating these tools with GitHub Actions to manage and secure build artifacts and learn to use Artifactory for efficient artifact lifecycle management. Additionally, learners will be equipped to analyze scan results from JFrog Xray to identify software vulnerabilities and ensure license compliance, strengthening the overall integrity of their software supply chain.
In this course, you’ll explore the principles and practices of securing CI/CD pipelines using JFrog tools like Artifactory and Xray. Through hands-on integration with GitHub Actions, you’ll learn to manage build artifacts, scan for vulnerabilities, and automate security workflows. You’ll also evaluate real-world risks in software supply chains and apply strategies to ensure compliance and prevent breaches across modern DevOps environments.
What's included
14 videos4 readings1 assignment4 peer reviews
14 videos•Total 87 minutes
- Introduction and Welcome •4 minutes
- Overview of CI/CD Pipelines •6 minutes
- Getting Started with GitHub Actions as CI/CD •9 minutes
- Overview of JFrog Artifactory •6 minutes
- Introduction to JFrog Xray •6 minutes
- Installing JFrog Artifactory with Docker Compose •10 minutes
- Jfrog Platform Overview •5 minutes
- Integrate Jfrog Platform to GitHub Actions •7 minutes
- Exploring JFrog Xray •3 minutes
- Artifact Storage and Retrieval with JFrog Artifactory •9 minutes
- Versioning Artifacts with JFrog Artifactory •6 minutes
- Setting Up JFrog Xray for Scanning Artifact Repositories•6 minutes
- Use GitHub Actions to Automate Vulnerability Checks with JFrog Xray•7 minutes
- Congratulations and Continuous Learning Journey•3 minutes
4 readings•Total 20 minutes
- Welcome to the Course: Course Overview•5 minutes
- 4 Ways Xray and Artifactory Complete DevSecOps •5 minutes
- Jfrog Platform Overview •5 minutes
- Optimizing Artefacts in DevOps •5 minutes
1 assignment•Total 20 minutes
- JFrog DevOps: Secure Software Pipelines & CI/CD Mastery•20 minutes
4 peer reviews•Total 90 minutes
- Hands-On-Learning: Run Commands with Github Actions •10 minutes
- Hands-On-Learning: Install JFrog Artifactory •10 minutes
- Hands-On-Learning: Configure JFrog Xray to Scan Artefact Repository •10 minutes
- Project: Configure Secure Deployment Pipeline with Jfrog Platform and GitHub Actions •60 minutes
Instructors
Why people choose Coursera for their career
Frequently asked questions
In this course, a secure CI/CD pipeline means an automated software delivery workflow that builds software, manages artifacts, and checks them for vulnerabilities and compliance issues before release. The emphasis is on making security and artifact management part of the pipeline itself rather than handling them as separate steps later.
You would use a secure CI/CD pipeline when you want code changes to move through build, artifact handling, and security checks in a repeatable way. The course especially frames this as useful when software depends on third-party components and you need to catch known risks early in delivery.
It sits between code changes and deployment as the connected process that turns commits into tracked, stored, and scanned build outputs. In this course, the pipeline links automation, artifact management, and security review so only reviewed and compliant software moves forward.
More questions
Financial aid available,