Onboard
Introduction
Users
Teams
Introduction
IntroductionPromote an image in Amazon ECRRetrieve an object from Amazon S3Store an object on Amazon S3Copy Docker images with CraneDownload a file from JFrog ArtifactoryMove or copy an image from JFrog ArtifactoryUpload a file to JFrog ArtifactoryGet artifact detailsManage artifact labelsRegister a build artifactRegister a deployed environment artifact
IntroductionCreate or update a functionInvoke a function
IntroductionRun an AWS CodePipelineRun a Bamboo projectRun a Bitbucket pipelineRun a CloudBees CI jobRun a CircleCI workflowRun a GitHub Actions workflowRun a GitLab pipelineRun a Harness pipelineRun a Jenkins® jobRun a JFrog pipelineBuild and publish Docker images with KanikoRun a TeamCity project
IntroductionMigrate from v1 to v2
IntroductionAWS credentialsECR credentialsEKS credentialsGit global credentialsOCI credentials
IntroductionRun Ansible PlaybookDeploy with Argo WorkflowsDeploy with AWS CodeDeployDeploy a binary with Amazon EC2Deploy to ECSRender an Amazon ECS task definitionDeploy with AWS Elastic BeanstalkDeploy with HerokuDeploy with OctopusDeploy with OpenShiftDeploy with SpinnakerDeploy with Tosca
Publish evidence items
Fetch secrets from CyberArk Conjur
IntroductionHelm chart installHelm chart packageHelm chart publishHelm chart uninstall
IntroductionCreate a Kubernetes namespaceCreate/update a Kubernetes resourceDeploy to a Kubernetes cluster
IntroductionVerify with NewRelic
Execute remote commands via SSH
IntroductionAnchoreAquasecJFrog XraySnyk ContainerSonatype (Nexus) ContainerTrivy
IntroductionStackhawkZAP
IntroductionCheckmarxCheckovCoverity on PolarisFind Security BugsGitHub Security ScannerGosecGrypeMendNexus IQnjsscanSnykSonarQube bundledSonarQube
IntroductionBlack DuckMendSnyk
IntroductionGitleaksTruffleHog ContainerTruffleHog CodeTruffleHog S3
IntroductionCreate a change requestUpdate or close a change requestGet a change request current stateQuery a change request approval
Publish test results
Multi-workflows dispatch
Introduction
Manage workflows
Introductioncloudbees and other context objectsenvnameonpermissionsjobs.<job_id>.<job_id>.delegates.<job_id>.env.<job_id>.vars.<job_id>.secrets.<job_id>.environment.<job_id>.if.<job_id>.needs.<job_id>.outputs.<job_id>.permissionsjobs.<job_id>.uses.<job_id>.services.<job_id>.services.<service_id>.services.<service_id>.args.services.<service_id>.env.services.<service_id>.imagejobs.<job_id>.steps.<job_id>.steps[*].id.<job_id>.steps[*].continue-on-error.<job_id>.steps[*].env.<job_id>.steps[*].if.<job_id>.steps[*].name.<job_id>.steps[*].run.<job_id>.steps[*].shell.<job_id>.steps[*].uses.<job_id>.steps[*].with.<job_id>.steps[*].with.args.<job_id>.steps[*].with.entrypoint.<job_id>.steps[*].timeout-minutesjobs.<job_id>.timeout-minutes
An example workflow
Reusable workflows
Personal access tokens
Trigger a workflow using an API
IntroductionManual approval
Connect a repositoryCreate a workflowRun a scanPublish an image
Introduction
Get started with feature flags
Create flags in code
Manage multiple SDK keys in your application
Create and manage flags in the UI
Namespaces and labels
Configure feature flags
Feature management custom roles
Flag approval requests and reviews
Audit history
Configuration as code
Flag impressions and activity status
Flag health
Code references
Properties and custom properties
Target groups
Enabling secret mode
IntroductionAndroid / Android TV / Fire TVC/C++ (client-side)C/C++ (server-side)GoJavaJavaScript (browser) / Chromecast / TizenJavaScript SSR.NET/C#Node.jsiOS / tvOSPHPPythonReact NativeRuby
IntroductionClient-side AndroidClient-side C ClientClient-side C++ ClientClient-side JavaClient-side JavaScript (browser)Client-side .NET/C# clientClient-side Objective-CClient-side React NativeClient-side SwiftServer-side CServer-side C++Server-side GoServer-side JavaServer-side .NET/C#Server-side NodeJSServer-side PythonServer-side PHPServer-side RubyBoth client-side and server-side JavaScript SSR
IntroductionAndroid appAngular appDjango appGin appJava Spring Boot app.NET Core appReact appSwift iOS app

JFrog integrations

2 minute read

Create a JFrog Artifactory integration to connect CloudBees Unify to your JFrog container registries. This integration enables implicit scanning of artifacts published to your JFrog package management system, helping you identify security vulnerabilities and maintain artifact integrity. Once you connect your JFrog Artifactory to CloudBees Unify, you can trigger automated scans of container images through your CI/CD workflows.

Create an integration

Create an integration between CloudBees Unify and JFrog Artifactory to enable binary scanning capabilities. To integrate with JFrog Artifactory:

  1. Select an organization, and then select menu:Configurations.

  2. Select Create integration.

  3. Select Container registries.

  4. Select JFrog Artifactory.

  5. Enter the following information:

    • An integration Name (no spaces are allowed).

    • (Optional) A Description.

    • The Hostname/IP of your JFrog Artifactory instance.

    • Enter the Port number for your JFrog Artifactory instance.

  6. Select an Authentication type:

    • Username/Password: Enter your JFrog username and password.

    • Personal access token: Enter your JFrog personal access token.

  7. Select Submit.

Your JFrog Artifactory instance is now connected to CloudBees Unify, and the integration is listed under Integrations.

Trigger binary scans

Once the integration is created, you can start scanning artifacts published to your JFrog package management system.

Binary scanning for JFrog Artifactory currently supports container registry artifacts only. The Kaniko build step does not automatically report artifact data to CloudBees Unify.

Binary scans triggered through JFrog Artifactory integration are currently supported for:

  • CloudBees CI

  • Jenkins

  • CloudBees Unify workflows

Configure scan triggers

To trigger a binary scan of artifacts in JFrog Artifactory, configure artifact registration in your CI pipeline or workflow.

Using Jenkins

Use the registerBuildArtifactMetadata step in your Jenkinsfile. This step creates a build artifact record and triggers an automated binary scan.

For detailed information on configuring the registerBuildArtifactMetadata step, refer to Register and view build artifacts.

Using CloudBees Unify workflows

Use the cloudbees-io/register-build-artifact action in your workflow, pointing the artifact URL to your JFrog Artifactory location. This action registers the artifact metadata and triggers an automated binary scan. For detailed information on configuring the register-build-artifact action, refer to Register a build artifact. The following example workflow demonstrates registering an artifact from JFrog Artifactory:

apiVersion: automation.cloudbees.io/v1alpha1
kind: workflow
name: My workflow

on:
workflow_dispatch:

jobs:
build:
steps:
- name: Checkout
uses: cloudbees-io/checkout@v1
id: checkout
- name: Register an artifact with {PRODUCT}
uses: cloudbees-io/register-build-artifact@v2
id: register
with:
name: myApp
url: cb.jfrog.io/myrepo/myimg:1.0.0
version: 1.0.0
- name: Print output parameter artifact ID
uses: docker://alpine:latest
shell: sh
run: |
echo "artifact ID for myApp:${{ cloudbees.version }} is: ${{ steps.register.outputs.artifact-id }}"

When artifact registration executes successfully, CloudBees Unify:

  1. Registers the build artifact metadata.

  2. Initiates a binary scan of the artifact in JFrog Artifactory.

  3. Reports scan results in CloudBees Unify analytics.

AWS ECR integrations
Create a CI insights integration