Login Contact Us Book a Demo

Integrations

JFrog Artifactory Plugin

Seamlessly integrate Sonatype Repository Firewall with JFrog Artifactory to automatically block malicious and vulnerable open source components. before they enter your development pipeline. 

Header-LR-Gray-(RIGHT)
Header-LR-Gray-(LEFT)

Block Risky Components Before They Reach Developers

JFrog Artifactory’s security measures fall short in defending against open source malware. Sonatype Repository Firewall closes this critical gap by integrating directly with Artifactory to inspect components in real time — quarantining suspicious or malicious artifacts before they enter your repositories. Powered by industry-leading malware intelligence, Repository Firewall ensures only trusted components make it into your development ecosystem. 

Explore Sonatype Repository Firewall

JFrog Artifactory Plugin Features

Industry’s Best Malware Intelligence

Powered by the world’s most comprehensive open source malware research, Repository Firewall blocks threats others miss.

Gain Insight into Components

Access detailed REST API reporting for all allow/deny actions, violations, and policy triggers — enabling traceability, auditing, and external monitoring integration.

Block Dependency Hijacking

Detect and block public packages that mimic internal naming conventions, defending your organization against namespace confusion and typosquatting exploits.

Enforce Approved Versions

Ensure only policy-compliant components are available to developers with Policy-Compliant Component Selection (PCCS) for npm and PyPI, preventing risky version drift.

Support for AI Components

Extend governance beyond standard open source libraries, automatically evaluate AI/ML models and datasets for risk.

Protect Developers from Malware

Automatically quarantine suspicious or malicious components before they’re stored in Artifactory — stopping threats before they enter your ecosystem.

JFrog Plugin Resources

Help Documentation on Repository Firewall for Artifactory Configuration

See Full Documentation

Release Notes for Repository Firewall for Artifactory Plugin

See Release Notes

Help Documentation on Artifactory Plugin Configuration REST API

See Full Documentation

Frequently Asked Questions

How does the plugin detect malware?

Repository Firewall checks components against our proprietary vulnerability and malware intelligence before allowing them into JFrog Artifactory.

Does Sonatype Repository Firewall need a repository manager?

Sonatype Repository Firewall works seamlessly with repository managers like Sonatype Nexus Repository and JFrog Artifactory, but it doesn’t rely on one to function. It safeguards your software supply chain independently, offering integration with security tools like Zscaler for network-level defense.

Does Sonatype Repository Firewall integrate with network security tools?

Yes, Repository Firewall integrates effortlessly with network security solutions like Zscaler, extending protection to the network perimeter for broader coverage.

Can Sonatype Repository Firewall identify malware in AI/ML models?

With support for Hugging Face, Repository Firewall assesses AI/ML models at the time of download, just as it does with open source packages. This ensures they comply with security policies and are free from malicious or suspicious activity. Your data science and engineering teams can confidently leverage the latest models, knowing each download is secure and adheres to your policies.

How fast does Sonatype Repository Firewall detect and block threats?

Sonatype Repository Firewall works instantly, identifying and blocking threats in real time. Whether it’s a package, container, or AI model, any malicious or non-compliant component is stopped before it reaches your development environment. With sophisticated malware intelligence, false positives are kept to a minimum, ensuring only genuine threats are blocked. In rare cases of uncertainty, components are quarantined for further review and automatically released if found safe, allowing developers to maintain productivity without unnecessary delays.

Does Sonatype Repository Firewall assist with policy enforcement and waivers?

Absolutely. Sonatype Repository Firewall streamlines open source governance by automatically isolating components that fail to meet compliance standards. Its robust policy engine allows for flexible waivers, including time-limited and scoped exceptions, ensuring a balance between maintaining security and supporting rapid development.

How frequently is the malware database for Sonatype Repository Firewall updated?

The malware database for Repository Firewall is updated continuously, ensuring real-time defense against emerging open source threats.