JFrog CLI

Version v2.88.0 introduces new features like Docker pull by image SHA and Conan build info collection support, alongside various bug fixes and improvements for dependency handling.

This release introduces support for docker build commands and native helm commands, alongside several bug fixes related to spec files and dependency handling.

Version v2.86.0 introduces support for native Conan commands and resolves bugs related to the docker scan help command and URL protocol handling.

This release (v2.85.0) primarily contains minor updates and housekeeping, with the full details available in the linked changelog.

Version 2.84.0 of JFrog CLI primarily addresses a bug related to curl execution with additional flags in the 'jf rt' command.

JFrog CLI v2.83.0 introduces support for direct download commands bypassing AQL and includes several bug fixes, notably for poetry publish and curl argument parsing.

Version 2.82.0 introduces improvements to IDE design and VSCode persistence support, alongside several minor fixes to the help command output.

JFrog CLI v2.81.0 introduces AppTrust commands and a new stats command, alongside improvements to Maven native implementation and a fix for the autocomplete survey.

Version v2.80.0 introduces a minor bug fix by adding a timestamp property to the Python package.

This release primarily contains a bug fix for VCS Parameters alignment and a minor change to hide the survey in CI environments.

This release introduces a new flag to disable token refresh and includes fixes for npm workspace handling and binary builds.

Version 2.79.0 introduces significant new features including native Poetry support, docker login capabilities, and new build process tasks.

This patch release fixes an off-by-one error related to the jf pip deps.cache functionality.

This patch release (v2.78.8) primarily addresses a bug fix related to the ulikunitz/xz dependency.

This patch release (v2.78.7) primarily addresses a bug in SARIF reporting by ensuring missing invocation attributes are correctly filled.

This patch release (v2.78.6) primarily addresses security vulnerabilities related to SCA reporting in SARIF and null attributes.

This release (v2.78.5) provides updated binaries for various operating systems and architectures. The full changelog details specific fixes and enhancements between v2.78.3 and v2.78.5.

This patch release improves CLI version checking by using a GitHub token to prevent rate limiting and removes empty properties from build-info. It also adds a GitHub Actions summary section to the create evidence command.

Version v2.78.2 introduces support for configuring a GitHub token for operations. This release primarily focuses on adding configuration flexibility.

This patch release (v2.78.1) focuses on improvements to SAST reporting, bug fixes in build failure logic and permission handling, and includes IDE setup updates.

JFrog CLI v2.78.0 introduces versioning support for worker commands, adds Ruby gems support, and refactors the scanning functionality by removing the 'audit' command in favor of 'scan'.

JFrog CLI v2.77.0 introduces a new curation audit feature for Gradle and support for the source-mcp command, alongside a fix for macOS ARM64 CPU type mismatches.

Version 2.76.1 introduces support for JFrog Advanced Security (JAS) scanning and improved handling of npm tarballs, alongside several bug fixes.

JFrog CLI version 2.76.0 introduces a new lifecycle annotate command and includes several bug fixes related to Maven wrapper usage and BuildScan violation parsing.

This patch release updates the Analyzer Manager to v1.17.0 and includes fixes for the 'jf eot' command output and the gradle dependency tree command.

Version 2.75.0 introduces OIDC authentication support, a new worker execution history command, and enhancements to configuration profiles and scanner exclusions. Several bug fixes address build failure logic and build publishing behavior.

Version v2.74.1 primarily contains bug fixes and improvements in JFrog Security (JAS) and updates to internal dependencies.

Version 2.74.0 introduces several new features, including an overwrite flag for build publishing and SBOM information retrieval, alongside bug fixes for `rt curl` and `rbc` commands.

Version v2.73.3 renews the Windows executables certificate and includes fixes for operational risk reporting duplication and the worker's deploy command.

This patch release (v2.73.2) introduces support for RBV2 downloads and includes several bug fixes related to Zsh completion, GPG keys, and temporary directory creation.