Logo
Home
News
Tech Grid
Interviews
Anecdotes
Think Stack
Press Releases
Articles
  • Enterprise AI

JFrog Brings Supply Chain Security to 1M+ Cursor AI Developers

JFrog Brings Supply Chain Security to 1M+ Cursor AI Developers
  • by: Source Logo
  • |
  • April 1, 2026

JFrog Ltd has announced that its JFrog Platform is now available in the Cursor marketplace. Over 1 million Cursor active daily users now have access to robust software supply chain security within their workflows via the new plugin.

Quick Intel

  • JFrog Platform plugin for Cursor now available to over 1 million daily users
  • Brings enterprise-grade software supply chain security directly into AI coding agent workflows
  • Addresses risks including Shadow AI, ungoverned MCP servers, malicious skills, and uncontrolled dependencies
  • Features remote MCP server connection, conversational AI skills, automated security rules, and dedicated supply chain security
  • Enables seamless vulnerability scanning, policy enforcement, and real-time dependency checks without context switching
  • Strengthens governance for agentic AI development while maintaining developer productivity

Growing Security Concerns in AI-Driven Development

“Today’s enterprises wanting to fully leverage AI-driven software creation are rightfully concerned about the security risks open source and autonomous tools used by AI will create,” said Yoav Landman, Co-Founder and CTO of JFrog. “Issues like Shadow AI, ungoverned MCP server access, malicious skills, and uncontrolled dependencies can create massive blind spots and lead to significant security vulnerabilities. By bringing the full power of the JFrog Platform directly into the Cursor coding agent, we are giving enterprises the guardrails they demand from the very beginning.”

Modern developer workflows start inside AI-native Integrated Developer Environments like Cursor, where agents suggest code, pull dependencies, and make supply chain decisions in real time. However, agents often do this without any visibility into whether packages are safe, compliant, or policy approved.

Seamless Integration with Cursor AI Coding Agent

The new JFrog Platform plugin for Cursor gives developers the freedom to create and deliver next generation AI-powered software with built-in governance. Cursor is one of the industry’s leading AI coding agents designed for developers, data scientists, and engineers, emphasizing agentic capabilities via plugins and MCP servers.

Building upon its recently announced JFrog Agent Skills Registry, the new JFrog Cursor plugin brings the full power of the JFrog Platform directly into the developer’s AI-native IDE without context switching or manual lookups, eliminating friction. Enterprises can now leverage JFrog as a system of record and control point designed for agentic development to allow for increased accuracy, consistency, and security across AI pipelines and the software supply chain.

Core Features of the JFrog Cursor Plugin

The new plugin ships with four integrated components:

  • A remote MCP server connection: Authenticated seamlessly with the JFrog Platform via OAuth without the need for API keys.
  • Conversational AI Skills: Enables developers to manage artifacts, scan for vulnerabilities, and enforce policies using natural language interactions.
  • Automated Security Rules: Automatically enforces supply-chain best practices whenever a dependency file is touched.
  • Dedicated Supply Chain Security: Proactively audits dependencies for CVEs, license risks, and curation policy violations.

Additionally, the JFrog Platform plugin for Cursor offers seamless integration with JFrog Xray and JFrog Advanced Security, allowing vulnerabilities, exposed secrets, and infrastructure misconfigurations to be flagged as developers code. It also provides real-time security insights with clear context, along with easy-to-follow remediation advice and one-click dependency upgrades. The JFrog plugin for Cursor also provides AI agents with the necessary information and guidance to check dependencies in real-time, ensuring every software component is fully compliant with organizational standards and safe for use before it is ever committed.

Expanding Governance for the AI Agent Ecosystem

The JFrog Platform plugin has been officially verified by Cursor and is available immediately in the Cursor marketplace and in GitHub. Users can browse and install the plugin directly through the marketplace panel within the editor. Furthermore, customers using the recently announced JFrog MCP Registry can access a repository of pre-approved local and remote MCP servers directly from their preferred coding agents.

As enterprises transition to autonomous AI agents, the plugin strengthens security and governance from the earliest stages of development, helping organizations build a foundation of trust in their AI-powered software supply chain.

About JFrog

JFrog Ltd., the creators of the unified DevOps, DevSecOps, DevGovOps and MLOps platform, is on a mission to create a world of software delivered without friction from development to production. Driven by a “Liquid Software” vision, the JFrog Platform is a software supply chain system of record that is designed to power organizations as they build, manage, and distribute secure software with speed and scale. Holistic security features help identify, protect, and remediate against threats and vulnerabilities. The universal, hybrid, multi-cloud JFrog Platform is available as both SaaS services across major cloud service providers and self-hosted. Millions of users and approximately 6,600 organizations worldwide, including a majority of the Fortune 100, depend on JFrog solutions to securely embrace digital transformation in the AI era.

  • Software Supply ChainDev Sec OpsAI CodingAI Security
News Disclaimer
  • Share

Join 30,000+ Avid Tech Readers!

Trending tech news, interviews & insights straight to your inbox.