Skip to main content
Sumo Logic

Install the JFrog Xray App and View the Dashboards

This page provides instructions for installing the JFrog Xray app, and descriptions of each of the app dashboards.

Install the app

This section has instructions for installing the JFrog Xray app. 

To install the app

  1. In the App Catalog, search for and select the JFrog Xray app. If you want to see a preview of the dashboards included with the app before installing, click Preview Dashboards.
  2. Click Add to Library. 
  3. The Add JFrog Xray to Library popup appears.
    add-jfrog-xray.png
  4. App Name. You can retain the existing name, or enter a name of your choice for the app.

  5. JFrog Xray log data source. Click in the Source Category entry field, and select the source category you assigned to the HTTP source you created in Step 3: Add a Hosted Collector and HTTP Source.
  6. Artifactory log data source. Enter a string that matches the source categories you assigned to  the local file sources that you set up to receive Artifactory logs in Step 1: Collect Artifactory logs of the "Collect Logs for JFrog Xray" page. If you followed the instructions for setting the source categories on Collect Logs for Artifactory, enter
    _sourceCategory=*artifactory*
  7. Kubernetes log data source. Select the log source for the HTTP source that receives Kubernetes Events logs. 
  8. Advanced. (Optional) If desired, Select the Location in Library  for app installation (the default is the Personal folder in the library), or click New Folder to add a new folder.

Once an app is installed, it will appear in your Personal folder, or other folder that you specified. From here, you can share it with your organization. 

Panels will start to fill automatically. It's important to note that each panel slowly fills with data matching the time range query and received since the panel was created. Results won't immediately be available, but with a bit of time, you'll see full graphs and maps. 

Dashboard filters

Each dashboard has a set of filters that you can apply to the entire dashboard, as shown in the following example. Click the funnel icon in the top dashboard menu bar to display a scrollable list of filters that are applied across the entire dashboard.

jfrog-dash-filter.png

Each panel has a set of filters that are applied to the results for that panel only, as shown in the following example. Click the funnel icon in the top panel menu bar to display a list of panel-specific filters.

jfrog-panel-filter.png

JFrog Xray - Overview dashboard

The JFrog Xray - Overview dashboard provides an at-a-glance overview of issues detected in your software components in Artifactory, including vulnerable containers, artifacts and components, as well as the top Common Vulnerabilities and Exposures (CVEs) detected.

Use this dashboard to:

  • Monitor watches invoked, policies invoked, vulnerable artifacts and components.
  • Monitor threats, vulnerable containers, CVEs.
  • Monitor security and license vulnerabilities.
  • Monitor high severity information for all artifacts.
  • Identify artifacts with most severities segregated by type of severity.
  • Look at the recently discovered vulnerabilities.

jfrog-xray-overview.png

JFrog Xray - Detected Vulnerabilities dashboard

The JFrog Xray - Detected Vulnerabilities dashboard provides insight around users and client IP addresses that both uploaded and downloaded vulnerable artifacts into Artifactory.

Use this dashboard to:

  • Monitor all vulnerable artifacts and components across your artifactory.
  • Identify the top CVE that has affected the artifactory.
  • Identify the trends for vulnerable artifacts and components.
  • Identify number of artifacts and components affected by CVE along with description.
  • Identify most vulnerable package types for artifacts and components.

jfrog-xray-detected-vulnerabilities.png

JFrog Xray - Vulnerable Containers dashboard

The JFrog Xray - Vulnerable Containers dashboard provides information on vulnerable containers as well as hosts and namespaces associated with them.

  • Use this dashboard to:
  • Identify vulnerable containers, hosts and namespaces.
  • Identify the trend of vulnerable containers.
  • Monitor recent images pulled from Artifactory by vulnerable containers.

jfrog-xray-container-analysis.png

JFrog Xray - Threat Analysis dashboard

The JFrog Xray - Threat Analysis dashboard provides insight into threats and indicators of compromise of all vulnerable artifacts detected by Xray by correlating  Artifactory logs with Xray logs.

Use this dashboard to:

  • Identify all vulnerable artifacts that are downloaded or uploaded on Artifactory via Sumo Logic Threat intel.
  • Identify locations of all vulnerable IP’s downloading or uploading artifacts.
  • Monitor the malicious confidence for the threats.

jfrog-xray-threat-analysis.png

JFrog Xray - Vulnerable Artifacts dashboard

The JFrog Xray - Vulnerable Artifacts dashboard provides detailed insight into Xray issues, vulnerable artifacts and files. 

Use this dashboard to:

  • Identify top users uploading or downloading the vulnerable artifacts.
  • Identify all the IPs uploading or downloading the vulnerable artifacts.
  • Monitor recent uploaded and downloaded artifacts. 

jfrog-xray-vulnerable-artifacts.png