Core Insights - JFrog has introduced a new capability called Shadow AI Detection to enhance AI governance within its Software Supply Chain Platform, aimed at providing enterprises with visibility and control over AI models and API usage [1][4][12] - The initiative addresses the risks associated with Shadow AI, which refers to the uncontrolled use of AI models and APIs that can lead to security and compliance vulnerabilities [2][3][4] AI Governance and Compliance - The rapid integration of AI in development pipelines has created governance challenges, as developers often use AI models from providers like OpenAI and Google without oversight, leading to compliance violations and data leaks [3][4] - JFrog's Shadow AI Detection capability helps organizations create an inventory of internal AI models and external API gateways, enabling centralized governance and compliance tracking [4][5] Security and Risk Management - The new capabilities are designed to enforce security and compliance policies across all AI assets, ensuring that interactions with third-party AI services are controlled and auditable [5][6] - JFrog's solution aligns with emerging global regulations, such as the US Transparency in Frontier AI Act and the EU AI Act, which emphasize accountability and resilience in the AI supply chain [6][12] Market Position and Future Plans - JFrog aims to strengthen its leadership in securing the AI supply chain, helping companies utilize AI safely and responsibly [2][4] - The Shadow AI Detection feature is part of the JFrog AI Catalog, with a general availability release planned for 2025 [6][12]