According to IDC's DevSecOps Adoption, Techniques, and Tools Survey 2023, the top two application security gaps at their organizations were the growing use of open source software among development teams (30.9%) and a vulnerable software supply chain (28.9%). JFrog Curation offers a seamless way of blocking malicious or risky open-source packages before they get into the software development pipeline. Automated policies keep undesirable components out, saving time and money fixing or replacing suspect packages later in the SDLC. JFrog Curation offers a seamless way of blocking malicious or risky open-source packages before they get into the software development pipeline. Automated policies keep undesirable components out, saving time and money fixing or replacing suspect packages later in the SDLC.