JFrog Xray vs Prisma Cloud by Palo Alto Networks comparison

JFrog and Palo Alto Networks are both solutions in the Container Security category. JFrog is ranked #23 with an average rating of 7.8, while Palo Alto Networks is ranked #1 with an average rating of 8.5. JFrog holds a 3.9% mindshare in Container Security, compared to Palo Alto Networks’s 13.5% mindshare. Additionally, 100% of JFrog users are willing to recommend the solution, compared to 98% of Palo Alto Networks users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Mar 25, 2025

Prisma Cloud by Palo Alto Networks and JFrog Xray are competitors in the enterprise security solutions market. Prisma Cloud leads in pricing and customer support, while JFrog Xray is favored for its robust features and perceived value.

Features: Prisma Cloud offers extensive cloud security and compliance monitoring, integrates well with AWS, provides a single pane of glass for multi-cloud management, and features identity-based micro-segmentation. JFrog Xray excels in in-depth artifact scanning and vulnerability detection with integration into CI/CD pipelines and focuses heavily on vulnerability management, enhancing its security value over traditional tools.

Room for Improvement: Prisma Cloud can improve its integration with all components of cloud-native security for seamless usability. It can also enhance its user interface for non-technical users and expand detailed alert management. JFrog Xray requires better initial setup guidance, needs more streamlined licensing and vulnerability alert precision for extremely large projects, and can enhance its user experience for first-time users.

Ease of Deployment and Customer Service: Prisma Cloud is noted for its easy deployment and excellent customer support with comprehensive resources. It easily integrates into cloud environments, reducing deployment complexities. JFrog Xray necessitates more elaborate configuration due to its detailed integration with CI/CD pipelines but offers solid customer support post-installation.

Pricing and ROI: Prisma Cloud presents an attractive pricing model with balanced costs against features. Its cost-effectiveness makes it appealing for companies looking for broader cloud security. JFrog Xray demands a higher initial investment, justified by its enhanced security capabilities, making it suitable for enterprises heavily focused on DevOps security.

To learn more, read our detailed JFrog Xray vs. Prisma Cloud by Palo Alto Networks Report (Updated: April 2025).

Buyer's Guide

JFrog Xray vs. Prisma Cloud by Palo Alto Networks

April 2025

Download the complete report

Helped 851,491 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

SentinelOne Singularity Clo...

Mindshare comparison

As of May 2025, in the Container Security category, the mindshare of SentinelOne Singularity Cloud Security is 2.4%, up from 1.0% compared to the previous year. The mindshare of JFrog Xray is 3.9%, up from 2.0% compared to the previous year. The mindshare of Prisma Cloud by Palo Alto Networks is 13.5%, down from 17.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Container Security

Featured Reviews

Andrew W

VP - Information Technology at a financial services firm with 201-500 employees

Tells us about vulnerabilities as well as their impact and helps to focus on real issues

Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.

Read full review

Mokshi Pandita

DevOps Engineer at Rambøll Danmark A/S

An intelligent solution that prioritizes which vulnerability to target first in your project

We could create any number of repositories, but we can create only thirty projects with JFrog Xray. If I want things to work, it has to be one project and multiple repositories that belong to different real projects. So I have a limitation of thirty projects, despite being a premium customer. JFrog Xray does not have a dashboard. Although I am able to generate reports, there is no proper dashboard where I can see the total number of vulnerabilities, the total number of license issues, and how many vulnerabilities are fixed. Second, I found the shift left approach missing with JFrog Xray. JFrog Xray has integration with IDEs, but it does not tell you about the vulnerabilities until the artifact is created. However, Snyk could directly integrate with your repository and would not allow you to build unless you fix the problem.

Read full review

Mohammad Qaw

Senior Security Consultant at helpag

It gives you one console to see all of your assets, review their configurations, and build your processes

Most customers use Prisma Cloud for visibility and compliance. Prisma has so many features, but many organizations do not use them. They primarily use the visibility part to connect all their cloud accounts and hosts for visibility to see if they are missing any security controls or if they have any misconfigurations. You can connect it to cloud environments such as Azure, AWS, Oracle Cloud, Alibaba, etc., or to an on-prem data center. Prisma Cloud gives you so many options to automate processes related to your daily operations. When it comes to cybersecurity, you can automate things with their existing APIs. They also have out-of-the-box integrations with many solutions. I have not seen any limitations. Everything is customizable. You can do whatever you want, defining the reporting and custom use cases. They recently updated the UI, so it's much better than before.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It is scalable, stable, and can detect any threat on a machine. It uses artificial intelligence and can lock down any virus."

"I would definitely recommend SentinelOne Singularity Cloud Security for infrastructure security."

"Singularity Cloud's ability to create custom correlation searches and reduce noise is highly valuable."

"Cloud Native Security is user-friendly. Everything in the Cloud Native Security tool is straightforward, including detections, integration, reporting, etc. They are constantly improving their UI by adding plugins and other features."

"The solution's most valuable features are its ability to detect vulnerabilities inside AWS resources and its ability to rescan after a specific duration set by the administrator."

"SentinelOne Singularity Cloud Security has saved up to 50 percent in engineering time."

"The Offensive Security Engine, powered by impressive AI/ML capabilities, seamlessly integrates with cloud infrastructure to analyze data and provide optimal security solutions."

"The real-time detection and response capabilities overall are great."

More SentinelOne Singularity Cloud Security pros

"If multiple dependencies and vulnerabilities are found in a project, JFrog Xray is intelligent enough to tell you which vulnerability to target first."

"The most valuable features of JFrog Xray are its curation capabilities, its native integration with Artifactory, scanning for vulnerabilities, and license compliance features."

"I would say that this solution has helped our organization by allowing us to automate a lot of the processes."

"JFrog Xray's reporting feature has a lot of options in it, including scanning."

"JFrog Xray shows us a list of vulnerabilities that can impact our code."

"The most valuable features of JFrog Xray are its curation capabilities, its native integration with Artifactory, scanning for vulnerabilities, and license compliance features."

"The most valuable feature of JFrog Xray is the display of the entire internal dependencies hierarchy."

"The solution is stable and reliable."

More JFrog Xray pros

"What I found most valuable in Prisma Cloud by Palo Alto Networks is the VAS, such as the web application and API security. I feel that VAS adds a lot of value, mainly because it gives visibility through the application layer and threat detection features."

"The most valuable feature of Prisma Cloud for our clients is CSPM, as it helps clients gain visibility into all the assets with their cloud providers."

"Prisma Cloud's real-time detection and monitoring of our entire system is the most useful."

"The policies that come prepackaged in the tool have been very valuable to us. They're accurate and they provide good guidance as to why the policy was created, as well as how to remediate anything that violates the policy."

"The first aspect that is important is the fact that Prisma Cloud is cloud-agnostic. It's actually available for the five top cloud providers: AWS, GCP, Azure, Oracle, and Alibaba Cloud. The second aspect is the fact that we can write our own rules to try to detect misconfigurations in those environments."

"The solution's dashboard looks very user-friendly."

"This solution helped us by allowing us to schedule and fix things. This is not an easy thing if you're managing 1,000 plus resources."

"Most of the customers we are tackling have different tools and solutions, like Qualys, Nessus, and vulnerability management assessment solutions. There are plugins for them, and we can integrate Prisma Cloud with them. We can enrich our telemetry with their data and use the predefined correlation rules in Prisma Cloud. That means we have that work done in seconds."

More Prisma Cloud by Palo Alto Networks pros

Cons

"In addition to our telecom and Slack channels, it would be helpful to receive Cloud Native Security security notifications in Microsoft Teams."

"here is a bit of a learning curve. However, you only need two to three days to identify options and get accustomed."

"To enhance the notification system's efficiency, resolved issues should be promptly removed from the portal."

"A beneficial improvement for SentinelOne Singularity Cloud Security would be integration with Jira, allowing for a more streamlined ticketing system."

"The SentinelOne customer support needs improvement, as they are sometimes late in responding, which is critical in a production issue."

"While SentinelOne offers robust security features, its higher cost may present a challenge for budget-conscious organizations."

"It does not bring much threat intel from the outside world. All it does is scan. If it can also correlate things, it will be better."

"The resolution suggestions could be better, and the compliance features could be more customizable for Indian regulations. Overall, the compliance aspects are good. It gives us a comprehensive list, and its feedback is enough to bring us into compliance with regulations, but it doesn't give us the specific objects."

More SentinelOne Singularity Cloud Security cons

"Lacks deeper reporting, the ability to compare things."

"JFrog Xray does not have a dashboard."

"The speed of JFrog Xray should improve. Other solutions have better performance."

"Since we have been using the solution via APIs, there are some limitations in the APIs."

"X-ray needs improvement in supporting more than one database, as it currently only supports PostgreSQL."

"The out-of-the-box PostgreSQL provided is not stable, which is why we are considering enterprise support."

"I think that the user interface should be expanded to provide customers with a better dashboard for reviewing their feedback regarding their images and the vulnerabilities that are associated with the images."

"JFrog Xray's documentation and error logging could be improved."

More JFrog Xray cons

"Prisma is good about compliance, and their support is excellent, but they struggle with automation and integration. They need to stay on top of the newest types of connectors. How can you connect other applications and other tools in order for this to work cohesively? That's a challenge."

"Prisma Cloud's enterprise reporting needs significant improvement."

"The innovation side of the solution could be more efficient and more detailed."

"When it comes to protecting the full cloud-native stack, it has the right breadth. They're covering all the topics I would care about, like container, cloud configuration, and serverless. There's one gap. There could be a better set of features around identity management—native AWS—IAM roles, and service account management. The depth in each of those areas varies a little bit. While they may have the breadth, I think there's still work to do in flushing out each of those feature sets."

"We identified two things that we felt would be great to have, but they are under NDA. So, I can't disclose them. Other than those two things, we identified a generic bug in the secret key management service on AWS that needs to be fixed. We reported it to them, and we want them to fix it."

"They can improve the integrations into the SDLC lifecycle."

"It does not provide runtime security or protection for Windows Server. It is currently lacking in terms of Windows environment."

"We would like it to have more features from the risk and compliance perspectives."

More Prisma Cloud by Palo Alto Networks cons

Pricing and Cost Advice

"It is cost-effective compared to other solutions in the market."

"PingSafe is priced reasonably for our workload."

"The licensing is easy to understand and implement, with some flexibility to accommodate dynamic environments."

"It's not expensive. The product is in its initial growth stages and appears more competitive compared to others. It comes in different variants, and I believe the enterprise version costs around $55 per user per year. I would rate it a five, somewhere fairly moderate."

"The pricing is fair. It is not inexpensive, and it is also not expensive. When managing a large organization, it is going to be costly, but it meets the business needs. In terms of what is out there on the market, it is fair and comparable to what I have seen, so I do not have any complaints about the cost"

"The pricing tends to be high."

"I would rate the cost a seven out of ten with ten being the most costly."

"PingSafe falls somewhere in the middle price range, neither particularly cheap nor expensive."

More SentinelOne Singularity Cloud Security pricing and cost advice

Information not available

"Regarding Prisma Cloud's pricing, we started small, and then we just kept on growing."

"Prisma Cloud is more expensive than some other solutions, but when we consider all of its use cases, the cost averages out."

"The cost was not on the higher side. Overall, the cost gets recovered with its implementation."

"The licensing cost is a bit high on the compute side."

"The product is very expensive, but the cost is a necessary evil; I don't know how we could have any kind of cloud presence without this type of monitoring. The pricing is calculated by module and resource usage. Ultimately, it saves us money in the amount of time we would spend uncovering what it uncovers, and we might not make the required discoveries without it anyway. Prisma offers incredible value, though I wish it were cheaper."

"If a competitor came along and said, "We'll give you half the price," that doesn't necessarily mean that's the right answer, at all. We wouldn't necessarily entertain it that way. Does it do what we need it to do? Does it work with the things that we want it to work with? That is the important part for us. Pricing wasn't the big consideration it might be in some organizations. We spend millions on public cloud. In that context, it would not make sense to worry about the small price differences that you get between the products."

"From my exposure so far, they have been really flexible on whatever your current state is, with a view to what the future state might be. There's no hard sell. They "get" the journey that you're on, and they're trying to help you embrace cloud security, governance, and compliance as you go."

"The cost depends on the pricing model. Compared to other solutions, the cost isn't that bad."

More Prisma Cloud by Palo Alto Networks pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Container Security solutions are best for your needs.

See recommendations

851,491 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

15%

Manufacturing Company

Government

Financial Services Firm

25%

Computer Software Company

12%

Manufacturing Company

12%

Government

Educational Organization

15%

Computer Software Company

13%

Financial Services Firm

13%

Manufacturing Company

10%

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about PingSafe?

The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...

See all answers

What is your experience regarding pricing and costs for PingSafe?

The pricing tends to be high.

See all answers

What needs improvement with PingSafe?

The price is on the higher side. The dashboard can be more detailed.

See all answers

What do you like most about JFrog Xray?

JFrog Xray shows us a list of vulnerabilities that can impact our code.

See all answers

What needs improvement with JFrog Xray?

X-ray needs improvement in supporting more than one database, as it currently only supports PostgreSQL. More support ...

See all answers

What is your primary use case for JFrog Xray?

Our primary use case for X-ray includes multiple activities such as security and vulnerability scanning. We already u...

See all answers

What is your primary use case for Prisma Cloud by Palo Alto Networks ?

Prisma Cloud helps support DevSecOps methodologies, making those responsibilities easier to manage.

See all answers

What Cloud-Native Application Protection Platform do you recommend?

We like Prisma Cloud by Palo Alto Networks, since it offers us incredible visibility into our entire cloud system. We...

See all answers

What do you think of Aqua Security vs Prisma Cloud?

Aqua Security is easy to use and very manageable. Its main focus is on Kubernetes and Docker. Security is a very valu...

See all answers

Comparisons

Wiz vs SentinelOne Singularity Cloud Security

Compared 22% of the time

AWS GuardDuty vs SentinelOne Singularity Cloud Security

Compared 7% of the time

Microsoft Defender for Cloud vs SentinelOne Singularity Cloud Security

Compared 7% of the time

Orca Security vs SentinelOne Singularity Cloud Security

Compared 4% of the time

Check Point CloudGuard CNAPP vs SentinelOne Singularity Cloud Security

Compared 4% of the time

More SentinelOne Singularity Cloud Security Competitors

Black Duck vs JFrog Xray

Compared 15% of the time

Trivy vs JFrog Xray

Compared 14% of the time

Veracode vs JFrog Xray

Compared 6% of the time

GitHub Dependabot vs JFrog Xray

Compared 6% of the time

Wiz vs JFrog Xray

Compared 5% of the time

More JFrog Xray Competitors

Wiz vs Prisma Cloud by Palo Alto Networks

Compared 22% of the time

Microsoft Defender for Cloud vs Prisma Cloud by Palo Alto Networks

Compared 11% of the time

CrowdStrike Falcon Cloud Security vs Prisma Cloud by Palo Alto Networks

Compared 5% of the time

Aqua Cloud Security Platform vs Prisma Cloud by Palo Alto Networks

Compared 5% of the time

Qualys VMDR vs Prisma Cloud by Palo Alto Networks

Compared 3% of the time

More Prisma Cloud by Palo Alto Networks Competitors

Product Reports

Buyer's Guide

SentinelOne Singularity Cloud Security

April 2025

SentinelOne Singularity Cloud Security report

Download SentinelOne Singularity Cloud Security product report

Buyer's Guide

JFrog Xray

May 2025

Download JFrog Xray product report

Buyer's Guide

Prisma Cloud by Palo Alto Networks

May 2025

Prisma Cloud by Palo Alto Networks report

Download Prisma Cloud by Palo Alto Networks product report

Also Known As

PingSafe

JFrog Security Essentials

Prisma Public Cloud, RedLock Cloud 360, RedLock, Twistlock, Aporeto

Overview

SentinelOne Singularity Cloud Security protects cloud workloads, offering advanced threat detection and automated response. It integrates seamlessly with cloud environments and secures containerized applications and virtual machines against vulnerabilities.

SentinelOne Singularity Cloud Security is renowned for its efficiency in mitigating threats in real-time. The platform integrates effortlessly with existing cloud environments, ensuring robust cloud security management with minimal manual intervention. Securing containerized applications and virtual machines, it excels in threat intelligence and endpoint protection. However, improvements are needed in performance during high workload periods, and more integrations with third-party tools and better documentation would be beneficial. Users often find the installation process complex, support response times slow, and the dashboard's navigation unintuitive.

What are the key features of SentinelOne Singularity Cloud Security?

Real-time Threat Detection: Identifies and mitigates threats as they occur.
Automated Response: Automatically responds to threats to minimize impact.
Ease of Deployment: Simple setup process with scalable options.
Machine Learning Insights: AI-driven insights enhance threat prevention.
Seamless Integration: Integrates with cloud environments for unified security management.

What are the primary benefits or ROI to expect from SentinelOne Singularity Cloud Security?

Enhanced Threat Mitigation: Improved security against real-time threats.
Reduced Manual Intervention: Automated processes save time and resources.
Scalability: Easily adapts to growing security requirements.
Centralized Management: Manage security across platforms from a single console.
Advanced Threat Intelligence: Provides in-depth analysis and protection.

In specific industries, SentinelOne Singularity Cloud Security is implemented to safeguard critical data and infrastructure. Organizations in finance, healthcare, and technology depend on its real-time threat detection and automated response to protect sensitive information. Its ability to secure containerized applications and virtual machines is particularly valuable in dynamic environments where rapid scaling is necessary.

SentinelOne

JFrog is on a mission to enable continuous updates through Liquid Software, empowering developers to code high-quality applications that securely flow to end-users with zero downtime. The world’s top brands such as Amazon, Facebook, Google, Netflix, Uber, VMware, and Spotify are among the 4500 companies that already depend on JFrog to manage binaries for their mission-critical applications. JFrog is a privately-held, global company, and is a proud sponsor of the Cloud Native Computing Foundation [CNCF].

If you are a team player and you care and you play to WIN, we have just the job you're looking for.

As we say at JFrog: "Once You Leap Forward You Won't Go Back!"

JFrog

Prisma Cloud by Palo Alto Networks delivers comprehensive security for cloud environments, focusing on workload protection, identity creation, and seamless AWS integration. Its cloud visibility and control, combined with thorough vulnerability scanning, help maintain robust security across multi-cloud platforms.

Prisma Cloud provides essential capabilities for cloud security posture management, container security, and compliance monitoring. Enterprises utilize it to secure cloud configurations, detect vulnerabilities, and ensure regulatory compliance, spanning AWS, Azure, and Google Cloud. Its runtime management, identity-based micro-segmentation, and threat detection enhance cybersecurity. Despite needing improvements in documentation, integration complexities, UI, and the need for role-based access control refinement, it remains pivotal for securing assets across cloud infrastructures, particularly with its capabilities for vulnerability scanning and CI/CD pipeline integration.

What are the key features?

Workload Identity Creation: Establishes identities for cloud workloads, enhancing security through precise access management.
Dynamic Workload Protection: Protects applications dynamically, securing resources during runtime.
Integration with AWS Products: Seamlessly integrates with AWS services, maximizing the efficiency of cloud operations.
Automated Forensics: Provides detailed insights through automated investigations and runtime mapping between containers.
Application Dependency Map: Enables compliance and asset management through comprehensive inventory functionality.

What benefits or ROI should users expect?

Proactive Threat Prevention: Enhances security measures with advanced threat detection and prevention.
Cloud Visibility and Control: Offers control across multi-cloud environments, ensuring users maintain a strong security posture.
Prevention Capabilities: Users value its ability to prevent vulnerabilities and threats effectively.
Integration Capabilities: Supports seamless integration into existing cloud infrastructures and CI/CD pipelines.

In industries like finance, healthcare, and retail, Prisma Cloud is implemented to strengthen cybersecurity measures, facilitate regulatory compliance, and enhance governance. Organizations leverage its features to secure sensitive data, monitor configurations, and integrate security processes within CI/CD workflows, ensuring robust protection across complex cloud infrastructures.

Palo Alto Networks

Sample Customers

Information Not Available

google, amazon, cisco, netflix, oracle, vmware, facebook

Amgen, Genpact, Western Asset, Zipongo, Proofpoint, NerdWallet, Axfood, 21st Century Fox, Veeva Systems, Reinsurance Group of America

Buyer's Guide

JFrog Xray vs. Prisma Cloud by Palo Alto Networks

April 2025

Free Report: JFrog Xray vs. Prisma Cloud by Palo Alto Networks

Find out what your peers are saying about JFrog Xray vs. Prisma Cloud by Palo Alto Networks and other solutions. Updated: April 2025.

DOWNLOAD NOW

851,491 professionals have used our research since 2012.

See our JFrog Xray vs. Prisma Cloud by Palo Alto Networks report.

See our list of best Container Security vendors.

We monitor all Container Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.