Guides
Protect AI models, data, and systems
Test for behavioral risks in conversational AI
Mitigating risks and future trends
AppSec types, tools, and best practices
Automating dependency updates
Manage open source code
Keep source code safe
Improve transparency, security, and compliance
Pre-production scanning and runtime protection
Secure containerized applications
OWASP Dependency Check: How Does It Work?
Learn how OWASP Dependency Check helps secure open source components.
Top Ten Tips to Choose a Great SAST Tool
The top ten tips for choosing a SAST tool for application security. Integration, automation, and scalability are key factors to consider.
Dynamic Application Security Testing: DAST Basics
Learn about dynamic application security testing (DAST).
Introducing Mend’s Integration with Microsoft Defender for Cloud
Mend.io now integrates with Microsoft Defender for Cloud, bringing intelligent open source security insights into cloud workflows.
Mend.io & HeroDevs Partnership: Eliminate Risks in Deprecated Package
Announcing an exclusive partnership between Mend.io and HeroDevs to provide support for deprecated packages.
Vector and Embedding Weaknesses in AI Systems
Learn how to secure embeddings against poisoning, leakage, and inversion attacks.
MITRE CVE Program Uncertainty: Mend.io’s commitment to uninterrupted vulnerability protection
Mend.io continues to deliver uninterrupted, multi-source vulnerability protection.
The Value Dashboard: Measure and Showcase Your Security Impact
Track, measure, and prove your AppSec impact with the Mend.io Value Dashboard.
AI Governance in AppSec: The More Things Change, The More They Stay the Same
Learn how AppSec teams can extend existing security and compliance practices seamlessly to AI.
Introducing Mend AI Premium
Robust AI governance and threat detection with Mend AI Premium.
The Top 11 Web Vulnerability Scanners
Discover the top 11 web vulnerability scanners and learn why they are essential for protecting your web applications from hackers.
AI Powered Remediation: Mend SAST Performs +46% Better Than Competitors
See how Mend SAST's AI powered automated remediation eliminates vulnerabilities with speed & accuracy.
Mend.io and JetBrains Partner to Bring Enhanced Code Security to Developers
Announcing a partnership between Mend.io and JetBrains for IDE and Qodana.
CVSS 3.1 vs CVSS 4.0: A Look at the Data
CVSS base scores are up in the latest version of the scoring system. What does that mean for AppSec practitioners?
Mend.io – Backstage Integration: Bringing Security Insights Where You Need Them
Backstage offers wide views and controls across the development process and with the Mend.io plugin, deep insights into application risks overall or by project.
Benefits of VEX for SBOMs
SBOMs alone are overwhelming. Learn how VEX adds context, highlighting real threats for efficient risk management.
