Mend.io Supply Chain Security

Popular JavaScript library ua-parser-js was compromised via account takeover, releasing malicious versions.

Discover how Zero Trust can help mitigate supply chain risks and enhance your software security.

Stay updated on supply chain security with our blog post on the vulnerability in Composer. Learn how the issue was detected and fixed.

Learn how to secure your package manager's lockfiles to protect your application from supply chain risks and ensure version consistency.

Discover key takeaways from The Forrester Wave™ Software Composition Analysis, Q3 2021 report.

Learn how external resources in packages can threaten your supply chain security, & discover ways to mitigate these risks to protect your org.

Celebrate Pride with Mend's favorite LGBTQ+ open source projects and programs. Join the movement for equality & inclusivity in tech comunity

Research reveals over 100,000 libraries affected by Maven vulnerability CVE-2021-26291. Learn about the risks, fixes, and implications.

Learn how to protect your software development process from supply chain attacks with these 10 tips that won't slow down your development.

Learn about Biden's Cybersecurity Executive Order focused on supply chain attacks & how Mend can help developers create more secure software.

Learn about Imposter Library, Brandjacking, and Security Research Smokescreen methods. Stay informed on the latest supply chain attack methods.

Discover how to overcome software supply chain risk in the development landscape. Gain control and visibility over your software components.

Mend welcomes Diffend, an innovative software supply chain security service, to improve open source risk management.

Discover the dangers of software supply chain. Learn how they work, why they are so dangerous, and how to strengthen them.