Mend.io Blog

Learn about software supply chain compliance and security to protect your organization from risks and ensure trust.

Discover the new era of AI-powered application security. Learn about the evolution, benefits, and risks of AI in security.

Learn how SLSA enhances software supply chain security with levels of protection. Understand the risks, benefits, and best practices.

Discover why copying and pasting code can compromise your software’s security, quality, and compliance with licensing.

Discover the top open-source packages for preventive AppSec with Mend.io's Reliability Leaderboard. Learn about package reliability and more.

Learn how to boost your supply chain security with Software Bill of Materials (SBOMs) through five expert tips.

Explore the Apache License terms and ensure compliance.

Learn about the new features and improvements in CVSS 4.0, the Common Vulnerability Scoring System. Understand how to use it.

Learn how to boost confidence in your open source security. Automate updates and reduce risks with confidence scores for seamless integration.

Mend.io launches AppSec Risk Assessment Program to help organizations visualize and remediate application security risks.

Learn to protect your applications from malicious packages with our guide. Understand the anatomy of attacks and how to prevent them.

Discover what's driving the adoption of SBOMs and what's next for them in terms of malicious packages and supply chain security.

Mend.io research discovered a threat actor takeover of the name ‘gemnasium-gitlab-service', a retired Ruby gem with two million+ downloads.

Discover how Mend.io & Jira Security are revolutionizing DevSecOps, improving application security, & streamlining workflows for dev teams.

Mend.io is recognized as a Visionary in the 2023 Gartner Magic Quadrant for Application Security Testing. Learn about their approach.

Learn about open source license compliance for M&A activity, the risks of copyleft licenses like GPL, and how to ensure compliance with SCA.