Mend.io Blog

Open source licenses in 2022. Permissive licenses are on the rise, while copyleft licenses like GPL are decreasing in popularity.

Discover how DevSecOps integrates with Agile to enhance security and speed in software development. Learn best practices & more.

Learn best practices for dealing with Log4j vulnerabilities, prevent future risks by sanitizing user input, and secure your App with our tips.

Learn about CVE-2021-44832 in Log4j and how to protect your applications. Stay informed about the latest cybersecurity vulnerabilities.

Learn how to fix the Log4j vulnerability with Mend Renovate and Remediate. Keep your applications secure with automated dependency management.

Learn about the Log4Shell vulnerability in Ruby applications using Log4j jars in JRuby, exposing them to potential exploits.

Stay informed about the latest Log4j vulnerability CVE-2021-45105 & how to protect your applications. Learn how to fix & prevent exploitation

What you need to know about Log4j Vulnerability CVE-2021-45046, and how to remediate it.

How to remediate the newly published critical vulnerability in Apache’s widely popular Log4j Java library, CVE-2021-44228.

Learn how to make your vulnerability management metrics count. Discover key metrics to track and prioritize vulnerabilities effectively.

Understand the four stages, metrics, policy setup, and prioritization for effective security through Vulnerability Management.

Learn how Mend Research is helping developers fix vulnerable npm packages quickly and painlessly.

Discover the future of vulnerability management programs in the ever-changing digital world. Learn about detection, prioritization, & more.

Learn about code risk management and how it can help minimize technical debt and prevent errors in your development process.

Popular JavaScript library ua-parser-js was compromised via account takeover, releasing malicious versions.

Discover why adopting Zero Trust security is essential for DevSecOps in the ever-evolving world of digital assets.