Mend.io Blog

How to remediate the newly published critical vulnerability in Apache’s widely popular Log4j Java library, CVE-2021-44228.

Learn how to make your vulnerability management metrics count. Discover key metrics to track and prioritize vulnerabilities effectively.

Understand the four stages, metrics, policy setup, and prioritization for effective security through Vulnerability Management.

Learn how Mend Research is helping developers fix vulnerable npm packages quickly and painlessly.

Discover the future of vulnerability management programs in the ever-changing digital world. Learn about detection, prioritization, & more.

Learn about code risk management and how it can help minimize technical debt and prevent errors in your development process.

Popular JavaScript library ua-parser-js was compromised via account takeover, releasing malicious versions.

Discover why adopting Zero Trust security is essential for DevSecOps in the ever-evolving world of digital assets.

Learn how to transition from DevOps to DevSecOps with our step-by-step guide. Discover the benefits, challenges, and best practices.

Mend Cure provides automated remediation for developers to address AppSec risks, saving time and promoting secure coding.

Discover how Zero Trust can help mitigate supply chain risks and enhance your software security.

Stay updated on supply chain security with our blog post on the vulnerability in Composer. Learn how the issue was detected and fixed.

Explore how financial institutions manage open source risks to innovate securely, including adopting Software Composition Analysis (SCA).

Learn how to secure your package manager's lockfiles to protect your application from supply chain risks and ensure version consistency.

Discover key takeaways from The Forrester Wave™ Software Composition Analysis, Q3 2021 report.

Learn how to manage PHP dependencies using Composer. Install, update, and manage your PHP dependencies.