Mend.io Blog

Popular JavaScript library ua-parser-js was compromised via account takeover, releasing malicious versions.

Discover why adopting Zero Trust security is essential for DevSecOps in the ever-evolving world of digital assets.

Learn how to transition from DevOps to DevSecOps with our step-by-step guide. Discover the benefits, challenges, and best practices.

Mend Cure provides automated remediation for developers to address AppSec risks, saving time and promoting secure coding.

Discover how Zero Trust can help mitigate supply chain risks and enhance your software security.

Stay updated on supply chain security with our blog post on the vulnerability in Composer. Learn how the issue was detected and fixed.

Explore how financial institutions manage open source risks to innovate securely, including adopting Software Composition Analysis (SCA).

Learn how to secure your package manager's lockfiles to protect your application from supply chain risks and ensure version consistency.

Discover key takeaways from The Forrester Wave™ Software Composition Analysis, Q3 2021 report.

Learn how to manage PHP dependencies using Composer. Install, update, and manage your PHP dependencies.

Discover the differences between DevOps and Agile methodologies in software development. Learn how they can be combined.

Learn how to use Azure Functions to add APIs to your Static Web Apps. Follow step-by-step instructions to set up, debug, deploy, and more.

Learn all about Prototype Pollution vulnerabilities in this complete guide. Understand how they work, how to mitigate them, and more.

Learn how external resources in packages can threaten your supply chain security, & discover ways to mitigate these risks to protect your org.

Discover 5 nonprofits nurturing the next generation of software and security professionals, addressing the tech talent shortage.

An introduction to Azure Static Web Apps, that can host almost any flavor of static web app, and contain a generous free plan with SSL.