Guides
Protect AI models, data, and systems
Test for behavioral risks in conversational AI
Mitigating risks and future trends
AppSec types, tools, and best practices
Automating dependency updates
Manage open source code
Keep source code safe
Improve transparency, security, and compliance
Pre-production scanning and runtime protection
Secure containerized applications
OWASP Dependency Check: How Does It Work?
Learn how OWASP Dependency Check helps secure open source components.
Top Ten Tips to Choose a Great SAST Tool
The top ten tips for choosing a SAST tool for application security. Integration, automation, and scalability are key factors to consider.
Dynamic Application Security Testing: DAST Basics
Learn about dynamic application security testing (DAST).
Best AI Red Teaming Companies: Top 10 Providers in 2025
AI Red Teaming companies help software and security teams to better understand how their AI application behaves under adversarial attacks.
Introducing Mend’s Integration with Microsoft Defender for Cloud
Mend.io now integrates with Microsoft Defender for Cloud, bringing intelligent open source security insights into cloud workflows.
Top AI Red Teaming Solutions and How to Choose
Learn what AI red teaming solutions solve, how they work, and how to choose the right fit.
Mend.io & HeroDevs Partnership: Eliminate Risks in Deprecated Package
Announcing an exclusive partnership between Mend.io and HeroDevs to provide support for deprecated packages.
Vector and Embedding Weaknesses in AI Systems
Learn how to secure embeddings against poisoning, leakage, and inversion attacks.
MITRE CVE Program Uncertainty: Mend.io’s commitment to uninterrupted vulnerability protection
Mend.io continues to deliver uninterrupted, multi-source vulnerability protection.
The Value Dashboard: Measure and Showcase Your Security Impact
Track, measure, and prove your AppSec impact with the Mend.io Value Dashboard.
AI Governance in AppSec: The More Things Change, The More They Stay the Same
Learn how AppSec teams can extend existing security and compliance practices seamlessly to AI.
Introducing Mend AI Premium
Robust AI governance and threat detection with Mend AI Premium.
The Top 11 Web Vulnerability Scanners
Discover the top 11 web vulnerability scanners and learn why they are essential for protecting your web applications from hackers.
Securing AI vs AI for security: What are we talking about?
This post breaks down the differences between securing AI, secure AI use, AI for security, and AI safety.
Fake VS Code Extension on npm Spreads Multi-Stage Malware
Learn about a fake VS-code extension on npm—truffelvscode—typosquatting the popular truffle for VS-code extension.
2025 OWASP Top 10 for LLM Applications: A Quick Guide
An overview of the top vulnerabilities affecting large language model (LLM) applications.
Join our subscriber list to get the latest news and updates
Thanks for signing up!