Mend.io Blog

The Mend AppSec platform offers customers everything needed to build proactive application security through one solution, at one price.

Gartner's 2024 Hype Cycle for Application Security: ASPM moves from peak to trough.

Find out more about shadow AI and the risks of leaving it uncovered.

Chris Lindsey shares his takeaways from another exciting Black Hat conference

When the zero day hits the fan, can you find the information you need?

Explore LLMs in cybersecurity research: analyzing vulnerability data, sifting through CVE information, and enhancing digital safety.

Explore how to use open source software to innovate while minimizing risk.

Discover the challenges of big data security: data sources, infrastructure, and technology issues, and how to keep your big data secure.

Learn about Static Application Security Testing (SAST). Understand the importance, benefits, & how to choose the right SAST tool for your org.

Learn how to protect your application’s code with dependency management, and why automation is critical for effective dependency updates.

The new Chinese owner tampers with the code of cdn.polyfill.io to inject malware targeting mobile devices.

Keeping dependencies up to date is a big part of dependency management, but it's not everything. Learn more about the differences between the two.

Worried about attackers using AI models to write malicious code? Here are three other ways AI model use can lead to attacks.

Learn about the cultural change needed for DevSecOps in modern AppSec. Discover how collaboration and innovation can improve security.

Not all "open" AI licenses are truly open source. Learn more about the most popular licenses on Hugging Face.

There's hope yet for the world's most beleaguered vulnerability database.