Mend SAST Security at the Speed of DevOps
Mend SAST is a breakthrough product that lets enterprise application developers create new applications quickly, without sacrificing security.
Choose Your Type
Our Latest Product Info
WhiteSource Rebrands as Mend, Introduces Industry-First Automated Remediation with the Mend Application Security Platform
Company focuses on automation to dramatically reduce the software attack surface and the application security burden for developers TEL AVIV AND BOSTON – May 25, 2022 – WhiteSource, a leader in application security, today announced the change of its name to Mend. The company is also launching the industry’s first automated remediation for custom code...
WhiteSource Achieves AWS DevOps Competency Status
TEL AVIV, Israel and BOSTON, April 20, 2022– WhiteSource, a leader in application security, announced today that it has achieved Amazon Web Services (AWS) DevOps Competency for development, security, and operations (DevSecOps), recognizing that WhiteSource has demonstrated technical proficiency and proven customer success specializing in DevSecOps. Identifying and addressing a security issue early on in...
WhiteSource Launches Free Developer Tool to Detect and Remediate Spring4Shell Vulnerability
Developer tool now available for use on GitHub TEL AVIV AND BOSTON – April 1, 2022 – WhiteSource, a leader in application security, today launched WhiteSource Spring4Shell Detect, a free command-line interface (CLI) tool that quickly scans projects to find vulnerable open source libraries for CVE-2022-22965, also known as Spring4Shell. Spring4Shell is a remote code...
WhiteSource Announces Remediation-Centric Entry into the SAST Market
WhiteSource, the open source security leader, announces the launch of its SAST solution bolstered by two acquisitions TEL AVIV AND BOSTON – February 15 – WhiteSource, a leader in software composition analysis (SCA), today announced the company’s expansion into custom code security following two recent acquisitions and the availability of its static application security testing...
WhiteSource Threat Report Reveals Massive Uptick In Cyberattacks Related To JavaScript npm
More than 1,300 malicious npm packages have been discovered for use in supply chain attacks, cryptojacking, data stealing and more TEL AVIV AND BOSTON – February 2 – WhiteSource, a leader in open source security and management, today released a new threat report based on malicious activity found in npm, the most popular JavaScript package manager...
WhiteSource Launches Azure Repository Integration
The integration, WhiteSource for Azure Repos, gives developers full-spectrum application security that enables automated remediation without slowing development TEL AVIV AND BOSTON – January 26 – WhiteSource, a leader in open source security and management, today released an Azure DevOps repository integration, allowing Azure DevOps users to detect all open source components and automatically enforce security...
Mend for Azure Repos Integration
Mend for Azure Repos provides developer-first security tooling that seamlessly integrates with Azure DevOps. This repository integration empowers developers to move beyond just scanning to focus on the remediation of open source vulnerabilities and license compliance issues.
WhiteSource Recognized with Elite Provider Ranking by National Vulnerability Database
TEL AVIV AND BOSTON – January 21, 2022 – WhiteSource, a leader in open source security and management, today announced that it has been recognized at the Provider Acceptance Level for NIST‘s National Vulnerability Database (NVD). The NVD is the largest and most comprehensive repository of reported known vulnerabilities, both in commercial and open source components. The NVD’s Collaborative...
The Benefits of Application Scanning in the Repository
Security is always in high demand yet short supply. To shift security left, developers need tooling that scans and provides instant feedback in their native environments. Learn how scanning in the repository makes security invisible to developers and reduces friction between security and development teams.
Log4j Remediation Rules Now Available for WhiteSource Renovate and Enterprise
The Software Composition Analysis leader now offers a remediation preset for WhiteSource Renovate and Enterprise, enabling users to identify and fix the Log4j vulnerability from hundreds of downstream dependent packages of Log4j. TEL AVIV AND BOSTON – January 4, 2022 – WhiteSource, a leader in open source security and management, today announced that a Log4j...