The Forrester Wave™ Software Composition Analysis, Q3 2021: Key Takeaways
The Forrester Wave on Software Composition Analysis helps identify which vendor offers the best solution to protecting your open source.
Choose Your Type
Choose Your Topic
Our Latest Content
Industry Experts Weigh In: Addressing Digital Native Security Challenges
Mend hosted industry experts at a roundtable to provide their insights and tips on the challenges of digital native security.
The Complete Guide to Prototype Pollution Vulnerabilities
An in-depth look at Prototype Pollution vulnerabilities and how to mitigate them.
How Packages’ External Resources Threaten Your Supply Chain
Learn how packages’ external resources threaten your supply chain, and how you can mitigate the risks.
Penetration Testing – A Detailed Guide
Understand what penetration testing is, why it’s important, its stages, approaches, and tools.
Cloud Computing Security: A Primer
What is cloud native computing and what are the top concerns in cloud computing security?
Accelerating Innovation With Open Source and Agile Compliance in the Financial Sector
Open source adoption is increasing rapidly within the financial services industry. Thanks to cutting edge technologies, affordability, flexibility, and the power of the open source community – more and more financial institutions are encouraged to integrate open source components into their investment and more data processing systems. Meanwhile, the industry’s growing list of compliance initiatives...
Celebrating Pride: LGBTQ+ Open Source Projects and Programs We Love
To celebrate Pride month, Mend is highlighting a few of our favorite open source projects and programs that support LGBTQ+ communities.
Research Shows Over 100,000 Libraries Affected By Maven Vulnerability CVE-2021-26291
Mend in partnership with Jonathan Leitschuh found over 100,000 libraries affected by Maven vulnerability CVE-2021-26291.
Supply Chain Security – 10 Tips That Won’t Slow Development Down
Learn how developers can adopt easy practices to secure the open source supply chain without slowing down development.
5 Steps to Get Your Developers to Care More About Security
The relationship between security and developers has traditionally been like two teams competing at a tug-o-war. On one end developers are pulling to produce functional products at breakneck...
9 Best DevSecOps Tools To Integrate Throughout The DevOps Pipeline
In order to incorporate security into your DevOps cycle you need to know the most innovative automated DevSecOps tools around that will help you secure your application without slowing you down.