Schedule a Demo

Mend.io Blog

Next-Gen Vulnerability Assessment: AWS Bedrock Claude in CVE Data Classification
Maciej Mensfeld Jul 30, 2025

Next-Gen Vulnerability Assessment: AWS Bedrock Claude in CVE Data Classification

LATEST
Learn more
Filter & Search
spring4shell best practices

Get the Response to Spring4Shell Right: Best Practices for Immediate Remediation

Adam Murray Apr 5, 2022
Open Source Security

Learn best practices for immediate remediation of the Spring4Shell vulnerability, including detection, and prioritization.

Read More
spring4shell fdt blog

Spring4Shell: What to Expect and How to Prepare

Rhys Arkins Apr 5, 2022
Developer

Learn about the Spring4Shell vulnerability (CVE-2022-22965), its potential impact, and how to prepare your Java applications.

Read More
Automated Software Supply Chain Attacks

Automated Software Supply Chain Attacks: Should You be Worried?

Adam Murray, Tamir Ben Ari Apr 1, 2022
Software Supply Chain

Learn why automated software supply chain attacks are a growing threat. Discover how to protecting your org from malicious NPM packages.

Read More

Spring4Shell Zero-Day Vulnerability: Information and Remediation for CVE-2022-22965

Adam Murray Mar 31, 2022
Open Source Security

Learn about the Spring4Shell Zero-Day Vulnerability CVE-2022-22965 with information, updates, mitigation guidance, and more.

Read More
Set a benchmark of false positives with SAST tools

How To Set A Benchmark Of False Positives With SAST Tools

Adam Murray Mar 24, 2022
SAST

Learn how to set benchmarks for false positives in SAST tools to enhance application security and improve developer efficiency.

Read More
sast 7 tips

Best SAST Tools: Top 7 Solutions Compared

Adam Murray Mar 17, 2022
SAST

Discover the top 7 Static Application Security Testing (SAST) Tools compared in this blog post. Learn about features, pricing, & languages.

Read More
blog how to address SAST false positives in application security testing

How To Address SAST False Positives In Application Security Testing

Lisa Haas Mar 10, 2022
SAST

Address SAST false positives in your application security testing. Explore causes, preventive measures, and the benefits of using Mend SAST.

Read More
How To Mitigate Ruby Supply Chain Security Risks

Best Practices For Managing Ruby Supply Chain Security Risks

Lisa Haas Mar 3, 2022
Software Supply Chain

Understand the types of Ruby supply chain attacks. Learn the best practices for preventing supply chain security risks in your Ruby projects.

Read More
supply chain risk managment guide

A Guide To Implementing Software Supply Chain Risk Management

Adam Murray Feb 24, 2022
Software Supply Chain

Learn how to implement software supply chain risk management to safeguard your critical assets. Discover best practices, & more.

Read More
SAST blogs banners blog image

SAST vs. SCA: 7 Key Differences

Adam Murray Feb 16, 2022
Open Source Security

Discover the 7 key differences between SAST and SCA tools in application security. Learn how they integrate into the SDLC process.

Read More
SAST blog hero

Mend SAST: The Next Generation of Application Security

Rami Sass Feb 15, 2022
SAST

Learn about our innovative approach to detecting and remediating custom code vulnerabilities for a more secure future.

Read More
Five Critically Important Facts About npm Package Security

Five Critically Important Facts About npm Package Security

Lisa Haas Feb 8, 2022
Open Source Security

Learn about the five critical facts about npm package security, including how attackers exploit trust, default behaviors, and dependency hell.

Read More
malicious package npm

A Malicious Package Found Stealing AWS AIM data on npm has Similarities To Capital One Hack

Adam Murray Feb 2, 2022
Malicious Packages

Discover how a malicious package found stealing AWS AIM data on npm has similarities to the Capital One hack. Learn about the threat.

Read More
CVE 2021 44142 Vulnerability 2

CVE-2021-44142: Vulnerability in Samba Enables Bad Actors to Execute Arbitrary Code as Root

Adam Murray Feb 1, 2022
Open Source Security

CVE-2021-44142 allows bad actors to execute arbitrary code as root on Samba. Learn about the vulnerability, exploit, and how to fix it.

Read More
CVE 2021 4034 pwnkit

CVE-2021-4034: A Walkthrough of Pwnkit — the Latest Linux Privileges Escalation Vulnerability

Lisa Haas Jan 27, 2022
Open Source Security

Dive into CVE-2021-4034 PwnKit vulnerability: learn how a simple out-of-bounds access in Linux's pkexec can lead to root system privileges.

Read More
complete guide 2022 blog

Open Source Licenses in 2022: Trends and Predictions

Adam Murray Jan 27, 2022
Open Source Licenses

Open source licenses in 2022. Permissive licenses are on the rise, while copyleft licenses like GPL are decreasing in popularity.

Read More
Previous
1 ... 10 11 12 13 14 15 16 ... 30
Next

Subscribe to our Newsletter

Join our subscriber list to get the latest news and updates

Thanks for signing up! 

© 2025 Mend.io (White Source Ltd.) All rights reserved.