Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

January 2025

mend

Mend.io and JetBrains Partner to Bring Enhanced Code Security to Developers

Jan 21, 2025 By Mend.io Communications In Mend
At Mend.io, we’re passionate about code security. That’s why we’re thrilled to announce a strategic partnership with JetBrains that integrates Mend.io’s robust security solutions directly into JetBrains IDEs and Qodana environments. With the help of Mend.io, JetBrains users will now have access to robust Software Composition Analysis (SCA) and malicious package detection.
Read Post
mend

Mend Renovate Enterprise Cloud: Dependency Updates at Scale

Jan 15, 2025 By Mend.io Communications In Mend
If there’s one thing development and security teams can agree on, it’s that updating dependencies is a worthwhile endeavor. Keeping open-source dependencies up to date reduces bugs—both now and in the long run. And whether those bugs are security vulnerabilities or functional issues, everyone is happy to see them go.
Read Post

Yahoo's AppSec Journey: Scaling Security with Mend.io

Jan 14, 2025 By Mend In Mend
Join Chris Madden, Distinguished Technical Security Engineer at Yahoo, as he shares how Yahoo scaled its application security program with Mend.io. In this insightful video, Chris details the challenges Yahoo faced in managing open source security and compliance risks, and how Mend.io's AppSec platform helped them: Discover how Mend.io enabled Yahoo to address critical vulnerabilities like Log4Shell, codify security policies, and achieve quantifiable benefits across their organization. If you're looking to improve your AppSec posture, especially at enterprise scale, this video is a must-watch!
View Video
mend

CVSS 3.1 vs CVSS 4.0: A Look at the Data

Jan 13, 2025 By Aurora Starita In Mend
Like the cost of groceries and everything else, CVSS scores seem to have experienced some inflation recently. CVSS 4.0 promises to be a better calculator of risk than previous iterations of the system, but that’s only true if you use it in its full capacity to calculate your specific risk within your specific environment. Most of us aren’t using it that way.
Read Post

Cassie Crossley on Cybersecurity Challenges in Modern Supply Chains

Jan 7, 2025 By Mend In Mend
Supply Chain Security: A Complex Web of Risks and Responsibilities The supply chain for a single device involves thousands, potentially millions of people over time. It's far too large a topic to fully grasp everything. I talk daily with folks about hardware specifics, human rights management, materials, chemical makeups and more. It's much more than just the bits and bytes we normally see.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.