Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

mend

From Zero to RCE: How a Single HTTP Request Compromises React and Next.js Applications

Dec 4, 2025 By Tom Abai In Mend
On December 3, 2025, the React team disclosed CVE-2025-55182, a critical remote code execution vulnerability in React Server Components. The flaw carries a CVSS score of 10.0, the maximum severity rating. What makes this vulnerability particularly dangerous is its simplicity: attackers only need to send a single crafted HTTP request to gain complete control over vulnerable servers. No authentication required. No complex exploit chains. Just one malicious request.
Read Post
mend

Mend.io + Wiz: A New Code-to-Cloud Integration for Accurate, Context-Driven Risk Prioritization

Dec 2, 2025 By Tiffany Jennings In Mend
Today, we’re excited to announce the availability of Mend.io’s new integration with Wiz, delivering a powerful Code-to-Cloud security workflow for joint customers. By bringing Mend SAST’s high-accuracy code findings directly into the Wiz platform, organizations can now unify code-level risks with cloud posture, runtime context, identities, and infrastructure—unlocking the complete picture needed to prioritize and remediate risk with confidence.
Read Post
mend

Best Application Security Testing Providers: Top 7 in 2025

Dec 1, 2025 By Tiffany Jennings In Mend
Top application security testing providers include Mend, Invicti, and Black Duck, offering a range of services like Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA). Some providers also provide specialized services like securing AI applications and vulnerability management.
Read Post

How to Build AI Agents That Don't Break: Design, Risk & Defense Explained #aiagents #AISecurity

Nov 19, 2025 By Mend In Mend
Agentic AI is evolving fast — but building agents that are *both* effective and secure is still a major gap for most teams. In this webinar, Mend.io’s Bar-El Tayouri and AI21 Labs’ Yehoshua “Shuki” Cohen share a practical, deeply technical walkthrough of what it really takes to design and defend AI agents. You’ll learn: This is a tactical, no-fluff guide for anyone building AI agents in production engineers, security leaders, and innovators shaping the next wave of AI systems.
View Video
mend

Best SAST tools: Top 10 solutions in 2025

Nov 19, 2025 By Tiffany Jennings In Mend
SAST (Static Application Security Testing) tools analyze an application’s source code to identify potential security vulnerabilities without executing the code. They are crucial for finding security flaws early in the development lifecycle, helping developers address issues before they become more costly and difficult to fix. Unlike dynamic analysis techniques, SAST operates without executing the program, focusing entirely on the static codebase.
Read Post
mend

AppSec metrics fail, Mend.io's Risk Reduction Dashboard fixes it

Nov 18, 2025 By Tiffany Jennings In Mend
Today, we’re introducing our Risk Reduction Dashboard. This is a new way for security leaders to quantify their AppSec program’s impact, prioritize high-value fixes, and prove ROI with data-backed insights that go beyond raw vulnerability counts.
Read Post

Secure Your App with Mend.io's AI-Native AppSec Platform (featuring ByteGrad)

Nov 13, 2025 By Mend In Mend
This video, originally created by Wesley from ByteGrad, walks through how to secure your applications using Mend.io’s AI-Native AppSec Platform — including SAST, SCA, and SBOM scanning. Wesley explores how Mend integrates with GitHub, automates code fixes, and helps developers stay ahead of vulnerabilities. Creator: ByteGrad YouTube Channel Timestamps.
View Video

If AI Security were food...What's on the menu? #aisecurity #food

Nov 10, 2025 By Mend In Mend
How do you explain AI Security without the jargon? Easy you make it food. In this video, we asked leading AI Security professionals to describe AI Security as a dish. Their answers turn complex ideas like prompt injection, data leaks, and model hardening into bite-sized insights you’ll actually remember. From layered lasagna to spicy tacos, each response brings a fresh perspective on what it means to build and protect secure AI systems.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.