%term

AI Code Review in 2025: Technologies, Challenges & Best Practices

Oct 1, 2025 By Mend.io Team In Mend

AI code review leverages artificial intelligence models and machine learning techniques to analyze and provide feedback on source code, automating and improving the traditional code review process. It is crucial for software development workflows, offering significant advantages to developers and teams. AI code review can scan for bugs, style violations, security vulnerabilities, and other issues.

Read Post

Mend

Read more about AI Code Review in 2025: Technologies, Challenges & Best Practices

Introducing Mend.io's AI Security Dashboard: A Clear View into AI Risk

Sep 30, 2025 By Mend.io Team In Mend

Most dashboards are like a busy beach with one lifeguard watching the entire shoreline. They keep an eye on everything, but the sheer scope means that critical issues—like risks in AI applications—can get lost in the crowd. Mend.io’s AI Security Dashboard changes that. It’s like a lifeguard tower posted directly at the AI section of the beach, keeping a sharp, dedicated watch on AI specific risks that other tools overlook.

Read Post

Mend

Read more about Introducing Mend.io's AI Security Dashboard: A Clear View into AI Risk

How to Spot and Stop Security Risks From Unmanaged AI Tools: Shadow AI, LLM Agents, Compliance Risks

Sep 26, 2025 By Mend In Mend

How to Spot and Stop Security Risks From Unmanaged AI Tools Shadow AI is exploding in organizations—developers are using AI tools and models without approval, often embedding them into production systems. In this webinar, Mend.io EVP of Product Management Nir Stern explains the real risks behind unmanaged AI tools, why traditional AppSec can’t keep up, and eight practical steps to regain control.

View Video

Mend

Read more about How to Spot and Stop Security Risks From Unmanaged AI Tools: Shadow AI, LLM Agents, Compliance Risks

AI Meets SAST - Reimagining the Future of Static Analysis | Webinar Mend.io

Sep 25, 2025 By Mend In Mend

Join host Tony Morbin as he explores how AI is revolutionizing Static Application Security Testing (SAST) in this future-forward episode with Saoirse Hinksmon, Senior Product Marketing Manager at Mend.io, and Amir Shahmir, Senior Sales Engineer at Mend.io. This isn’t your average security webinar — it’s a deep dive into the convergence of AI and SAST, uncovering how GenAI is making static analysis faster, smarter, and more actionable for developers and AppSec teams alike.

View Video

Mend

Read more about AI Meets SAST - Reimagining the Future of Static Analysis | Webinar Mend.io

AI Is Writing the Code - Can Security Keep Up? | How to Secure Agentic IDEs from Dev to CI/CD | Mend

Sep 25, 2025 By Mend In Mend

AI coding agents are exploding in use—but are they quietly shipping exploitable code? In this webinar, we break down real data, real incidents, and a practical blueprint for securing AI-accelerated development.

View Video

Mend

Read more about AI Is Writing the Code - Can Security Keep Up? | How to Secure Agentic IDEs from Dev to CI/CD | Mend

NPM Ecosystem Under Siege: Self-Propagating Malware Compromises 187 Packages in a Huge Supply Chain Attack

Sep 16, 2025 By Tom Abai In Mend

The NPM ecosystem has been rocked by one of its widest supply chain attacks to date, with over 187 popular packages compromised by advanced malware capable of self-propagation and automated credential harvesting. This attack, affecting packages with millions of weekly downloads including angulartics2, ngx-toastr, and @ctrl/tinycolor, demonstrates how cybercriminals are evolving their tactics to create “worm-like” malware that can autonomously spread across the software supply chain.

Read Post

Mend

Read more about NPM Ecosystem Under Siege: Self-Propagating Malware Compromises 187 Packages in a Huge Supply Chain Attack

From AppSec to AI Security: Rethinking Risk in the Age of Agents | Mend.io

Sep 16, 2025 By Mend In Mend

In this episode Bar-El Tayouri, Head of AI Security at Mend.io speaks about the rapidly evolving landscape of application and AI security - especially as multi-agent systems and fuzzy interfaces redefine the attack surface. We talk about.

View Video

Mend

Read more about From AppSec to AI Security: Rethinking Risk in the Age of Agents | Mend.io

What Being Customer Recognized in The Forrester Wave: Static Application Security Testing Solutions, Q3 2025 Really Means

Sep 9, 2025 By Rami Sass In Mend

Our customers have been telling us for months: “You’ve made security simple.” Today, Forrester confirmed what our customers already knew. Mend.io has been recognized as a Strong Performer in The Forrester Wave: Static Application Security Testing Solutions, Q3 2025. In our first appearance in the evaluation, we earned top scores in Innovation and Triage. But the recognition that matters most? Being highlighted as a customer favorite.

Read Post

Mend

Read more about What Being Customer Recognized in The Forrester Wave: Static Application Security Testing Solutions, Q3 2025 Really Means

NPM Supply Chain Attack: Sophisticated Multi-Chain Cryptocurrency Drainer Infiltrates Popular Packages

Sep 8, 2025 By Tom Abai In Mend

The NPM ecosystem faced another significant supply chain attack when 18 popular packages, including highly-used libraries like debug and chalk, were compromised with advanced cryptocurrency drainer malware. This attack, affecting packages with over 2 billion weekly downloads, demonstrates how cybercriminals are leveraging trusted software distribution channels to deploy advanced Web3 wallet hijacking code.

Read Post

Mend

Read more about NPM Supply Chain Attack: Sophisticated Multi-Chain Cryptocurrency Drainer Infiltrates Popular Packages

Catch Bugs Early: Dynamic Scanning & the Cake Analogy Explained #cybersec

Sep 5, 2025 By Mend In Mend

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

View Video

Mend

Read more about Catch Bugs Early: Dynamic Scanning & the Cake Analogy Explained #cybersec

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

AI Code Review in 2025: Technologies, Challenges & Best Practices

Introducing Mend.io's AI Security Dashboard: A Clear View into AI Risk

How to Spot and Stop Security Risks From Unmanaged AI Tools: Shadow AI, LLM Agents, Compliance Risks

AI Meets SAST - Reimagining the Future of Static Analysis | Webinar Mend.io

AI Is Writing the Code - Can Security Keep Up? | How to Secure Agentic IDEs from Dev to CI/CD | Mend

NPM Ecosystem Under Siege: Self-Propagating Malware Compromises 187 Packages in a Huge Supply Chain Attack

From AppSec to AI Security: Rethinking Risk in the Age of Agents | Mend.io

What Being Customer Recognized in The Forrester Wave: Static Application Security Testing Solutions, Q3 2025 Really Means

NPM Supply Chain Attack: Sophisticated Multi-Chain Cryptocurrency Drainer Infiltrates Popular Packages

Catch Bugs Early: Dynamic Scanning & the Cake Analogy Explained #cybersec

Monthly Archive

Follow Us