AJ Starita

Learn about the current issues with the National Vulnerability Database, how it affects vulnerability reporting, and how Mend SCA can help.

Learn about the difference between SCA scans and container scans, why scanning containers for vulnerabilities is important.

Learn the importance of scanning container images for vulnerabilities to keep your containerized environments safe.

Learn about the latest version of CVSS 4.0. Understand the new metrics and how to use them in your org’s vulnerability remediation strategy.

Discover the top tools for automating SBOMs on our blog. Learn how to create SBOMs effortlessly and boost your supply chain security.

Discover Mend’s Handy Guide to Using EPSS Scores. Learn how EPSS can predict exploits and prioritize vulnerability remediation effectively.

Explore the top open source licenses explained in this blog post. Learn about copyleft vs permissive licenses, including GPL, Apache, MIT.

Learn how building relationships between security and development teams can improve application security. Find key tactics for security.

Discover what developers need to succeed for application security. Learn about shifting left, automation, training, collaboration, and more.

Discover why the US government is prioritizing software supply chain security. Learn about CISA’s goals and objectives at the SOSS Summit.

Learn how dependency management can reduce technical debt in your enterprise. Find out how outdated dependencies can lead to security risks.

Discover the importance of automation in cybersecurity and how software vendors can stay ahead of adversaries.

Learn how to effectively communicate the value of your company with Software Bill of Materials (SBOMs).

Learn about software supply chain security basics and best practices to prevent attacks.

Learn how to manage open source compliance with tips, tools, and best practices. Create policies, track components, replace noncompliant code