Mend.io
Editedit
Play Video
Mend.io
By Mend
Show rating breakdown
4.3 out of 5 stars
See all 112 Mend.io reviews
Save to My Lists
Paid
Claimed
This profile has been claimed and optimized by Mend.io.
Optimized profiles are more likely to have the most up-to-date content, fast response times, current pricing, and more.
Contact Mend.io

Mend.io Reviews & Product Details

Editadmin

Mend.io Overview

Editedit
What is Mend.io?

Mend.io, formerly WhiteSource, effortlessly secures what developers create. Mend.io uniquely removes the burden of application security, allowing development teams to deliver quality, secure code faster. With a proven track record of successfully meeting complex and large-scale application security needs, the world’s most demanding software developers rely on Mend. The company has more than 1,000 customers, including 25 percent of the Fortune 100, and manages Renovate, the open source automated dependency update project. For more information, visit www.mend.io.

Mend.io Details
Product Website
Discussions
Mend.io Community
Languages Supported
English
Show LessShow More
Product Description

Integrated application security that identifies and automatically remediates vulnerabilities in open source and custom code.

How do you position yourself against your competitors?

Mend.io is the only application security platform in the world that provides automated remediation workflows for both open source vulnerabilities and custom code.

It is dramatically easier to use and more effective than traditional application security products. Most application security tools were designed several years ago, and they are not well-suited for today’s fast-paced environment. They are slow, cumbersome to use, and they flood developers with false positive alerts. And they were mainly designed to issue alerts. They were not designed to help developers fix the problems.

Mend.io is the first application security platform that automates the process of fixing application vulnerabilities. We take most of the burden off the developer, allowing teams to create and deliver quality, secure code.

Mend.io integrates easily into your software development environment. It activates automatically and provides results within minutes. This high level of automation and remediation assistance is why developers love to use Mend.io.

Seller Details
Seller
Mend
Company Website
Year Founded
2011
HQ Location
Boston, Massachusetts
Twitter
@Mend_io
11,590 Twitter followers
LinkedIn® Page
www.linkedin.com
303 employees on LinkedIn®
Description

Mend is a leading provider of software solutions focused on improving security and compliance for open source software. Their platform helps organizations identify vulnerabilities in their code, manage licensing risks, and streamline the process of maintaining secure and compliant software. With a commitment to enhancing software integrity, Mend empowers developers and businesses to innovate confidently while adhering to best practices in security. For more information, visit their website at [mend.io](https://mend.io).

Na'ama N.
NN
Overview Provided by:
Na'ama Nir

Recent Mend.io Reviews

Oliver l.
OL
Oliver l.Mid-Market (51-1000 emp.)
3.0 out of 5
"good experience with mend.io"
an easy-to-use and helpful tool for checking auto-updates and dependencies.
Read more
Israel Sebastián E.
IE
Israel Sebastián E.Small-Business (50 or fewer emp.)
5.0 out of 5
"Useful tool"
Enhances the application security and it's relatively easy to use and integrate.
Read more
Verified User
U
Verified UserMid-Market (51-1000 emp.)
4.5 out of 5
"Easy to use"
Easy to use. Helpful. Support is very responsive.
Read more
Security Badge
This seller hasn't added their security information yet. Let them know that you'd like them to add it.
0 people requested security information

Mend.io Media

Mend.io Demo - Our dashboard
All your open source inventory reports per product, including license distribution, security and quality alerts.
Mend.io Demo - Library view
See all the information about an open source library in one place.
Mend.io Demo - Automated Policies
Define policies to approve or reject new components based on their license, security vulnerability severity and more.
Mend.io Demo - Mend Prioritize trace analysis
See the full trace to the location of the vulnerable functionality.
Mend.io Demo - Mend Prioritize
Prioritize vulnerabilities based on whether your proprietary code is making calls to the vulnerable method, making it effective.
Play Mend.io Video
Play Mend.io Video
Play Mend.io Video
Play Mend.io Video
Play Mend.io Video
Editedit

Official Downloads

Answer a few questions to help the Mend.io community
Have you used Mend.io before?
Yes

112 Mend.io Reviews

4.3 out of 5
The next elements are filters and will change the displayed results once they are selected.
Search reviews
Popular Mentions
The next elements are radio elements and sort the displayed results by the item selected and will update the results displayed.
Hide FiltersMore Filters
The next elements are filters and will change the displayed results once they are selected.
  • Company SizeExpand/Collapse Company Size Filter
  • User RoleExpand/Collapse User Role Filter
  • CategoryExpand/Collapse Category Filter
  • IndustryExpand/Collapse Industry Filter
  • RegionExpand/Collapse Region Filter
The next elements are filters and will change the displayed results once they are selected.
  • Sort By:
    G2 Sort
112 Mend.io Reviews
4.3 out of 5
  • Sort By:
    G2 Sort
112 Mend.io Reviews
4.3 out of 5
  • Sort By:
    G2 Sort

Mend.io Pros and Cons

How are these determined?Information
Pros and Cons are compiled from review feedback and grouped into themes to provide an easy-to-understand summary of user reviews.
Pros
Cons

Overall Review Sentiment for Mend.ioQuestion

Time to Implement
<1 day
>12 months
Return on Investment
<6 months
48+ months
Ease of Setup
0 (Difficult)
10 (Easy)
Log In
Want to see more insights from verified reviewers?
Log in to view review sentiment.
G2 reviews are authentic and verified.
Here's how.
Israel Sebastián E.
IE
Software Engineer Intern
Small-Business(50 or fewer emp.)
More Options
Validated Reviewer
Review source: G2 invite
Incentivized Review
What do you like best about Mend.io?

Enhances the application security and it's relatively easy to use and integrate. Review collected by and hosted on G2.com.

What do you dislike about Mend.io?

it might be helpful to separate pricing for each product Review collected by and hosted on G2.com.

What problems is Mend.io solving and how is that benefiting you?

Automated dependency updates benefits me a loot to keep the project secure and free of vulnerabilities. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Oliver l.
OL
Aspiring Software Engineer
Mid-Market(51-1000 emp.)
More Options
Validated Reviewer
Review source: G2 invite
Incentivized Review
What do you like best about Mend.io?

an easy-to-use and helpful tool for checking auto-updates and dependencies. Review collected by and hosted on G2.com.

What do you dislike about Mend.io?

not quite a good integration and is a bit too pricy. Review collected by and hosted on G2.com.

What problems is Mend.io solving and how is that benefiting you?

depedency check and updates, the remediation suggestions as well. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Verified User in Financial Services
AF
Mid-Market(51-1000 emp.)
More Options
Validated Reviewer
Verified Current User
Review source: Seller invite
Incentivized Review
What do you like best about Mend.io?

I really like the ability to integrate the tooling directly into our source code repository. This allows us to scan hundreds of repositories without needing to configure each of them separately. Onboarding is simple and the updated user interface is attractive and easy to use. Review collected by and hosted on G2.com.

What do you dislike about Mend.io?

SAST capabilities are new and still maturing. Documentation is good, but could use some improvement. Review collected by and hosted on G2.com.

What problems is Mend.io solving and how is that benefiting you?

Mend is helping us maintain an inventory of all of our open source components and is scanning every commit for open source vulnerabilities. Additionally, Mend is helping us identify potential security vulnerabilities in our source code. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Verified User in Banking
AB
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Verified Current User
Review source: Seller invite
Incentivized Review
What do you like best about Mend.io?

The most helpful feature in Mend.io is the Prioritize feature. It is a fast scan that checks if a vulnerability is reacheable by your code. So you can fix the vulnerabilities that trully affects your application Review collected by and hosted on G2.com.

What do you dislike about Mend.io?

I miss some kind of PoC for the CVEs that mend identifies. Some times it's hard to verify if the vulnerability is a true positive Review collected by and hosted on G2.com.

What problems is Mend.io solving and how is that benefiting you?

The main problem that Mend.io is solving is about reducing the False Positives vulnerabilities and the non reachable vulnerabilities in the Software Composition Analysis Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Christopher M.
CM
Mid-Market(51-1000 emp.)
More Options
Validated Reviewer
Verified Current User
Review source: Seller invite
Incentivized Review
What do you like best about Mend.io?

One of the strengths of Mend.io lies in the simplicity of integrating their unified agent into our Continuous Integration pipeline. This streamlined process, with its commendable support system and verbose documentation, has reduced setup times. We're now efficiently detecting open-source license violations. Coupled with the integration with JIRA, it ensures that open vulnerabilities are promptly and systematically recorded, streamlining our response and tracking processes. Review collected by and hosted on G2.com.

What do you dislike about Mend.io?

While the platform functions efficiently, there's scope for modernising the user interface. It would be beneficial to see Mend.io adopt a more contemporary design. However, it's worth noting that this aesthetic aspect doesn't detract from the product's overall usability. Review collected by and hosted on G2.com.

What problems is Mend.io solving and how is that benefiting you?

Mend addresses the challenges associated with open-source license compliance and vulnerability detection in our codebase. Efficiently identifying and alerting us about any license violations ensures that our software remains compliant, reducing potential legal risks. Additionally, its vulnerability detection capabilities enable us to swiftly pinpoint and rectify security vulnerabilities, enhancing our applications' overall safety and integrity.

The integration of Mend.io with JIRA facilitates a systematic recording and tracking of these vulnerabilities, ensuring a structured and effective response from our team. As a result, we maintain a higher standard of code quality and save significant time and resources, allowing us to focus on further development and innovation. This has been crucial for us, especially in the demanding environment of Continuous Integration. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Verified User in Insurance
UI
Mid-Market(51-1000 emp.)
More Options
Validated Reviewer
Verified Current User
Review source: Seller invite
Incentivized Review
What do you like best about Mend.io?

Easy to use. Helpful. Support is very responsive. Review collected by and hosted on G2.com.

What do you dislike about Mend.io?

Needing to report to the security team that doesn't understand software. Review collected by and hosted on G2.com.

What problems is Mend.io solving and how is that benefiting you?

Keeps us up to date on any known vulnerabilities in the open source packages we leverage. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Verified User in Hospital & Health Care
EH
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Verified Current User
Review source: Seller invite
Incentivized Review
What do you like best about Mend.io?

It's scanning capabilities are more than useful. CSM and support teams are really helpful and reactive. Review collected by and hosted on G2.com.

What do you dislike about Mend.io?

Its integration with on-premise tools can be challenging. Review collected by and hosted on G2.com.

What problems is Mend.io solving and how is that benefiting you?

We want to identify and mitigate issues with vurnerabilities and those licenses . Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
JB
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Review source: Seller invite
Incentivized Review
What do you like best about Mend.io?

It is easy to navigate and to find vulnerabilities and violations. Review collected by and hosted on G2.com.

What do you dislike about Mend.io?

I know there is a newer version coming, but it could have a bit more functionality. Review collected by and hosted on G2.com.

What problems is Mend.io solving and how is that benefiting you?

Mend is helping us contain vulnerabilities and licensing. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
PV
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Verified Current User
Review source: Seller invite
Incentivized Review
What do you like best about Mend.io?

Mend is one of the good tool and we can use the tool SCA, SAST and container scans and results are good compared to other tools Review collected by and hosted on G2.com.

What do you dislike about Mend.io?

More false positives, difficult intagration, lot of issue in scanner updations and configuration Review collected by and hosted on G2.com.

What problems is Mend.io solving and how is that benefiting you?

It helps to identify the vulnerablities at the early stage,help us by providing all the details about the Code. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Verified User in Non-Profit Organization Management
UN
Mid-Market(51-1000 emp.)
More Options
Validated Reviewer
Verified Current User
Review source: Seller invite
Incentivized Review
What do you like best about Mend.io?

Mend has several strengths. First, the company behind it is relatively transparent, helpful, and straightforward. I appreciated that they didn't oversell the product the way several competitors did. The software integrates nicely with Microsoft development tools. Customer support is good and responsive as well. Review collected by and hosted on G2.com.

What do you dislike about Mend.io?

This isn't really a knock, but as a point in time, they are integrating the SCA and the, I think, acquired SAST solutions together into a common platform. Obviously, that's a large effort, and once that is done, it will be even better. Review collected by and hosted on G2.com.

What problems is Mend.io solving and how is that benefiting you?

Mend simplifies the reporting and auditing aspect of documenting that vulnerabilities have been managed properly. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link

Mend.io Comparisons

Compare Mend.io vs. Black Duck
Compare Mend.io vs. Black Duck
Mend.ioVSBlack Duck
Compare Mend.io vs. Snyk
Compare Mend.io vs. Snyk
Mend.ioVSSnyk
Compare SonarQube Server (formerly SonarQube) vs. Mend.io
Compare SonarQube Server (formerly SonarQube) vs. Mend.io
Mend.ioVSSonarQube Server (formerly SonarQube)
Compare Mend.io ratings to similar products

Top Rated Mend.io Alternatives

Snyk
(122)
4.5 out of 5
GitHub
(2,195)
4.7 out of 5
GitLab
(823)
4.5 out of 5
See all Mend.io Alternatives

Explore More

Data Center Infrastructure Management (DCIM)
Best Payroll Software
Google Cloud SQL reviews
RFP Templates
Google Cloud Run reviews
Intent Data
Best Task Management Software
Natural Language Understanding (NLU)
Pros and Cons Details
Mend.io
Contact Mend.io