Developer Integrations
Mend Developer integrations make it easy for developers to identify and fix security and license issues while working within their native developer tools. The following are the main capabilities:
Mend Repository Integrations
Mend.io’s repository integrations seamlessly embed security scanning within your development workflow, detecting vulnerabilities early and delivering real-time feedback to prioritize critical issues. By focusing on new or modified vulnerabilities, Mend streamlines remediation, ensuring that code security is maintained throughout the development lifecycle. These integrations support various repositories, offering a comprehensive solution to enhance secure coding practices.
Mend AppSec Platform
Note: The Developer Platform is only available in the Mend AppSec Platform.
The other integrations listed in this section are available for Legacy SCA/SAST as well.
Mend Developer Platform (supports GitHub.com, Bitbucket Cloud, and Azure Repos)
Mend for Azure Repos (Old integration)
Legacy-Only Repository Integrations
Mend Remediate
Continuously track repositories to identify vulnerable open source components and generate fix pull requests (PR) automatically thus automating the remediation process
IDE Integrations
Alerts developers on vulnerable open source components while coding within the IDE UI so developers don’t have to switch between applications or wait until they’ve committed the code.
Browser Integration
A browser extension that allows developers to view a snapshot of a component’s details while browsing on web pages such as StackOverflow, Maven Central, GitHub, and many more before they download it and incorporate it into the product.
By providing these capabilities, Mend enables software developers and their companies to more quickly adapt to today’s ever-evolving threat environment.