External reviews
109 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Saves time, faster, Amazing customer support
What do you like best about the product?
Customer support.
Integration for other tools.
Integration for other tools.
What do you dislike about the product?
UI: Options on UI is not handy or not much presentable.
What problems is the product solving and how is that benefiting you?
Getting defined analysis for SCA and container scanning report helping me to keep track of vulnerability.
Great developers integration
What do you like best about the product?
I like the developers integration kit- spesifically the repo integration when I can see all my PR and decide on the action plan
What do you dislike about the product?
The first implementation was painful - it took couple of days to fully complete the integration and needed to open support cases to make sure it is completed
What problems is the product solving and how is that benefiting you?
I am able to manage the risk in my code- it shows me the risk for each libarary and suggest how it can be resolved- super quick and helpful!
Overall a good tool for your dev needs
What do you like best about the product?
comprehensive software composition analysis
provides in-depth visibility into open source components and their vulnerabilities, helping organizations proactively manage security risks.
provides in-depth visibility into open source components and their vulnerabilities, helping organizations proactively manage security risks.
What do you dislike about the product?
pricing structure can be quite complex, making it challenging to determine the most cost-effective plan for specific business needs.
What problems is the product solving and how is that benefiting you?
Don't need to maintain security vulnerabilities my self, mend io helps me keep up to date.
A Game-Changer in Open Source Software Security and Compliance Management
What do you like best about the product?
Mend seamlessly integrates into any build process, regardless of programming languages, build tools, or development environments. This flexibility allows developers to incorporate Mend into their existing workflows without disruptions. In addition, Mend automatically detects and analyzes open source components used in projects, providing comprehensive vulnerability reports. This proactive approach helps identify and address potential security risks, ensuring software remains secure.
Mend offers in-depth insights into licenses and obligations associated with open source components. It helps developers manage license conflicts and ensure compliance with legal and regulatory requirements.
Mend offers in-depth insights into licenses and obligations associated with open source components. It helps developers manage license conflicts and ensure compliance with legal and regulatory requirements.
What do you dislike about the product?
While Mend.io offers a comprehensive set of features, some users have mentioned that there can be a slight learning curve when initially getting familiar with the platform. However, this is often mitigated by the available documentation and support resources provided.
A few users have expressed that the user interface of Mend.io could be more intuitive and user-friendly. Streamlining the interface and enhancing the overall user experience could potentially be areas for improvement.
A few users have expressed that the user interface of Mend.io could be more intuitive and user-friendly. Streamlining the interface and enhancing the overall user experience could potentially be areas for improvement.
What problems is the product solving and how is that benefiting you?
Mend.io primarily solves two critical problems for software developers: open-source software security and compliance management.
Makes easy to manage your 3rd party libraries
What do you like best about the product?
The scans are quick, and a detailed report is provided.
Easy to manage.
Easy to manage.
What do you dislike about the product?
The dashboard/UI would be improved and made more user-friendly.
What problems is the product solving and how is that benefiting you?
It helps us to scan the libraries before the release. Is also a part of CI/CD pipeline.
Keep your dependency up to date
What do you like best about the product?
A unique feature that was offered by Mend Renovate for Github is the support for the Gradle version catalog. This is a very useful feature for big mono repo, to keep your java dependencies managed by gradle up-to-date and vulnerability free.
In the middle of 2022(when our organization was moved to Github), gradle version catalog was not supported by Github Dependabot, so natural Mend Renovate was a natural choice for us.
In the middle of 2022(when our organization was moved to Github), gradle version catalog was not supported by Github Dependabot, so natural Mend Renovate was a natural choice for us.
What do you dislike about the product?
As Mend Renovate for Github is a free tool, offered functionality is more than enough. A nice add-on would be integration with JIRA that allows tracking vulnerabilities with synchronization on the both side.
What problems is the product solving and how is that benefiting you?
Mend Renovate for GitHub help us keep our dependencies up to date, which causes fewer vulnerabilities in the final Product. The time required to update dependency was significantly decreased.
Fast and Reliable
What do you like best about the product?
IntelliJ Plugin - The analysis is really quick
What do you dislike about the product?
Viewing the report. I feel overwhelmed when I log in to Mend. The landing page should just contain the project I'm interested in and the related reports. Similar to tools like Fortify and Sonar.
What problems is the product solving and how is that benefiting you?
Helping our product to stay compliant by analyzing and reporting the security vulnerabilities in time.
Easy integration with CI/CD and powerful shift-left approach
What do you like best about the product?
It makes it very easy to break down and analyze all the open source packages that are in client's code with reports and dashboards to easily identify Critical, Highs, Med and Low risks. I also like that it easily integrates with Github and Azure DevOps to the point that I don't have to login to another site or console and I can see issues right on my platform for tracking and remediation
What do you dislike about the product?
The commonality with a lot of SAST tools is the amount of false positives.
What problems is the product solving and how is that benefiting you?
Client developers need data to patch the applications right from the start and with Mend we can do pre-commit and PR triggers that fix before we are shipping to production for better security.
Make it easy for your development team to address open source risk
What do you like best about the product?
Mend is a very intuitive tool that has integrations with many typical pipelines and repos. We have found it to be very good at identifying vulnerable components with a low false positive rate. It provides good recommendations for the best fix version of a library.
What do you dislike about the product?
Mend is starting to build out full support for exporting results in standard SBOM formats, but generating these outputs currently requires running separate Python scripts.
What problems is the product solving and how is that benefiting you?
Mend is used to address open source risk by evaluating for vulnerabilities, license risk, and code quality. It supports the enforcement of policies.
Better code.
What do you like best about the product?
Scanning for the vulnerabilities is always updated and the research team is doing an amazing job keeping everything up-to-date and not missing any vulnerability.
What do you dislike about the product?
I feel that the dashboard's UI can look nicer and more readable. eg better views, more modern design, easier access to products and related projects with a tree view.
What problems is the product solving and how is that benefiting you?
Security vulnerabilities, avoiding/fixing them to get a more secure product that satisfies the higher-ups and the clients together which increased the business performance
showing 11 - 20