Mend.io Launches New Version of Mend for Containers
August 08, 2023

Mend.io announced Mend for Containers, a range of new features included with Mend's Software Composition Analysis (SCA) to scan container images and registries at scale, as well as providing runtime vulnerability prioritization from Kubernetes clusters to protect cloud-native applications from vulnerabilities and license risks throughout the entire software development lifecycle (SDLC), from code to cloud.

Mend for Containers helps DevSecOps teams identify threats prior to deployment and enforce security policies for containers, allowing greater control and visibility over the security of applications. Organizations can scan while images are in production and trace vulnerabilities in container images back to their source repository to pinpoint their origin and accelerate the remediation loop DevSecOps teams can gain control over security policies to allow or reject container images based on their level of risk, discover license issues with dependencies introduced in operating system packages, detect exposed secrets in container images before deployment to prevent supply chain attacks, and get protection from vulnerabilities introduced after pipeline AppSec scanning is complete.

"Effective risk reduction approaches for cloud-native applications include taking a holistic approach to the SDLC — finding and remediating risks as they are introduced, from coding with secure practices to evaluating risks with runtime scanning post-deployment," said Jeff Martin, vice president of product at Mend.io. "Mend for Containers brings Mend.io's leading detection and prioritization capabilities to container security, allowing developer teams to ensure quality and security every step of the way."

New Mend for Containers features include:

- New container image scanning tool available in unified CLI

- Secret detection for container images

- EPSS score to prioritize vulnerabilities

- Ability to trace container images to their source repository

- Container registry integrations to scan containers at scale

- License detection for operating system packages

Share this

Industry News

May 12, 2025

LambdaTest, a unified agentic AI and cloud engineering platform, has announced its partnership with MacStadium(link is external), the industry-leading private Mac cloud provider enabling enterprise macOS workloads, to accelerate its AI-native software testing by leveraging Apple Silicon.

May 12, 2025

Tricentis announced a new capability that injects Tricentis’ AI-driven testing intelligence into SAP’s integrated toolchain, part of RISE with SAP methodology.

May 12, 2025

Zencoder announced the launch of Zen Agents, delivering two innovations that transform AI-assisted development: a platform enabling teams to create and share custom agents organization-wide, and an open-source marketplace for community-contributed agents.

May 08, 2025

AWS announced the preview of the Amazon Q Developer integration in GitHub.

May 08, 2025

The OpenSearch Software Foundation, the vendor-neutral home for the OpenSearch Project, announced the general availability of OpenSearch 3.0.

May 08, 2025

Jozu raised $4 million in seed funding.

May 07, 2025

Wix.com announced the launch of the Wix Model Context Protocol (MCP) Server.

May 07, 2025

Pulumi announced Pulumi IDP, a new internal developer platform that accelerates cloud infrastructure delivery for organizations at any scale.

May 07, 2025

Qt Group announced plans for significant expansion of the Qt platform and ecosystem.

May 07, 2025

Testsigma introduced autonomous testing capabilities to its automation suite — powered by AI coworkers that collaborate with QA teams to simplify testing, speed up releases, and elevate software quality.

May 06, 2025

Google is rolling out an updated Gemini 2.5 Pro model with significantly enhanced coding capabilities.

May 06, 2025

BrowserStack announced the acquisition of Requestly, the open-source HTTP interception and API mocking tool that eliminates critical bottlenecks in modern web development.

May 06, 2025

Jitterbit announced the evolution of its unified AI-infused low-code Harmony platform to deliver accountable, layered AI technology — including enterprise-ready AI agents — across its entire product portfolio.

May 05, 2025

The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, and Synadia announced that the NATS project will continue to thrive in the cloud native open source ecosystem of the CNCF with Synadia’s continued support and involvement.

May 05, 2025

RapDev announced the launch of Arlo, an AI Agent for ServiceNow designed to transform how enterprises manage operational workflows, risk, and service delivery.