Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Gartner Review
What do you like best about the product?
Scanning capabilities, scanning of open source and sending notifications
What do you dislike about the product?
Reporting feature needs to have more user friendly reports
What problems is the product solving and how is that benefiting you?
we use open source components and mend is giving us good info about vulnerabilities
- Leave a Comment |
- Mark review as helpful
Easy to use tool that supports our scanning needs
What do you like best about the product?
Mend supports source code library scans, container scans and also checks licenses used by our apps and services to ensure we are meeting our security, compliance and licensing requirements. We would have to use multiple platforms to achieve this.
What do you dislike about the product?
Mend is investing heavily in updating their scanning to be simpler and easier to use, however the new scanning tool does not support all of our use cases yet and we have to use a multitude of scanning methods on the mend platform to meet our needs. For example the CLI tool does not support poetry for python yet. We often have to roll our own utilities to make Mend work nicely with our CI/CD tooling, such as creating our own clean up tools and pipes to process the scan results.
What problems is the product solving and how is that benefiting you?
• Licensing compliance - ensuring we are not using libraries with licenses that are incompatible with how we are using the library
• Scanning for and reporting on the vulnerabilities in our libraries and containers to enable us to understand our exposure to threats and the risks on our business
• Understanding how up-to-date our libraries are. Old libraries are higher risk due to the risk of abandonware, and can have expensive upgrades (especially when dealing with zero-day vulnerabilities)
• Scanning for and reporting on the vulnerabilities in our libraries and containers to enable us to understand our exposure to threats and the risks on our business
• Understanding how up-to-date our libraries are. Old libraries are higher risk due to the risk of abandonware, and can have expensive upgrades (especially when dealing with zero-day vulnerabilities)
Industry Leading SCA Tool
What do you like best about the product?
Streamlined approach to SCA makes integration easy and informative. New features being added that have incredible value for what you are paying.
What do you dislike about the product?
It seems as though sometimes features are released without having much documentation published about it.
What problems is the product solving and how is that benefiting you?
SBOM, SCA, Supply Chain Risk Managment.
Saves time, faster, Amazing customer support
What do you like best about the product?
Customer support.
Integration for other tools.
Integration for other tools.
What do you dislike about the product?
UI: Options on UI is not handy or not much presentable.
What problems is the product solving and how is that benefiting you?
Getting defined analysis for SCA and container scanning report helping me to keep track of vulnerability.
Great developers integration
What do you like best about the product?
I like the developers integration kit- spesifically the repo integration when I can see all my PR and decide on the action plan
What do you dislike about the product?
The first implementation was painful - it took couple of days to fully complete the integration and needed to open support cases to make sure it is completed
What problems is the product solving and how is that benefiting you?
I am able to manage the risk in my code- it shows me the risk for each libarary and suggest how it can be resolved- super quick and helpful!
Very helpful and supporting to Detect Open Source Vulnerabilities
What do you like best about the product?
The quality report & recommendations.
User friendly Interface
User friendly Interface
What do you dislike about the product?
Sometimes rigid process, difficulties in cutomization
What problems is the product solving and how is that benefiting you?
Sharing OpenSource Licencing details to customers
Resolve security challenges due to older versions of OSS
Resolve security challenges due to older versions of OSS
Overall a good tool for your dev needs
What do you like best about the product?
comprehensive software composition analysis
provides in-depth visibility into open source components and their vulnerabilities, helping organizations proactively manage security risks.
provides in-depth visibility into open source components and their vulnerabilities, helping organizations proactively manage security risks.
What do you dislike about the product?
pricing structure can be quite complex, making it challenging to determine the most cost-effective plan for specific business needs.
What problems is the product solving and how is that benefiting you?
Don't need to maintain security vulnerabilities my self, mend io helps me keep up to date.
A Game-Changer in Open Source Software Security and Compliance Management
What do you like best about the product?
Mend seamlessly integrates into any build process, regardless of programming languages, build tools, or development environments. This flexibility allows developers to incorporate Mend into their existing workflows without disruptions. In addition, Mend automatically detects and analyzes open source components used in projects, providing comprehensive vulnerability reports. This proactive approach helps identify and address potential security risks, ensuring software remains secure.
Mend offers in-depth insights into licenses and obligations associated with open source components. It helps developers manage license conflicts and ensure compliance with legal and regulatory requirements.
Mend offers in-depth insights into licenses and obligations associated with open source components. It helps developers manage license conflicts and ensure compliance with legal and regulatory requirements.
What do you dislike about the product?
While Mend.io offers a comprehensive set of features, some users have mentioned that there can be a slight learning curve when initially getting familiar with the platform. However, this is often mitigated by the available documentation and support resources provided.
A few users have expressed that the user interface of Mend.io could be more intuitive and user-friendly. Streamlining the interface and enhancing the overall user experience could potentially be areas for improvement.
A few users have expressed that the user interface of Mend.io could be more intuitive and user-friendly. Streamlining the interface and enhancing the overall user experience could potentially be areas for improvement.
What problems is the product solving and how is that benefiting you?
Mend.io primarily solves two critical problems for software developers: open-source software security and compliance management.
Industry-leading SCA, work in progress
What do you like best about the product?
Quick and accurate scanning, multiple plug-ins for various different build and ci/cd platforms. Prioritize, Whitesource for developers
What do you dislike about the product?
hard to get some features working like
eua, and integration this Jira was challenging
eua, and integration this Jira was challenging
What problems is the product solving and how is that benefiting you?
Quick and accurate scanning, multiple plug-ins for various different build and ci/cd platforms. Prioritize, Whitesource for developers
Makes easy to manage your 3rd party libraries
What do you like best about the product?
The scans are quick, and a detailed report is provided.
Easy to manage.
Easy to manage.
What do you dislike about the product?
The dashboard/UI would be improved and made more user-friendly.
What problems is the product solving and how is that benefiting you?
It helps us to scan the libraries before the release. Is also a part of CI/CD pipeline.
showing 11 - 20