Mend for Azure DevOps (formerly WhiteSource)

Important Note: You will need to purchase Mend to activate the extension.

Get the insights you need, when you need them. The extension provides full visibility of your open source components, alerts on security vulnerabilities, and compliance issues and offers actionable remediation insights in real-time. Mend integrates seamlessly into your pipeline environment in a frictionless integration, without interrupting or delaying your workflow.

Key Benefits

• Detecting vulnerabilities during build process: DevOps managers get immediate visibility into open source components with risk report embedded in their pipeline environment.
• Speed-up remediation: Developers save time by fixing vulnerabilities during the build. Integrating security and compliance testing pre-release allows issues to be detected earlier when they are easier and quicker to fix.
• Non-intrusive integration: The seamless integration with Azure DevOps pipelines makes Mend easy to use and allows DevOps managers to naturally consume Mend security and compliance data without ever leaving the Azure DevOps environment or requiring additional tools.