Application Security Security Bloggers Network 
SBN

Introducing Mend AI Premium

by Lisa Haas on March 4, 2025

AI development has spread far and wide and is only beginning to mature—but the large number of models, frameworks, and components, and how they all interact, still leaves a non-uniform landscape that is difficult to secure.

At Mend.io, we approach AI application security from an enterprise-level perspective. While other AppSec platform vendors focus solely on vulnerabilities within AI-generated code (which we cover, too), we prioritize securing AI components themselves and to do so, we leverage existing risk management strategies, processes, and tooling to uncover the unique risks of AI, without completely reinventing the wheel.  

Unlike isolated point solutions, Mend.io provides a single, comprehensive platform for securing an organization’s entire codebase, and that includes the AI components within it. We believe in integrating AI security seamlessly into existing workflows for maximum efficiency and minimal disruption.

We’re excited to introduce Mend AI Premium, a suite of tools that enhances our existing AI security solutions.

Mend AppSec Platform customers are already using Mend AI, an AI component inventory management solution that detects frameworks and models used in applications to provide full visibility into the AI components wherever they might be in the codebase. Now, Mend customers can also opt in for additional AI component security coverage with Mend AI Premium.

Mend AI Premium key benefits

With Mend AI Premium, organizations get actionable insights into their AI model and framework inventory and the risks those components introduce—both shared risks that come just from the presence of the component and previously hard-to-detect behavioral risks that are unique to the application.

With Mend AI Premium, you gain…

  • AI Component Risk Insights: Attain actionable insights on known risks tied to AI models, including licensing, public security vulnerabilities, and malicious packages. 
  • AI Behavioral Risks (Red-teaming): Identify risks unique to your AI-powered application, your data, and your concerns using prebuilt, customizable tests to verify your application’s security against threats like prompt injection, context leakage, and data exfiltration.
  • Proactive Policies and Governance: Govern AI components throughout the software development lifecycle with Mend.io’s robust policy engine and powerful automation workflows.

Mend.io: Helping you build a mature AI security program

Simply getting a handle on which AI models and frameworks are in the codebase is a huge step forward that many teams still haven’t made. With the additional benefits of Mend AI Premium, AppSec teams can also apply tried and true concepts of governance, testing, and visibility to the new AI technologies developers introduce.

*** This is a Security Bloggers Network syndicated blog from Mend authored by Lisa Haas. Read the original post at: https://www.mend.io/blog/introducing-mend-ai-premium/

Lisa Haas ,