mend.io

HTML metadata

Title

Mend.io | Application Security and AI Security, Unified

Description

Traditional application security misses AI risk. Standalone AI security tools miss your code. Mend.io closes the gap with unified security for AppSec and AI.

Language

en-US

Canonical

https://www.mend.io/

Feeds

Mend » Feed RSS

Open Graph

url: https://www.mend.io/
title: Mend.io | Application Security and AI Security, Unified
locale: en_US
site name: Mend.io
description: Traditional application security misses AI risk. Standalone AI security tools miss your code. Mend.io closes the gap with unified security for AppSec and AI.
updated time: 2026-05-13T15:23:51+00:00

Technology

CDN: Amazon CloudFront
Server: nginx
CMS: WordPress

Analytics

Google Tag Manager

Third-party hosts loaded (4)

static.addtoany.com×2
dev.visualwebsiteoptimizer.com×1
gmpg.org×1
www.googletagmanager.com×1

Social

Contact

Address: 20 Park Plaza, Suite 322, 02116, Boston, MA, US

DNS records live

NS

elliot.ns.cloudflare.com
malavika.ns.cloudflare.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

Show 21 TXT records

903008721d6042259e61b11602068a29.mend.io
openai-domain-verification=dv-PjpX2ZbgAz6nX5SDiyVBv9p5
qfiljhlckcjkijchpmfjsk03bu
docker-verification=c66c2fc1-6d6f-45b5-b5a0-f469aa949d67
figma-domain-verification=02dff99daa54806ad3a12f2c7a1f544a18fc30d45e093a28673f4dde18a209b2-1768829655
cursor-domain-verification-zd5q07=FZTAs1oePCoGoQ5qU6VATce2n
MS=ms89870022
google-site-verification=yiPnnvZIyVzsGOYzTZU_v3wKboh3iYLhVLXMMvSU4wU
ZOOM_verify_Tlz0ykYuVnoKzZrEE7WjBe
google-site-verification=XOgiBsAWUbtZnpZEbhv6TA9zt4JDKrdrWx100y0x68g
_jxjxtofcn66dgy6b6bmw1v6jh8sdvcz
google-site-verification=70MgCdEf_ZLynIpoudaZi5DJao9-m7Bo2Q-RN3iqaOE
google-site-verification=GA-SWpOM-s6ZEtcVud7ujrKauA5oZdkn4Y3kWIUMvD8
hgstpklz2563dgvz7ppkzf74g6048z8g
atlassian-domain-verification=f4XGWZYYld/akjByvVES9HqWe/vzhECeNmiSK5D5iN3yeF/6qwHvdUNfvQFDiKPi
xptxm88v5llg7rr1kx9blyp53km4h1vx
status-page-domain-verification=cnnzt7ysr36p
mongodb-site-verification=e9Z1F5Jd4hPJpUETkkkzJ31EY9tBgmGp
h1-domain-verification=P6kwhPr5W45BkYhhhuJRvjoT8KDYLfXPFQPH6vcofoyQS1Da
bw=pDJcuIHGXD5GGBweeFSRHVErj2iQ80ZwLKF261WpX7AC
_4rurwqnkogq3gyz140m9x670lge4ft4

Email authentication strong

SPF

v=spf1 redirect=_s1hwd6d8k.sdmarc.net

no all qualifier

DMARC

v=DMARC1; p=reject; pct=100; ri=43200; rua=mailto:a.1hwd6d8k@sdmarc.net; ruf=mailto:f.1hwd6d8k@sdmarc.net

policy: reject (enforced)

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlEy0KNrIzPuTdGDEJTey5jUtvHS+tOdWnnD9U3dvEIlHDy7qDiPk2S6GK0tXaSeGBkrj1eoo9euBRm…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0FbONa3k2KfK0DeMs/ZAVleAtFSjBLm4vVUFZetoYk5EBx7ED1DDHByzwZ6etf0BHFg70nYbvT9Ra+qrUi…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqUH7LECZPStBMOcnDWWeHJK9hmZtpdmz9tLJJgfvLdqCJOrjfLW2KdO162NhV1qng6X1ZVwwbni6LqNp0…

selectors probed

Certificate (current)

Amazon RSA 2048 M04

from 2025-06-30 to 2026-07-30

Expires in 72 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.mend.io/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy
permissions-policy

findings

CSP uses wildcard sources
missing frame protection

Header values

referrer-policy: no-referrer-when-downgrade
permissions-policy: autoplay=*, camera=(self), cross-origin-isolated=*, display-capture=(self), encrypted-media=*, geolocation=*, keyboard-map=*, microphone=(self), payment=(self), sync-xhr=*, fullscreen=*
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' https://mend.io https://*.mend.io https://capture.navattic.com https://*.vwo.com;
strict-transport-security: max-age=31536000; includeSubDomains