Case Study: Jellyfish achieves better open source risk prioritization with Endor Labs

Jellyfish Enables Data-Driven AppSec with Endor Labs

Jellyfish, an engineering management platform, faced significant challenges with their previous software composition analysis (SCA) tool, Snyk. The tool provided inaccurate risk modeling, particularly with reachability analysis, and created operational inefficiencies, making it difficult for the security team to prioritize open source risks effectively without wasting time on manual research. This hindered their data-driven approach to application security.

Endor Labs provided a solution that met all of Jellyfish's requirements, including function-level reachability analysis and robust SBOM support. By implementing Endor Labs, Jellyfish achieved accurate risk prioritization, improved confidence in their security models, and streamlined their development workflows with integrated policies. This allowed them to focus resources on actual threats and present a true picture of their security posture to leadership.

Jellyfish

James Kirk

Head of Security and Privacy