Case Study: Global Shipping and Mailing Company achieves stronger application security, license compliance, and lower infrastructure costs with Mend SCA and Mend SAST

Global Shipping and Mailing Company Uses Mend SCA and Mend SAST to Boost Product Security Affordably Across the SDLC

A global shipping and mailing company that serves more than 90% of the Fortune 500 discovered a compromised banking application traced to a vulnerable open-source library. With over 600 developers using OSS and an expensive self-hosted SAST solution, the company needed a SaaS approach that could identify open-source risks, enforce license policies, keep proprietary code in-house during scans, and provide transparent pricing and technical support.

The company deployed Mend SCA and Mend SAST—integrated into IDEs, build pipelines, and container scans—using a unified agent and browser extension to enforce license policies and surface vulnerabilities early in the SDLC. Results included fewer high-severity findings, better developer awareness of risky libraries, unified visibility across SCA/SAST/container reports, significant infrastructure cost savings versus their prior hosted SAST, and strong, technical support.