The Endor Labs Experience
Cursor (Anysphere)
Endor labs jumped in quickly and effectively, solving the problem of SCA for us.”
This class of issues [3rd party vulnerabilities] is covered for us. When the number is so small, we can focus on what’s truly impactful.”
Endor Labs has a very sophisticated engine for function reachability. I would say it is unparalleled in the industry as of right now."
Many companies don't understand that an enterprise customer is not a monolith, it's made up of living, breathing people, all with different interests, all trying to protect the company. The team at Endor Labs not only has tried and tested founders, but an executive team that understands the corporate environment and how to build a solution that fits the needs of multiple groups."
Endor Labs serves a critical need— while open source software development continues to grow, the way OSS dependencies and their influence on supply chain risk is managed today hinders development, and leaves both engineering and security teams frustrated."
Solarwinds was the first time a lot of businesses became aware of supply chain risk. Every boardroom had a conversation about how the company can ship secure code. Log4j made this issue even more obvious as everyone had to scramble to find a solution. We need to shift further left and solve these issues at design time, that's what Endor Labs is doing."
Citi runs one of the largest software development organizations in the world. At this scale, lost productivity due to false positive alerts is a compounding issue. Endor Labs integrates seamlessly into the developer workflow and helps pinpoint supply chain risks that may affect our business."
When Varun launched Endor Labs, it felt like he, if anybody, would have the highest odds of success in trying to really raise that security bar and help security teams protect our own products and services against our common adversaries."
