DefectDojo Blog

Using AI Tools to Map Your Asset Hierarchy to DefectDojo

MATT TESAURO — Tue, 09 Jun 2026 14:00:05 GMT

Some users like to start by diving straight into importing data, but performing some initial structuring can pay dividends.

DefectDojo v3 Is Here: A Ground-Up Rebuild for the Modern Security Team

GREG ANDERSON — Tue, 02 Jun 2026 17:32:54 GMT

After years of incremental improvements to v2, DefectDojo v3 represents the most significant change to the project. We’ve made massive improvements to how DefectDojo looks, how it deploys, and how it serves security teams at every stage of maturity.

9 Signs You’re Ready for DefectDojo Pro

GREG ANDERSON — Tue, 31 Mar 2026 14:15:00 GMT

DefectDojo’s open-source edition is the best way to start a unified vulnerability management program. It was built by security engineers who were tired of spreadsheets, and for years it’s been the go-to for teams who want serious vulnerability management without a serious budget. That’s not changing.

11 DevSecOps Tools and the Top Use Cases in 2026

GREG ANDERSON — Mon, 09 Mar 2026 16:15:00 GMT

By 2026, DevSecOps has evolved from a buzzword into the operational backbone of secure software delivery. With the rise of AI-generated code, increasingly complex supply chains, and the "shift-left" movement becoming standard practice, the toolchain you choose is more critical than ever.

Vulnerability Management in 2026: Moving from "Scan & Patch" to Continuous Orchestration

GREG ANDERSON — Mon, 09 Mar 2026 14:14:59 GMT

The traditional definition of Vulnerability Management (VM) is simple: find bugs, list them, and patch them. But in 2026, simplicity is a luxury security teams don't have.

New Connector: DefectDojo + IriusRisk - Connect Threat Modeling to Vulnerability Management

GREG ANDERSON — Thu, 05 Mar 2026 15:00:01 GMT

Your threat models now have a direct line to your vulnerability management program.

New Connector: DefectDojo + JFrog Xray - Bring Your Software Composition Findings Into One Place

GREG ANDERSON — Wed, 04 Mar 2026 14:45:00 GMT

Your artifact security findings now have a home in your vulnerability management program.

New Feature: Finding Diff - See Exactly What Changed Between Any Two Scans

GREG ANDERSON — Tue, 03 Mar 2026 14:45:00 GMT

Stop guessing which vulnerabilities are new. Now you can diff any two objects and know instantly.

Elevate Your Security Strategy: Effective Vulnerability Prioritization with DefectDojo

GREG ANDERSON — Mon, 02 Mar 2026 17:00:00 GMT

Security teams today are drowning in data but starving for context. With the average enterprise managing over 50 different security tools—from SAST and DAST to Container and Cloud scanners—the result is a "vulnerability backlog" that is mathematically impossible to clear.

New Connector: DefectDojo + Akamai Security: Edge-to-Core Vulnerability Management, Unified

GREG ANDERSON — Mon, 02 Mar 2026 14:30:00 GMT

Your edge security just got a direct line to your vulnerability management program.