Upwind Enables More Secure, Resilient Cloud Environments with New End of Life and End of Support Visibility
Today, we’re excited to announce the general availability of Upwind’s new End of Life (EOL) and End of Support (EOS) Visibility, now accessible to all customers and POCs. This feature brings clarity to lifecycle risk across cloud environments and represents a meaningful advancement in strengthening operational resilience. Importantly, this capability was shaped directly by customer […]
Upwind Enables Effortless Shift-Left Security for Every Merge Request
Today, we’re excited to introduce GitLab Automated Repository Scanning, a major upgrade to Upwind’s Shift-Left security capabilities that brings automatic, real-time scanning directly into the GitLab merge request workflows. With this new capability, every merge request across all your GitLab repositories is scanned the moment it’s opened, without requiring developers to modify CI/CD pipelines or […]
Upwind Prioritizes Vulnerabilities Based on Real-World Exploit Likelihood with EPSS Scoring
We’re excited to share that EPSS (Exploit Prediction Scoring System) scoring is now available in Upwind’s Vulnerability Management module. This brings data-driven exploit likelihood insights directly into your vulnerability workflows, helping teams prioritize remediation based on real-world risk rather than theoretical severity alone. What Is EPSS? Security teams face thousands of vulnerabilities each week. The […]
Introducing The Upwind Tracer for AWS Lambda Functions: Deep Runtime Security for Serverless Workloads
Today, we’re excited to announce the private preview release of The Upwind Tracer for AWS Lambda Functions, bringing serverless-native runtime security and observability to your Lambda workloads. As teams continue to adopt and evaluate AWS Lambda for event-driven application architectures, it remains important to verify that its benefits – such as automatic scaling, minimal infrastructure […]
The First-Ever API Security Support for AWS Fargate with Deep Layer 7 Visibility for Serverless Compute
We’re excited to announce a major expansion of the Upwind Platform: API Security is now fully available for AWS Fargate workloads. With this update, customers gain the same deep API discovery, behavioral insight, and layer 7 visibility for Fargate that Upwind already delivers across Kubernetes, VMs, and other cloud compute environments. As organizations shift toward […]
2025 CNAPP Market Guide: Key Takeaways – And Why Upwind Is Positioned to Win
The newly released ISMG 2025 CNAPP Market Guide doesn’t just map the rapid evolution of cloud-native security – it highlights the vendors defining its future. Among the 19 platforms evaluated, Upwind stands out as one of the clearest examples of where the market is heading: runtime-powered, AI-driven, and built for the speed and complexity of […]
Upwind Delivers Security Feedback where Developers Already Work, in GitLab
We’re thrilled to announce that Upwind now automatically posts concise, runtime-informed vulnerability feedback directly on GitLab merge requests when enabled in your CI/CD pipeline. Developers spend most of their time in merge requests, where they also need security context. As part of our Shift Left capabilities, Upwind brings prioritized, contextual findings into the GitLab review […]
Introducing Upwind’s ‘Open Source Security’ Model for Extreme Ownership of Cloud Risks
In today’s fast-paced cloud environments, risks and threats evolve by the minute, and teams closest to the code and infrastructure need the ability to understand their security posture, but also the flexibility of taking ownership of how to prioritize and remediate any given risk. In order to do so, security professionals need a way to […]
Introducing Security Risks: A Unified Model for Understanding Cloud Risks
Cloud security teams face an overwhelming amount of data. Misconfigurations, vulnerabilities, identity risks, and exposures often live in separate tools and dashboards, making it difficult to see how they connect. The real challenge is understanding how these signals intersect to create true risk. That’s why we are excited to introduce Upwind Security Risks – a unified […]
Upwind Strengthens Cloud Identity Security with New Microsoft Entra ID Detection Coverage
We are thrilled to announce that Upwind has expanded its Microsoft Entra ID (formerly Azure Active Directory) detection coverage to provide deeper visibility into identity changes, privilege escalation, and credential misuse across Azure environments. These new detections help security teams identify and respond to identity-driven threats faster, before they can compromise the tenant or persist […]
