Dark Mode is now live across the Upwind console for all users, giving security teams greater control over how they experience the platform so they can work more comfortably, stay focused longer, and adapt the interface to their environment, without changing workflows, data, or collaboration. Security work doesn’t happen in neat, predictable blocks of time. […]

We’re excited to announce that ISO/IEC 27001 and ISO/IEC 27002 frameworks are generally available across the Upwind platform. This release enables organizations to apply globally recognized information security standards more effectively within modern cloud environments, without sacrificing the governance rigor they are designed to provide. As cloud environments continue to grow in scale and complexity, […]

Today, we’re excited to announce expanded configuration override settings, a new set of capabilities that give teams greater control over how configuration risk is prioritized. With support for rule-level severity overrides and in-platform commenting, teams can now apply context and collaborate directly where risk decisions are made. Earlier this year, we introduced Upwind’s Open Source Security model, along […]

Today, we’re excited to announce the general availability of Upwind’s new End of Life (EOL)  and End of Support (EOS) Visibility, now accessible to all customers and POCs. This feature brings clarity to lifecycle risk across cloud environments and represents a meaningful advancement in strengthening operational resilience. Importantly, this capability was shaped directly by customer […]

Today, we’re excited to introduce GitLab Automated Repository Scanning, a major upgrade to Upwind’s Shift-Left security capabilities that brings automatic, real-time scanning directly into the GitLab merge request workflows. With this new capability, every merge request across all your GitLab repositories is scanned the moment it’s opened, without requiring developers to modify CI/CD pipelines or […]

We’re excited to share that EPSS (Exploit Prediction Scoring System) scoring is now available in Upwind’s Vulnerability Management module. This brings data-driven exploit likelihood insights directly into your vulnerability workflows, helping teams prioritize remediation based on real-world risk rather than theoretical severity alone. What Is EPSS? Security teams face thousands of vulnerabilities each week. The […]

Today, we’re excited to announce the private preview release of The Upwind Tracer for AWS Lambda Functions, bringing serverless-native runtime security and observability to your Lambda workloads. As teams continue to adopt and evaluate AWS Lambda for event-driven application architectures, it remains important to verify that its benefits – such as automatic scaling, minimal infrastructure […]

The newly released ISMG 2025 CNAPP Market Guide doesn’t just map the rapid evolution of cloud-native security – it highlights the vendors defining its future. Among the 19 platforms evaluated, Upwind stands out as one of the clearest examples of where the market is heading: runtime-powered, AI-driven, and built for the speed and complexity of […]

We’re thrilled to announce that Upwind now automatically posts concise, runtime-informed vulnerability feedback directly on GitLab merge requests when enabled in your CI/CD pipeline. Developers spend most of their time in merge requests, where they also need security context. As part of our Shift Left capabilities, Upwind brings prioritized, contextual findings into the GitLab review […]

We’re excited to announce that Upwind now supports the NIST Cybersecurity Framework, giving organizations a faster and more effective path to achieving compliance across their environments. With this release, all Upwind customers can map their entire cloud and containerized infrastructure to NIST controls in a single day, gaining instant visibility into alignment, gaps, and risk. […]