Launching today

attestd
CVE and supply chain risk signals for autonomous AI agents.
7 followers
CVE and supply chain risk signals for autonomous AI agents.
7 followers
attestd is a CVE API for developers. Convert public vulnerability data and active exploitation signals into deterministic, machine-readable risk signals your automation and AI agents can act on directly.




How are you actually pulling the "active exploitation signals" part, since most public feeds are pretty noisy and lag behind what's really being exploited in the wild?
how does the active exploitation signal get refreshed, and is there a way to plug attestd into something like a GitHub Actions workflow to fail a build on a new CVE?