Skip to main content
For AI agents: a documentation index is available at https://docs.coverbase.com/llms.txt — this page is also available in markdown by appending .md to the URL.
Supplier Radar ingests signals from threat intelligence feeds, public disclosures, sanctions and watchlists, breach databases, regulatory actions, and other external sources. Detected events are normalized, enriched with vendor context, and routed through configurable triage logic into downstream workflows.

What it does

Multi-source signal ingestion

Combine threat intel, breach databases, sanctions and watchlists, regulatory actions, and public disclosures into one event stream.

Vendor context enrichment

Normalize raw events and enrich them with the vendor’s risk tier, services in scope, contract status, and owner so triage decisions have context.

Configurable triage rules

Sequence rules for severity scoring, deduplication, and assignment so the right risk owner sees the right event at the right time.

Workflow orchestration

Route triaged events into downstream actions: notify a vendor owner, open a finding, trigger a reassessment, or escalate to incident response.

How to integrate

Radar API

Create radar events, and list, retrieve, and dismiss radar alerts programmatically.

Reassessments API

Turn a radar event or alert into a batch of vendor reassessments — curate, confirm, and run, without opening a case.

Webhooks

Subscribe to RadarEvent.*, RadarDetectorResult.*, and Reassessment.* events and react in real time.

MCP Server

Query radar alerts conversationally. “Any new radar alerts on tier-1 vendors in the past 24 hours?” or “Show me every vendor affected by the Snowflake outage.”

Export API

Pull radar events and findings into your SIEM, incident response platform, or executive dashboards.

Common workflows

Third-party breach response

When a vendor is implicated in a breach disclosure, Radar surfaces every customer-side service that depends on that vendor, calculates blast radius, and routes incident notifications to the right owners automatically. No waiting for vendor self-disclosure.
Track regulatory actions, fines, and consent orders against vendors. Trigger reassessment workflows or contract review when a vendor’s regulatory standing changes materially.
During industry-wide events (a major cloud outage, a widespread CVE, a sanctions enforcement action), Radar identifies every vendor in your portfolio with exposure and routes coordinated response across owners.
Radar configuration (detectors, sources, default reviewers) is managed through the dashboard. Programmatic access to events and detectors is available via the MCP server today; a dedicated REST event stream is on the roadmap.