> ## Documentation Index
> Fetch the complete documentation index at: https://docs.coverbase.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Supplier Radar

> Continuous monitoring, triage, and response across your third-party ecosystem.

<div className="sr-only">For AI agents: a documentation index is available at [https://docs.coverbase.com/llms.txt](https://docs.coverbase.com/llms.txt) — this page is also available in markdown by appending .md to the URL.</div>

Supplier Radar ingests signals from threat intelligence feeds, public disclosures, sanctions and watchlists, breach databases, regulatory actions, and other external sources. Detected events are normalized, enriched with vendor context, and routed through configurable triage logic into downstream workflows.

## What it does

<CardGroup cols={2}>
  <Card title="Multi-source signal ingestion" icon="rss">
    Combine threat intel, breach databases, sanctions and watchlists, regulatory actions, and public disclosures into one event stream.
  </Card>

  <Card title="Vendor context enrichment" icon="circle-info">
    Normalize raw events and enrich them with the vendor's risk tier, services in scope, contract status, and owner so triage decisions have context.
  </Card>

  <Card title="Configurable triage rules" icon="filter">
    Sequence rules for severity scoring, deduplication, and assignment so the right risk owner sees the right event at the right time.
  </Card>

  <Card title="Workflow orchestration" icon="bolt">
    Route triaged events into downstream actions: notify a vendor owner, open a finding, trigger a reassessment, or escalate to incident response.
  </Card>
</CardGroup>

## How to integrate

<CardGroup cols={2}>
  <Card title="Radar API" icon="satellite-dish" href="/api-reference/radar">
    Create radar events, and list, retrieve, and dismiss radar alerts programmatically.
  </Card>

  <Card title="Reassessments API" icon="rotate" href="/api-reference/reassessments">
    Turn a radar event or alert into a batch of vendor reassessments — curate, confirm, and run, without opening a case.
  </Card>

  <Card title="Webhooks" icon="arrow-right-from-bracket" href="/integrations/webhooks">
    Subscribe to `RadarEvent.*`, `RadarDetectorResult.*`, and `Reassessment.*` events and react in real time.
  </Card>

  <Card title="MCP Server" icon="robot" href="/mcp/overview">
    Query radar alerts conversationally. "Any new radar alerts on tier-1 vendors in the past 24 hours?" or "Show me every vendor affected by the Snowflake outage."
  </Card>

  <Card title="Export API" icon="arrow-up-from-bracket" href="/export-api-concepts">
    Pull radar events and findings into your SIEM, incident response platform, or executive dashboards.
  </Card>
</CardGroup>

## Common workflows

<AccordionGroup>
  <Accordion title="Third-party breach response" defaultOpen icon="shield-exclamation">
    When a vendor is implicated in a breach disclosure, Radar surfaces every customer-side service that depends on that vendor, calculates blast radius, and routes incident notifications to the right owners automatically. No waiting for vendor self-disclosure.
  </Accordion>

  <Accordion title="Regulatory action monitoring" icon="gavel">
    Track regulatory actions, fines, and consent orders against vendors. Trigger reassessment workflows or contract review when a vendor's regulatory standing changes materially.
  </Accordion>

  <Accordion title="Ecosystem-wide incident tracking" icon="diagram-project">
    During industry-wide events (a major cloud outage, a widespread CVE, a sanctions enforcement action), Radar identifies every vendor in your portfolio with exposure and routes coordinated response across owners.
  </Accordion>
</AccordionGroup>

<Note>
  Radar configuration (detectors, sources, default reviewers) is managed through the dashboard. Programmatic access to events and detectors is available via the MCP server today; a dedicated REST event stream is on the roadmap.
</Note>