SUPPLYCHAIN.FAIL
Weekly tracking of open-source vulnerability volume and critical supply chain alerts.

SUPPLYCHAIN.FAIL is an open-source vulnerability timeline that tracks weekly CVE data from the OSV (Open Source Vulnerabilities) database. It presents a contribution matrix visualizing total vulnerability volume over time, with tooltips linking to actionable high and critical severity records. The project is experimental and intended for informational awareness of supply chain security trends.
The tool queries the OSV database weekly and renders the data as a contribution-style matrix with linked tooltips for high and critical CVEs.
security researchers and developers monitoring open-source supply chain risks
Background.
- Status
- launched
- Business model
- free
Founders
- yann.softwaresite
Contact
Similar projects.
Editorial take on the space this project sits in — momentum signals, adjacent moves, our call on whether the wedge is real. Get pinged when we publish a new read or when the landscape shifts.
Have a take on this space?
Tell us what you’d build differently, where you think the incumbents miss, or what we’ve gotten wrong about this project. Comments + reactions are coming soon.