VulnWatch continuously scans your repositories, monitors CVE databases in real-time, and alerts you instantly. Stop vulnerabilities before they become breaches.
Automated dependency scanning powered by pip-audit, npm audit, and trivy.
Run pip-audit, npm audit, and trivy across all your repositories on a schedule. Scans Python, Node.js, Docker images, and filesystems.
Real-time NVD API polling for new CVEs matching your dependencies. Know about vulnerabilities before they're weaponized.
Get Telegram and email notifications the moment a vulnerability is discovered. Severity-based filtering so you never miss a critical alert.
Auto-generated, beautifully formatted PDF vulnerability reports with severity breakdowns, CVE links, and fix recommendations.
Scan Docker images and running containers with trivy for OS-level vulnerabilities in base images and application layers.
All scanning runs locally on your infrastructure. Your code never leaves your environment. No third-party uploads, no data leaks.
Point VulnWatch at your repositories. Specify Python requirements, Node projects, Docker images, or filesystem paths.
The cron runs pip-audit, npm audit, and trivy on your schedule — hourly, daily, or weekly. Zero manual effort.
Critical and high-severity vulnerabilities trigger instant Telegram and email notifications with remediation advice.
Review detailed PDF reports with CVE links and recommended fix versions. Patch before exploits hit the wild.
Start free. Upgrade when you need more.
Perfect for personal projects and open-source.
For growing teams and production environments.
For organizations with complex infrastructure.
No credit card required. Set up in under 2 minutes.
By signing up, you agree to our Terms of Service and Privacy Policy.