Cybersecurity monitoring that alerts you only about your stack.
TechWatchAlert is the French platform for real-time CVE monitoring and software end-of-life (EOL) tracking. Automatic prioritization via CVSS v4, EPSS and CISA KEV. Slack, Teams, email, webhook and REST API integrations. Hosted in France.
CVE alerts, EOL tracking, cyber monitoring. One unified platform.
Replace the dozens of RSS feeds, CERT-FR newsletters and CVE dashboards you check every morning. A single source of truth for your infrastructure's security.
Every CVE matched to your stack, in seconds.
No noise. Our CPE engine compares your technologies and their versions against 360,000 indexed CVEs, and surfaces only what truly concerns you.
Zero surprises on end-of-support.
Alerts at D-90, D-30, D-7 — for every component of your stack.
A daily brief, not an RSS flood.
The 12 best cyber sources, summarized and filtered to your stack.
Detection, prioritization, notification: under 30 seconds.
Every vulnerability follows an automated path — detection on CVEList v5, CVSS/EPSS/KEV enrichment, matching against your inventory, multi-channel notification.
CVE publication
Detected on CVEList v5, CISA KEV, or enriched via EPSS first.org.
Stack matching
CPE vendor/product/version cross-matching against your watchlist and min-severity filter.
Prioritization
CVSS v4, EPSS percentile, KEV flag, PoC availability — automatic scoring.
Multi-channel notification
Slack, Teams, email, webhook. Workflow: PENDING → ANALYZING → FIXING → RESOLVED.
Your alerts become workflows. Visual, composable, no code.
Pick a trigger, add your conditions, wire up your actions. From detected CVE to notified team — automatically, without writing a line of code.
From trigger to action, in a few clicks.
Build your automations on a canvas: each workflow starts from an event, filters by conditions, then runs actions on your channels.
- ✓CVE, EOL & certificate triggers new CVE, update, PoC, KEV, end of support…
- ✓Composable conditions severity, CVSS, EPSS, KEV, product, vendor
- ✓Multi-channel actions Slack, Teams, email, webhook, case
- ✓Dry run simulate on a real CVE before activating
Vigie answers, explains and takes action. Your cybersecurity copilot.
Ask in plain language. Vigie knows your estate, prioritizes by KEV and EPSS, and can even build your workflows — you always stay in control.
Built and hosted in France
CVE REST API: bring monitoring into your CI/CD.
20 documented REST endpoints to automate your vulnerability management: fetch alerts, query your watchlist, block a deployment on a critical CVE. Bearer auth, smart rate limiting, Starlight documentation with curl, Python, JavaScript and GitHub Actions examples.
Integrate TechWatchAlert into your pipeline.
Fetch your alerts, query the CVE database, read your watchlist, cases and statistics. Your entire monitoring is available read-only via the API (GET), to block a deployment on a critical CVE.
- ✓Bearer auth revocable keys, format
twa_... - ✓Read-only (GET) Public read API, per-plan quotas
- ✓Starlight docs curl, Python, JS, GitHub Actions examples
- ✓Outbound webhooks HMAC signatures, exponential retries
# Fetch a project's critical alerts curl "https://app.techwatchalert.com/api/v1/organizations/org_x7y8/projects/prj_a1b2/alerts?severity=critical&status=pending" \ -H "Authorization: Bearer twa_xK9...f2q" \ -H "Accept: application/json" # Response { "items": [{ "cve_id": "CVE-2026-1847", "severity": "CRITICAL", "cvss_score": 9.8, "epss_percentile": 0.97, "is_kev": true, "has_poc": true, "status": "PENDING" }], "total": 3, "page": 1 }
import httpx client = httpx.Client( base_url="https://app.techwatchalert.com/api/v1", headers={"Authorization": f"Bearer {API_KEY}"} ) # List a project's monitored stack r = client.get( f"/organizations/{org_id}/projects/{project_id}/stack" ) for tech in r.json()["items"]: print(f"{tech['vendor']}/{tech['product']}")
// Search CVEs by vendor + severity const res = await fetch( 'https://app.techwatchalert.com/api/v1/cves?' + new URLSearchParams({ vendor: 'nginx', severity: 'critical,high', is_kev: true }), { headers: { 'Authorization': `Bearer ${apiKey}` } } ); const { items, total } = await res.json(); console.log(`${total} active vulnerabilities on nginx`);
# .github/workflows/security-gate.yml name: Security Gate on: [push, pull_request] jobs: check-cves: runs-on: ubuntu-latest steps: - name: Block on critical CVEs run: | COUNT=$(curl -s \ -H "Authorization: Bearer ${{ secrets.TWA_KEY }}" \ "$TWA_URL/organizations/$ORG/projects/$PRJ/alerts?severity=critical&status=pending" \ | jq '.total') if [ "$COUNT" -gt "0" ]; then echo "❌ $COUNT unresolved critical CVE(s)" exit 1 fi
Cybersecurity monitoring pricing: simple, transparent, no surprises.
A plan for every team: free to get started, Plus for small teams, Pro to automate via API, Enterprise for SSO and compliance needs. No artificial cap on the number of CVEs monitored. Monthly or annual billing with 17% off.
To explore the platform and secure a personal project.
- ✓1 project
- ✓10 items in the watchlist
- ✓5 EOL subscriptions
- ✓Email notifications
- ✓News feed (6 sources)
- ✓Customizable dashboard
For small teams that need to organize monitoring together.
- ✓Everything in Basic, plus:
- ✓5 projects · 5 members
- ✓Organizations and groups
- ✓Case management workflow PENDING→RESOLVED
- ✓PDF reports history 24 months
- ✓3 webhooks outbound
- ✓Slack, Teams, email
For security teams that automate everything via API.
- ✓Everything in Plus, plus:
- ✓Unlimited projects & members
- ✓REST API v1 20 endpoints
- ✓Unlimited webhooks HMAC signatures
- ✓PDF reports history 48 months
- ✓Audit logs full
- ✓Priority support
For organizations with SSO, audit and compliance requirements.
- ✓Everything in Pro, plus:
- ✓SSO SAML / OIDC
- ✓Audit logs & compliance
- ✓Dedicated support & SLA
- ✓Tailored onboarding
- ✓DPA & France hosting
No commitment — change plan anytime.
French cybersecurity, built for demanding CIOs.
Hosting in France, AES-256 encryption, mandatory TOTP 2FA and full audit logs. Because protecting your stack starts with protecting our data.
Mandatory TOTP 2FA
Google Authenticator, Authy, 1Password — RFC 6238 compatible.
AES-256 encryption
At rest and TLS 1.3 in transit. Short-lived JWT + refresh token in Redis.
France hosting 🇫🇷
Paris-region datacenters. No transfer outside the EU.
Full audit logs
Every action traced: actor, entity, JSON changes, timestamp.
Native rate limiting
10 attempts / 60s per IP. Automatic alerts if brute-force is detected.
Isolated network
Data services on a private network. Only the frontend and API are exposed over HTTPS.
DPA available
Data Processing Agreement signable on request. Full export in 1 click.
99.9% uptime SLA
Multi-probe monitoring, public status page, post-mortem reports.
Try TechWatchAlert. Free.
All features, no credit card.