Vigil monitors security alerts, CVEs, and breach disclosures across your entire SaaS stack — and alerts you the moment something real happens. Every alert is verified from multiple sources before it reaches your inbox. No gossip, no noise.
No credit card required. Cancel anytime.
Vercel — Supply chain breach via Context.ai OAuth
GitHub — tj-actions/changed-files compromised
PostgreSQL — Non-owner statement execution privilege escalation
How it works
Select the SaaS tools and services your team depends on — Vercel, Stripe, Supabase, GitHub, and 20+ others.
Our pipeline polls CISA KEV, GitHub Advisories, and vendor security feeds every 30 minutes.
We only send you alerts that are corroborated from 2+ sources. Critical CVEs hit your inbox within 60 minutes of verification.
Data sources
CISA KEV
Known exploited vulnerabilities, confirmed by CISA
GitHub Advisory DB
npm, pip, Go, Rust ecosystems
Vendor RSS Feeds
Direct from Vercel, AWS, Stripe & more
Every CVE alert requires corroboration from at least 2 sources before it reaches you. CISA KEV entries are sent immediately — they're confirmed exploited.
Trusted by developers using
+20 more tools monitored
When Vigil detects a breach in software your organisation runs, you know within 60 minutes. Faster awareness means more time to assess scope, involve counsel, and prepare before regulatory windows close.
EU GDPR — Article 33(1)
Regulation (EU) 2016/679
Vigil surfaces breaches across your SaaS stack within 60 minutes of detection — giving you over 71 hours of your regulatory window to assess scope, involve counsel, and prepare your supervisory authority notification.
UK GDPR — ICO Requirement
UK Data Protection Act 2018
The UK post-Brexit framework mirrors the EU 72-hour clock. If your stack spans both UK and EU data subjects, a single Vigil alert gives your team simultaneous awareness — maximising response time under both frameworks.
SEC Cybersecurity Disclosure Rule
17 CFR §229.106 (Item 1.05 of Form 8-K)
For public companies, the SEC clock starts at "determination of materiality" — not awareness. Vigil's rapid detection gives security teams more time to assess materiality before the mandatory disclosure window opens.
Notifiable Data Breaches Scheme
Privacy Act 1988 (Cth), Part IIIC
Australia's NDB scheme requires notification once a breach is assessed as "eligible." Vigil accelerates the awareness phase — the prerequisite for starting your formal assessment.
Vigil is an informational alerting service, not a legal compliance tool. Regulatory obligations vary by jurisdiction, data type, and organisational context. Consult qualified legal counsel for breach response obligations.
Pricing
7-day free trial on all plans. Cancel at any time.
Solo
Team
First to know
Our pipeline checks CISA KEV and vendor feeds every 30 minutes, often delivering verified alerts before vendors send their own customer notifications.
Verified only
Every alert is corroborated from at least 2 independent sources before we send it. Your trust is our only product.
7-day free trial. No credit card. Cancel without drama.
Start monitoring now