Zenolve Feeds
Security data

CERT/CC Vulnerability Notes API

CERT/CC coordinated vulnerability disclosures as structured JSON - VU# ID, title, publish and update dates.

Source: CERT Coordination Center (Carnegie Mellon SEI)$0.01 / recordJSON · CSV · ExcelMCP tool for AI agents

What this feed does

CERT/CC's Vulnerability Notes are high-signal, multi-vendor disclosures - and since CERT deprecated its public data archive for the gated VINCE API, the public listing page is the only open feed. This feed returns it as structured JSON.

Structured, not scraped-by-you

Clean JSON with stable field names - no HTML parsing, no selectors to maintain when the site changes.

Pay only for what you pull

No subscription. $0.01 per record via Apify's metered billing; a typical pull is cents.

Human + agent ready

Call it from cURL, Python, or JS - or hand it to an AI agent as an MCP tool.

Always the latest

Scraped from the official source on every run, so you never ship stale data.

What each record contains

Every result is a JSON object with these fields.

FieldTypeDescription
vu_idstringCERT VU# identifier.
titlestringVulnerability note title.
publishedstringDate the note was first published.
updatedstringDate the note was last updated.
detail_urlstring, URLDirect link to the full note on kb.cert.org.

Live sample

The most recent records, straight from the feed. Live sample - fetched at build time

Call it in one line

Runs the actor and returns the dataset. Swap in your Apify token.

cURL - one call, JSON back
curl "https://api.apify.com/v2/acts/zenolvepro~cert-cc-vulnerability-notes/run-sync-get-dataset-items?token=YOUR_APIFY_TOKEN"
Python
from apify_client import ApifyClient
client = ApifyClient("YOUR_APIFY_TOKEN")
run = client.actor("zenolvepro/cert-cc-vulnerability-notes").call()
for row in client.dataset(run["defaultDatasetId"]).iterate_items():
    print(row)
JavaScript / Node
import { ApifyClient } from 'apify-client';
const client = new ApifyClient({ token: 'YOUR_APIFY_TOKEN' });
const run = await client.actor('zenolvepro/cert-cc-vulnerability-notes').call();
const { items } = await client.dataset(run.defaultDatasetId).listItems();
console.log(items);
AI agents - Model Context Protocol (MCP)
https://mcp.apify.com?tools=zenolvepro/cert-cc-vulnerability-notes

Point any MCP-capable agent at this endpoint and the feed becomes a callable tool.

Who uses it

SOC, vulnerability-management, threat-intel, and PSIRT teams use it for monitoring, benchmarking, alerting, and enrichment.

Pricing

$0.01per record returned · pay-per-result, no subscription

Billed through Apify. A tiny per-run start fee ($0.00005) applies. Only pay for records you actually pull.

FAQ

Is there a free CERT/CC API?
CERT retired its public data archive; programmatic access now requires the gated VINCE API. This feed scrapes the public notes listing and returns JSON at $0.01 per record.
How current is it?
Live - each call scrapes the newest-first listing at request time.
What does each record include?
vu_id, title, published and updated dates, and the detail_url of the full advisory.
How does this differ from a CVE feed?
Vulnerability Notes are curated, coordinated disclosures (often multi-vendor) rather than the raw CVE firehose - higher signal for triage.
Can an AI agent call this directly?
Yes - exposed as an MCP tool for native agent calls.