Introducing Early Advisories: Turn Emerging Threats into Action
We’re excited to introduce Early Advisories as part of the Upwind platform. Powered by Upwind’s security research team, Early Advisories notify customers about emerging threats, including zero-days and supply chain attacks, before they receive a CVE identifier.
Early Advisories are published directly into the Vulnerabilities module alongside CVE-based findings and automatically correlated with your live environment. There’s no separate feed to monitor or additional tooling to manage, just earlier visibility into the threats that matter most.

The Window Between Discovery and Action
Every security team has experienced the period between learning about an emerging threat and having the tools to act on it. A zero-day, supply chain attack, or malicious package is discovered. Researchers begin publishing technical analysis, vendors issue advisories, and proof-of-concept code may already be circulating. Your environment could be exposed, but most vulnerability programs can’t yet operationalize that intelligence.
Instead, security teams are left monitoring vendor bulletins, threat research, and security blogs, manually determining whether they’re affected and what action to take. The intelligence is valuable, but it lives outside the workflows that security teams rely on every day.
Early Advisories make pre-disclosure threat intelligence part of your existing vulnerability program. Emerging threats appear alongside CVEs and are automatically correlated with your live environment, so security teams can quickly understand their exposure, prioritize affected resources, and begin investigating without waiting for traditional vulnerability databases and scanners to catch up.

Integrated into Existing Vulnerability Workflows
Early Advisories are delivered directly into the Vulnerabilities module, where they appear alongside CVE findings and are automatically correlated with your live environment. Each advisory includes technical details, severity, supporting references, and runtime context that identifies the specific resources affected, helping teams quickly understand their exposure and prioritize a response.
To distinguish them from published CVEs, Early Advisories are identified with a dedicated Early Advisory source and can be filtered independently within the Vulnerabilities → Findings view.

Fully integrated into Upwind’s vulnerability workflow, Early Advisories work with the same automations teams already rely on. Teams can create workflows that automatically open Jira tickets, notify Slack channels, or trigger integrations with platforms like Datadog, Splunk, or Tines whenever it matches their risk criteria.
What This Looks Like in Practice
An emerging threat is identified. Upwind publishes an Early Advisory as soon as its security research team validates the threat. The advisory is automatically correlated with your live environment, helping teams quickly identify affected resources and begin investigating before a CVE is published or appears in NIST’s National Vulnerability Database (NVD).
Automated response from day one. As part of the existing vulnerability workflow, teams can automatically create Jira tickets, notify Slack channels, or trigger downstream workflows whenever an advisory matches their risk criteria without waiting for public vulnerability databases to update.
Focus on the resources that matter most. Not every Early Advisory requires an immediate response. Workflows can be scoped to trigger only when affected resources are internet-facing, package-in-use, or running in production, ensuring security teams prioritize the highest-risk exposure first.
A complete record of every action. From the moment an Early Advisory is published to the creation of tickets and notifications, every step is tracked within the vulnerability workflow, giving teams a clear audit trail for investigations, reporting, and response.
Upwind Joins Athena: The Industry Coalition to Protect Open Source Software from AI Attacks
That’s also why Upwind joined Athena, Chainguard’s industry coalition for the coordinated defense of open source software. Frontier AI models are now discovering novel zero-days at machine speed, and the gap between discovery and exploitation has narrowed to hours. Athena pools findings across the coalition, builds fixes under embargo, and routes pre-disclosure intelligence to cyber partners before a flaw ever becomes public.
As a cyber partner, Upwind receives that early feed and surfaces it directly as Early Advisories, so when an Athena advisory drops, customers can see immediately whether the affected package is running in their environment.
“AI is fundamentally changing the pace of vulnerability discovery, making coordinated defense more important than ever. By joining Athena, Upwind is bringing pre-disclosure vulnerability intelligence together with runtime visibility, helping organizations identify affected workloads and reduce the window between discovery and defense. Protecting the open source ecosystem is a shared responsibility, and we’re proud to contribute Upwind’s runtime intelligence to strengthen the coalition and improve visibility for the entire community.”
Tomer Hadassi, Chief Operating Officer, Upwind.
From Threat Intelligence to Action
Security teams can’t afford to wait for emerging threats to become operational. By the time a vulnerability is cataloged, enriched, and distributed through traditional databases, attackers may already be exploiting it.
Early Advisories bring emerging threat intelligence directly into the vulnerability workflow security teams already use. Instead of tracking vendor bulletins and manually assessing exposure, teams can immediately identify affected resources, prioritize risk using runtime context, and trigger the same automations they rely on for CVEs.
The result is a faster, more operational approach to vulnerability management—one that helps security teams investigate and respond as threats emerge, not just after they’re formally disclosed.
See how Early Advisories help security teams stay ahead of emerging threats. Schedule a personalized demo with the Upwind team.


