Contributor-level supply chain risk — not AppSec theater.

Red Cell · Hunted Labs · SDLC risk · 2025

Password

Full case study

Wedge definition, risk model, and enterprise trust work — password protected.

ROLEProduct Direction + Design
SCOPEPre-seed + SBIR · Product wedge
CONTEXTEnterprise supply chain · OSS contributors
YEARS2025

Most AppSec tooling inventories packages; procurement asks whether risk is visible before it becomes an incident. The wedge was contributor-level resolution in the SDLC — what security teams can actually govern.

Outcomes.

$3M pre-seed

Mar 2025 — contributor-level supply chain visibility as product thesis.

AFWERX SBIR

$1.79M — defense-adjacent signal model validation.

Entercept™

SDLC and contributor risk vs. generic AppSec coverage.

What the full case covers

  • Command-line tools with no adoption story — making risk visible
  • Threat hunters vs. buyers; investigative workflow and demo legibility
  • Entercept productization, Mantine design system, sales-ready demos