← Use Cases

How do I detect early warning signs from vendor domain changes?

The problem

A vendor whose domain health degrades might be in financial trouble. An expiring domain, a lapsed SSL certificate, or a domain status change to pendingDelete are signals that something is wrong. By the time you notice the vendor's website is down, it may be too late to find an alternative.

Supply chain disruptions are expensive. A vendor that goes dark without warning can stall projects, break integrations, and cost you weeks of scrambling. Monitoring their domain health is an early warning system that costs almost nothing compared to the risk.

How Unphurl solves it

Set up a monthly batch check of all your vendor and supplier domains. Unphurl flags any changes: SSL certificates that have lapsed, domains approaching expiry, sites that have gone parked, and redirect chains that have changed. You catch degradation early, while there's still time to act.

Signals that matter for this use case

  • Parked domain means the vendor's website has been replaced with a placeholder. This is a serious red flag.
  • SSL invalid signals a certificate that has expired or become misconfigured. Infrastructure is degrading.
  • HTTP only means SSL has been removed entirely. The site is no longer secured.
  • Chain incomplete means the URL can't be reached at all. The site may be down.
  • Expiring soon means the domain registration is about to lapse. The vendor may not be renewing.
  • Bad domain status (pendingDelete, serverHold) is the strongest signal. The domain is being reclaimed.
  • Excessive redirects (5+ hops) can indicate a domain has been sold or repurposed

Suggested scoring profile

{
  "name": "supply-chain",
  "weights": {
    "parked": 25,
    "ssl_invalid": 25,
    "http_only": 20,
    "chain_incomplete": 20,
    "expiring_soon": 15,
    "domain_status_bad": 20,
    "redirects_5": 15,
    "brand_impersonation": 0,
    "domain_age_7": 0
  }
}

What a result looks like

Your monthly check of 200 vendor domains comes back:

200 vendor domains checked:
Clean: 195
Flagged: 5
vendor-a.com: SSL expired (+25)
vendor-b.io: SSL expired (+25)
supplier-c.net: domain expiring in 12 days (+15)
partner-d.com: parked (+25)
tools-e.xyz: 6 redirect hops (+15) to different domain

Five vendors need attention. Two have lapsed SSL (infrastructure neglect). One domain is expiring in 12 days (possible financial trouble). One has gone parked (company may have closed). One is redirecting through 6 hops to a completely different domain (possible acquisition or abandonment). You have time to investigate and line up alternatives.

Cost

Monthly batch of 100-500 vendor domains. Most resolve from cache after the first run, so recurring checks are cheaper. The Starter package ($9) covers a year of monthly monitoring for a typical vendor list.

Get started

For developers: Set up a monthly cron job to batch check your vendor list. 

# Batch check vendor domains with supply chain profile
unphurl --batch vendor-domains.csv --profile supply-chain

# Compare against last month's results
unphurl --batch vendor-domains.csv --profile supply-chain --json | \
  jq -r '.results[] | select(.result.score > 0) | "\(.url): score \(.result.score)"'

For non-coders (Claude Cowork, OpenClaw, or any AI agent): Upload your vendor domain list and ask: "Check all these vendor domains. Flag any with expired SSL, expiring registrations, parked sites, or unusual redirect behaviour."

Read the docs All use cases