HTTP Security Headers — HSTS, CSP, Score 0-100
HTTP header security analysis API for AI agents. Analyze response headers for any URL: HSTS, Content-Security-Policy, X-Frame-Options, Referrer-Policy, Permissions-Policy, server detection, and caching config. Security score 0-100.
Tools: network_analyze_headers.
Use this for security audits, website hardening, or compliance checks. IMPORTANT: For comprehensive trust scoring, use trust_score_evaluate. For SSL-only, use security_check_ssl.
Returns: {score, headers[], missing[], server}. No API key required — x402 micropayment $0.001/call on Base L2.
JWT Decoder — Inspect Claims, Expiry & Algorithm
JWT token decoder API for AI agents. Decode and inspect JSON Web Tokens without verification: extract header (algorithm, type), payload (claims, issuer, audience), expiry timestamp, and signature info.
Tools: security_decode_jwt.
Use this for debugging authentication flows, inspecting token claims, or verifying token structure. IMPORTANT: This decodes without verifying — for security validation, verify signatures server-side.
Returns: {header, payload, claims, expiresAt, algorithm}. No API key required — x402 micropayment $0.001/call on Base L2.
Base64 Encoder/Decoder — Standard & URL-Safe
Base64 encoding/decoding API for AI agents. Encode text to base64 or decode base64 to text. Supports standard and URL-safe variants with metadata (input length, output length, encoding type).
Tools: utility_encode_base64.
Use this for encoding payloads, decoding tokens, or data transformation in pipelines. Basic utility for data processing.
Returns: {output, encoding, inputLength, outputLength}. No API key required — x402 micropayment $0.001/call on Base L2.
Web Scraper — Clean Markdown from Any URL
Web content extraction API for AI agents. Scrape any URL and get clean, structured Markdown content with navigation, ads, and scripts stripped. Full JavaScript rendering via headless Chromium. Single and batch (10 URLs) modes. Built for RAG pipelines and AI research.
Tools: web_scrape_to_markdown (single), web_scrape_batch (up to 10 URLs).
Use this for RAG ingestion, research, content analysis, data extraction, or competitive intelligence. IMPORTANT: For screenshots/PDFs of pages, use capture_screenshot instead. For SEO analysis, use seo_audit_page.
Returns: {markdown, title, wordCount, links[]}. No API key required — x402 micropayment $0.005/call on Base L2.
GDPR Compliance Scanner — Cookie, Privacy & Tracker Audit
GDPR compliance scanner API for AI agents. Audit any website for EU data protection compliance: cookie consent banner detection, privacy policy analysis, third-party tracker identification, DPO contact check, and composite score 0-100 with fix recommendations.
Tools: compliance_scan_gdpr.
Use this for compliance audits, vendor assessments, or regulatory due diligence. Essential for any agent handling EU user data. IMPORTANT: For PII detection in text, use compliance_detect_pii instead.
Returns: {score, cookies, privacyPolicy, trackers[], recommendations[]}. No API key required — x402 micropayment $0.02/call on Base L2.
Funding Rate Arbitrage Scanner — Cross-Venue Spreads
Funding arbitrage scanner API for AI agents. Scan cross-venue funding rate spreads between Hyperliquid, Binance, Bybit, and OKX. Find profitable long/short basis trades with annualized yield projections.
Tools: perp_scan_funding_arbitrage.
Use this for delta-neutral funding arbitrage strategies, carry trade identification, or cross-exchange opportunities. IMPORTANT: For simple funding rate lookup, use perp_get_funding_rates instead.
Returns: {opportunities[], spread, annualizedYield}. No API key required — x402 micropayment $0.005/call on Base L2.