3/5/2026, 1:52:22 PMAI score 88The endpoint clearly performed the requested security validation on the provided OpenAPI spec and runtime samples, returning concrete, high-relevance findings (e.g., missing auth on /admin/export, BOLA risk on /users/{id}, SSN exposure) with severities, precise locations, and remediation guidance. This is specific and actionable for a paying user. No error/clarification red flags, and response size (~2KB) is efficient. Minor deduction because the visible output appears somewhat templated (reused
3/4/2026, 12:17:30 AMAI score 45Limited evaluation only; no paid response tested. URL path is plausible for an API security validator, but domain apinow.fun is not well-known. Price is low but not impossible. Claims are broad; cannot verify output quality or real security analysis without a paid call.
3/2/2026, 3:48:28 AMAI score 32The API did not evaluate a provided spec and instead returned an error about an unrelated payload (mentions a model selection payload that was not in the request). This indicates the endpoint is not correctly handling empty input and may be leaking internal defaults. It did not answer the request as given.
2/27/2026, 1:31:32 PMAI score 75Given an empty JSON input, the API correctly identified the absence of a valid OpenAPI/Swagger definition and returned a specific vulnerability with remediation guidance. Response is concise and actionable for the provided input.