scan curl
Scan a single API endpoint by specifying a URL and optional HTTP method and body. Accepts the same flags as curl for familiarity when pasting commands from documentation or browser DevTools.
vulnapi scan curl <URL> [flags]| Flag | Default | Description |
|---|---|---|
-X, --request <method> | GET | HTTP method to use |
-d, --data <data> | “ | HTTP request body |
Also accepts all common flags.
Examples
Section titled “Examples”Simple GET request
vulnapi scan curl https://api.example.com/endpointPOST with a JSON body and an Authorization header
vulnapi scan curl https://api.example.com/endpoint \ -X POST \ -d '{"key":"value"}' \ -H "Authorization: Bearer <token>"Run only JWT-related scans
vulnapi scan curl https://api.example.com/endpoint \ -H "Authorization: Bearer <token>" \ --scans "jwt.*"Write the report as JSON to a file
vulnapi scan curl https://api.example.com/endpoint \ --report-format json \ --report-file report.jsonExit codes
Section titled “Exit codes”| Code | Meaning |
|---|---|
0 | Scan completed successfully |
1 | Fatal error (invalid URL, network failure, etc.) |
When a finding exceeds --severity-threshold, additional output is written to stderr. See exit behaviour.