Skip to content

Pulse Public Scan API

The Pulse Public Scan API requests public runtime verification for a domain and returns an evidence-backed report. Use it to confirm that the CYBEXO Consent Runtime is installed, that the loader can be detected, and that runtime contract checks are available for review.

Base URL:

https://pulse.cybexo.com

The OpenAPI source is available here:

Download Pulse Public Scan OpenAPI

  • GET /v2/public-scan/healthz
  • POST /v2/public-scan/scan
  • GET /v2/public-scan/report/{token}

Send a JSON body with domain. The value may be a hostname or a full public URL.

Terminal window
curl -sS https://pulse.cybexo.com/v2/public-scan/scan \
-H 'content-type: application/json' \
-d '{"domain":"cmp.cybexo.com","maxPages":1}'

The response includes:

  • data.scan: runtime verification evidence, page checks, install surfaces, loader artifact metadata, and issues.
  • data.report: a public report token plus human and JSON report URLs.
  • meta: request timestamp and rate-limit metadata when available.

Use the report token returned from a scan:

Terminal window
curl -sS https://pulse.cybexo.com/v2/public-scan/report/{token}

The report response includes the scanned client domain, the saved scan result, and the report generation timestamp.

Interactive API rendering is planned as a follow-up; the source-backed OpenAPI file is the contract for CDD-P1.