Coming soon · Romp Scan API

Continuous security
from your CI.

The same engine that powers Romp, exposed as a clean HTTP API. DNS, SSL, headers, ports, vulnerabilities — one request, full report. Wire it into your build pipeline, your monitor, your supply-chain audit.

Get your free API key Try the free scan

1HTTP request

10+Probes per scan

JSONresponse

Webhooks(Pro)

One request

Drop it in any pipeline.

One curl, one fetch, one Python call. Get back a graded security report on any domain you own — structured, machine-readable, fast.

# Run a security scan against any domain you control.
curl -X POST 'https://api.jandgstudios.fun/v1/scan' \
  -H 'Authorization: Bearer $ROMP_API_KEY' \
  -H 'Content-Type: application/json' \
  -d '{"domain": "example.com"}'

const res = await fetch('https://api.jandgstudios.fun/v1/scan', {
  method: 'POST',
  headers: {
    'Authorization': `Bearer ${process.env.ROMP_API_KEY}`,
    'Content-Type': 'application/json',
  },
  body: JSON.stringify({ domain: 'example.com' }),
});
const report = await res.json();
console.log(report.grade); // 'A'

import os, requests

r = requests.post(
    'https://api.jandgstudios.fun/v1/scan',
    headers={'Authorization': f'Bearer {os.environ["ROMP_API_KEY"]}'},
    json={'domain': 'example.com'},
)
print(r.json()['grade'])  # 'A'

# .github/workflows/security.yml
name: Security check
on: [push]
jobs:
  scan:
    runs-on: ubuntu-latest
    steps:
      - name: Run Romp scan
        run: |
          GRADE=$(curl -s -X POST https://api.jandgstudios.fun/v1/scan \
            -H "Authorization: Bearer ${{ secrets.ROMP_API_KEY }}" \
            -d '{"domain": "example.com"}' | jq -r .grade)
          [ "$GRADE" = "A" ] || exit 1

Returns 200 OK with {"grade": "A", "summary": {ssl, headers, dns, tech, waf}, "scannedAt": "..."}

Use cases

Built for the way you ship.

Three patterns we built it for. Add yours — the API stays out of your way.

⚙

CI/CD security gates

Fail the build if security headers regress, certs expire soon, or an unexpected port opens up. One step, one exit code.

📡

Continuous monitoring

Daily scan of every property you own. Webhook fires when the grade drops — before your customers notice.

🔗

Supply-chain audits

Scan every vendor before you integrate. Score them, store the report, prove you did due diligence.

Pricing preview

Honest tiers, no surprises.

Final pricing locks in at launch. Waitlist members get early-bird rates and the first 50 keys lifetime.

Free

$0/mo

No card required.

10 scans/day
JSON response
Public domains only
Email support

EARLY-BIRD

Hobby

$5/mo

Or $50/yr.

100 scans/day
Grade-drop email alerts
30-day report history
Auth-protected scans
Priority email support

Pro

$25/mo

Or $250/yr.

Unlimited scans
Webhooks on grade-drop
1-year report history
Multi-domain rollup
SLA + Slack support

Continuous securityfrom your CI.