> ## Documentation Index
> Fetch the complete documentation index at: https://docs.webacy.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Project URL Risk Analysis

> Analyze a URL for phishing, malware, and other security threats



## OpenAPI

````yaml POST /url
openapi: 3.0.1
info:
  title: Risk Score API
  description: API definition for Webacy Risk Scores
  version: 1.2.0
servers:
  - url: https://api.webacy.com
    description: Webacy Risk Score API (Production)
  - url: https://api-development.webacy.com
    description: Webacy Risk Score API (Development)
  - url: http://0.0.0.0:3030/api/v1/risk-score
    description: Webacy Risk Score API - Local
security:
  - api_key: []
tags:
  - name: Threat Risks
    description: Analyze addresses for security threats and malicious activity
  - name: Sanction Checks
    description: Check addresses against OFAC and other sanction lists
  - name: Approval Risks
    description: Analyze token approvals and associated risks
  - name: Transaction Risks
    description: Assess risk details for blockchain transactions
  - name: Exposure Risk
    description: Understand risk profile and exposure of addresses
  - name: Contract Risk
    description: Real-time smart contract security analysis
  - name: URL Risks
    description: Analyze URLs for phishing and security threats
  - name: API Usage
    description: Monitor and manage API consumption
  - name: Holder Analysis
    description: Token holder distribution and sniper detection
  - name: Address Poisoning
    description: Detect address poisoning attack patterns
  - name: Token Analysis
    description: Comprehensive token security and market analysis
  - name: Pool Analysis
    description: Liquidity pool data and analysis
  - name: Transaction Scanning
    description: Scan and simulate transactions for risks
  - name: trading-lite
    description: Lightweight trading risk assessment
  - name: RWA & Pegged Tokens
    description: >-
      Real-world asset and pegged-token analytics (supply flows, mint/burn
      velocity)
  - name: Vault Risk v3
    description: >-
      Webacy-native v3 vault risk surface — composite grade, categories,
      coverage, and the framework taxonomy (RFC-019).
  - name: RWA Risk v3
    description: >-
      Webacy-native v3 RWA / stablecoin risk surface — composite grade,
      structural-health criteria, and batch (RFC-019).
paths:
  /url:
    post:
      tags:
        - URL Risks
      summary: Project URL Risk Analysis
      description: Analyze a URL for phishing, malware, and other security threats
      operationId: analyzeUrl
      requestBody:
        description: >-
          A JSON object containing a single URL string to be analyzed for
          potential risks.
        required: true
        content:
          application/json:
            schema:
              $ref: '#/components/schemas/urlRequest'
      responses:
        '200':
          description: >-
            Success - Returns an assessment of the URL's safety score, including
            blacklist and maliciousness checks.
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/urlResponse'
        '401':
          $ref: '#/components/responses/UnauthorizedError'
          description: Unauthorized - Invalid API key or missing authentication.
      security:
        - api_key: []
components:
  schemas:
    urlRequest:
      type: object
      properties:
        url:
          type: string
          description: URL string
    urlResponse:
      type: object
      properties:
        blacklist:
          type: string
          description: URL is not in the blacklist
        prediction:
          type: string
          description: 'Ex: benign | malicious'
        whitelist:
          type: string
          description: Whitelist status indicator for the address
  responses:
    UnauthorizedError:
      description: Authorization information is missing or invalid
      content:
        application/json:
          example:
            message: Unauthorized
  securitySchemes:
    api_key:
      type: apiKey
      in: header
      name: x-api-key

````