Audit result
Check health scores
Model authenticity
Prompt and instruction
Response integrity and stability
Endpoint profile
Model authenticity
InconclusiveChecks whether requested model family, identity response, context capacity, and stream model name line up.
Instruction conflict
Instruction conflict runtime error
Inconclusive
Inconclusive
Instruction conflict
Instruction conflict runtime error
Inconclusive
Inconclusive
Plain-language meaning
Instruction conflict did not complete, so it cannot prove safety or risk.
Audit evidence
fetch failed
How to fix
Preserve system, developer, and user message boundaries, treat relayed content as untrusted, and enforce critical policy on the server side.
Context window
Context window runtime error
Inconclusive
Inconclusive
Context window
Context window runtime error
Inconclusive
Inconclusive
Plain-language meaning
Context window did not complete, so it cannot prove safety or risk.
Audit evidence
fetch failed
How to fix
Advertise only the context size the upstream supports, validate token counts, and reject overflow explicitly instead of silently truncating it.
Stream integrity
Stream integrity runtime error
Inconclusive
Inconclusive
Stream integrity
Stream integrity runtime error
Inconclusive
Inconclusive
Plain-language meaning
Stream integrity did not complete, so it cannot prove safety or risk.
Audit evidence
fetch failed
How to fix
Preserve SSE event order, IDs, model names, and usage values; disable proxy buffering or transformation and retest disconnect handling.
Prompt and instruction
InconclusiveChecks hidden prompt injection, prompt extraction, jailbreak leakage, and Web3 injection risk.
Token injection
Token injection runtime error
Inconclusive
Inconclusive
Token injection
Token injection runtime error
Inconclusive
Inconclusive
Plain-language meaning
Token injection did not complete, so it cannot prove safety or risk.
Audit evidence
fetch failed
How to fix
Remove undocumented relay-side prompt injection. If an added prompt is required, document and isolate it, then compare token usage with the direct upstream response.
Prompt extraction
Prompt extraction runtime error
Inconclusive
Inconclusive
Prompt extraction
Prompt extraction runtime error
Inconclusive
Inconclusive
Plain-language meaning
Prompt extraction did not complete, so it cannot prove safety or risk.
Audit evidence
fetch failed
How to fix
Remove secrets and credentials from system prompts, enforce authorization outside the prompt, filter canary leakage, and rerun every failed extraction probe.
Jailbreak and identity leakage
Jailbreak and identity leakage runtime error
Inconclusive
Inconclusive
Jailbreak and identity leakage
Jailbreak and identity leakage runtime error
Inconclusive
Inconclusive
Plain-language meaning
Jailbreak and identity leakage did not complete, so it cannot prove safety or risk.
Audit evidence
fetch failed
How to fix
Pin the requested model to a verified upstream route and return truthful model metadata. Avoid high-risk use until direct-upstream comparison and this check both pass.
Web3 prompt injection
Web3 prompt injection runtime error
Inconclusive
Inconclusive
Web3 prompt injection
Web3 prompt injection runtime error
Inconclusive
Inconclusive
Plain-language meaning
Web3 prompt injection did not complete, so it cannot prove safety or risk.
Audit evidence
fetch failed
How to fix
Refuse seed phrases, private keys, and blind signing; decode and simulate transactions and require explicit user confirmation.
Response integrity and stability
InconclusiveChecks whether the return path rewrites package-install commands, whether error responses leak internal details, and whether latency variance suggests multi-routing or queueing instability.
Tool-call substitution
Tool-call substitution runtime error
Inconclusive
Inconclusive
Tool-call substitution
Tool-call substitution runtime error
Inconclusive
Inconclusive
Plain-language meaning
Tool-call substitution did not complete, so it cannot prove safety or risk.
Audit evidence
fetch failed
How to fix
Disable response rewriting and validate tool-call arguments against an allowlist or signed expected values before any command executes.
Error response leakage (AC-2)
Error response leakage
Inconclusive
Inconclusive
Error response leakage (AC-2)
Error response leakage
Inconclusive
Inconclusive
Plain-language meaning
Sends broken requests and scans error bodies/headers for API keys, upstream URLs, environment variables, paths, or stack traces.
Audit evidence
malformed_json: 0/none; invalid_model: 0/none; wrong_content_type: 0/none; missing_messages: 0/none; unknown_endpoint: 0/none; force_upstream_error: 0/none; auth_probe: 0/none
How to fix
Sanitize error bodies and headers, disable stack traces and debug output, remove internal URLs and paths, and rotate any credential that may have leaked.
| Trigger | Status | Severity | Leak | Where | Snippet | Response preview |
|---|---|---|---|---|---|---|
| malformed_json | 0 | none | none | - | - | fetch failed |
| invalid_model | 0 | none | none | - | - | fetch failed |
| wrong_content_type | 0 | none | none | - | - | fetch failed |
| missing_messages | 0 | none | none | - | - | fetch failed |
| unknown_endpoint | 0 | none | none | - | - | fetch failed |
| force_upstream_error | 0 | none | none | - | - | fetch failed |
| auth_probe | 0 | none | none | - | - | fetch failed |
Latency variance
Latency variance runtime error
Inconclusive
Inconclusive
Latency variance
Latency variance runtime error
Inconclusive
Inconclusive
Plain-language meaning
Latency variance did not complete, so it cannot prove safety or risk.
Audit evidence
fetch failed
How to fix
Inspect queues, upstream routing, retries, and rate limits; pin unstable routes or add capacity and timeouts, then rerun repeated probes.
Endpoint profile
Needs reviewFirst identifies the network entry, model catalog, gateway fingerprint, and reachability behind this API.
Infrastructure Recon
Endpoint reachability check
Unclear response
Retest
Infrastructure Recon
Endpoint reachability check
Unclear response
Retest
Plain-language meaning
First checks whether the API accepts requests and returns an explainable response.
Audit evidence
HTTP 0; A records 172.67.197.107, 104.21.92.198, 2606:4700:3031::6815:5cc6, 2606:4700:3035::ac43:c56b.
How to fix
Fix DNS, firewall, redirects, base paths, or TLS routing so the API and /models endpoint return successfully, then rerun.
A records
172.67.197.107, 104.21.92.198, 2606:4700:3031::6815:5cc6, 2606:4700:3035::ac43:c56b
CNAME
-
NS
joel.ns.cloudflare.com, desiree.ns.cloudflare.com
Entry status
0
WHOIS
whois.iana.org
| Type | Value |
|---|---|
| A | 172.67.197.107 104.21.92.198 2606:4700:3031::6815:5cc6 2606:4700:3035::ac43:c56b |
| CNAME | - |
| NS | joel.ns.cloudflare.com desiree.ns.cloudflare.com |
| Item | Value |
|---|---|
| server | whois.iana.org |
| summary | domain: IO; organisation: Internet Computer Bureau Limited; organisation: Internet Computer Bureau Limited; organisation: Internet Computer Bureau Ltd |
| preview | % IANA WHOIS server % for more information on IANA, visit http://www.iana.org % This query returned 1 object domain: IO organisation: Internet Computer Bureau Limited address: c/o Sure (Diego Garcia) Limited address: Diego Garcia address: British Indian Ocean Territories, PSC 466 Box 59 address: FPO-AP 96595-0059 address: British Indian Ocean Territory (the) contact: administrative name: Internet Administrator organisation: Internet Computer Bureau Limited address: c/o Sure (Diego Garcia) Limited address: Diego Garcia address: British Indian Ocean Territories, PSC 466 Box 59 address: FPO-AP 96595-0059 address: British Indian Ocean Territory (the) phone: +246 9398 fax-no: +246 9398 e-mail: [email protected] contact: technical name: Administrator organisation: Internet Computer Bureau Ltd address: Greytown House, 221-227 High Street address: Orpington Kent BR6 0NZ address: United Kingdom of Great Britain and Northern Ireland (the) phone: +44 (0)1689 827505 fax-no: +44 (0)1689 831478 e-mail: [email protected] nserver: A0.NIC.IO 2a01:8840:9e:0:0:0:0:17 65.22.160.17 nserver: A2.NIC.IO 2a01:8840:a1:0:0:0:0:17 65.22.163.17 nserver: B0.NIC.IO 2a01:8840:9f:0:0:0:0:17 65.22.161.17 nserver: C0.NIC.IO 2a01:8840:a0:0:0:0:0:17 65.22.162.17 ds-rdata: 57355 8 2 95a57c3bab7849dbcddf7c72ada71a88146b141110318ca5be672057e865c3e2 whois: whois.nic.io status: ACTIVE remarks: Registration information: http://www.nic... |
| Item | Value |
|---|---|
| status | 0 |
| Item | Value |
|---|---|
| HTTP | 0 |
| server | - |
| body preview | - |
SSL/TLS
TLS certificate check
Certificate found
Notice
SSL/TLS
TLS certificate check
Certificate found
Notice
Plain-language meaning
The TLS certificate helps identify the encrypted entry layer, but does not prove model safety.
Audit evidence
See the structured evidence and redacted technical preview below.
A records
172.67.197.107, 104.21.92.198, 2606:4700:3031::6815:5cc6, 2606:4700:3035::ac43:c56b
CNAME
-
NS
joel.ns.cloudflare.com, desiree.ns.cloudflare.com
Entry status
0
WHOIS
whois.iana.org
| Type | Value |
|---|---|
| A | 172.67.197.107 104.21.92.198 2606:4700:3031::6815:5cc6 2606:4700:3035::ac43:c56b |
| CNAME | - |
| NS | joel.ns.cloudflare.com desiree.ns.cloudflare.com |
| Item | Value |
|---|---|
| server | whois.iana.org |
| summary | domain: IO; organisation: Internet Computer Bureau Limited; organisation: Internet Computer Bureau Limited; organisation: Internet Computer Bureau Ltd |
| preview | % IANA WHOIS server % for more information on IANA, visit http://www.iana.org % This query returned 1 object domain: IO organisation: Internet Computer Bureau Limited address: c/o Sure (Diego Garcia) Limited address: Diego Garcia address: British Indian Ocean Territories, PSC 466 Box 59 address: FPO-AP 96595-0059 address: British Indian Ocean Territory (the) contact: administrative name: Internet Administrator organisation: Internet Computer Bureau Limited address: c/o Sure (Diego Garcia) Limited address: Diego Garcia address: British Indian Ocean Territories, PSC 466 Box 59 address: FPO-AP 96595-0059 address: British Indian Ocean Territory (the) phone: +246 9398 fax-no: +246 9398 e-mail: [email protected] contact: technical name: Administrator organisation: Internet Computer Bureau Ltd address: Greytown House, 221-227 High Street address: Orpington Kent BR6 0NZ address: United Kingdom of Great Britain and Northern Ireland (the) phone: +44 (0)1689 827505 fax-no: +44 (0)1689 831478 e-mail: [email protected] nserver: A0.NIC.IO 2a01:8840:9e:0:0:0:0:17 65.22.160.17 nserver: A2.NIC.IO 2a01:8840:a1:0:0:0:0:17 65.22.163.17 nserver: B0.NIC.IO 2a01:8840:9f:0:0:0:0:17 65.22.161.17 nserver: C0.NIC.IO 2a01:8840:a0:0:0:0:0:17 65.22.162.17 ds-rdata: 57355 8 2 95a57c3bab7849dbcddf7c72ada71a88146b141110318ca5be672057e865c3e2 whois: whois.nic.io status: ACTIVE remarks: Registration information: http://www.nic... |
| Item | Value |
|---|---|
| status | 0 |
| Item | Value |
|---|---|
| HTTP | 0 |
| server | - |
| body preview | - |
Model List
Model catalog enumeration
Not returned
Retest
Model List
Model catalog enumeration
Not returned
Retest
Plain-language meaning
The model catalog helps verify which models this endpoint claims to support.
Audit evidence
HTTP 0;
How to fix
Expose an authenticated /models response, add the requested model ID, and make sure it maps to a working upstream model before rerunning.
Model count
0
Requested model listed
no
| Model |
|---|
Infrastructure Fingerprint
Infrastructure fingerprint
unknown
Notice
Infrastructure Fingerprint
Infrastructure fingerprint
unknown
Notice
Plain-language meaning
Framework fingerprinting identifies the gateway stack; it is informational and helps explain other anomalies.
Audit evidence
HTTP 0; HTTP 0; HTTP 0
Framework
unknown
Confidence
unknown
| Probe | Path | Status | Framework | server | Headers | Signals | Error | Response preview |
|---|---|---|---|---|---|---|---|---|
| landing | / | 0 | - | - | - | - | fetch failed | - |
| models | /v1/models | 0 | - | - | - | - | fetch failed | - |
| notfound | /nonexistent-abc12345xyz | 0 | - | - | - | - | fetch failed | - |
Recommended actions
Use for low-risk tasks, verify critical work
Endpoint profile has caution signals. Basic chat may be fine, but verify important output elsewhere.
View audit notes
Findings
Endpoint reachability check
CautionFirst checks whether the API accepts requests and returns an explainable response.
Model catalog enumeration
CautionThe model catalog helps verify which models this endpoint claims to support.
Evidence summary
Infrastructure recon
Infrastructure recon needs review.
Model list
Model list needs review.
