API Overview
This is a demo shell site to showcase scanner findings. It serves static docs and a small JS bundle.
- OpenAPI (swagger.json) — public for demo
- /swagger/ — common docs path
- /api/docs/ — alternate docs path
- Frontend bundle — contains fake demo keys for scanning
Deployment Notes
Intentionally weak config for testing: missing security headers, public docs, and embedded fake tokens. Do not use in production.