5:[["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"BreadcrumbList\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https://developers.qodex.ai\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Postman API Monitoring Examples\",\"item\":\"https://developers.qodex.ai/postman-api-monitoring-examples\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Example 04 Check For Common Api Vulnerability\",\"item\":\"https://developers.qodex.ai/postman-api-monitoring-examples/example-04-check-for-common-api-vulnerability\"},{\"@type\":\"ListItem\",\"position\":4,\"name\":\"Csp Evaluator\",\"item\":\"https://developers.qodex.ai/postman-api-monitoring-examples/example-04-check-for-common-api-vulnerability/csp-evaluator\"},{\"@type\":\"ListItem\",\"position\":5,\"name\":\"Evaluate Csp\",\"item\":\"https://developers.qodex.ai/postman-api-monitoring-examples/example-04-check-for-common-api-vulnerability/csp-evaluator/evaluate-csp\"}]}"}}],["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"$58"}}],["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"$59"}}],null,null,["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"WebSite\",\"name\":\"Qodex Developers\",\"url\":\"https://developers.qodex.ai\",\"description\":\"Public API documentation hub by QodexAI - Browse comprehensive API references, developer guides, and integration documentation for various platforms and services.\",\"potentialAction\":{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https://developers.qodex.ai/search?q={search_term_string}\"},\"query-input\":\"required name=search_term_string\"},\"publisher\":{\"@type\":\"Organization\",\"name\":\"QodexAI\",\"url\":\"https://qodex.ai\",\"logo\":{\"@type\":\"ImageObject\",\"url\":\"https://developers.qodex.ai/favicon.png\",\"width\":512,\"height\":512}},\"inLanguage\":\"en-US\",\"copyrightYear\":2026}"}}],["$","main",null,{"className":"px-0 py-2 lg:px-10 lg:py-8 bg-white dark:custom-bg min-h-screen","children":["$","div",null,{"className":"max-w-7xl mx-auto grid grid-cols-1 lg:grid-cols-[1fr_300px] gap-8","children":[["$","div",null,{"className":"max-w-4xl overflow-hidden","children":[["$","div",null,{"className":"flex items-center gap-3 mb-2 border-b lg:border-none border-gray-500/5 dark:border-gray-300/[0.06] px-2 pb-2 lg:px-0 lg:pb-0","children":[["$","$L5a",null,{}],["$","div",null,{"className":"flex-1","children":["$","nav",null,{"className":"flex items-center space-x-2 text-sm text-slate-600 dark:text-slate-400 lg:mb-4","children":[["$","$L5b",null,{"href":"/postman-api-monitoring-examples","className":"hover:text-slate-900 dark:hover:text-slate-200","children":"Home"}],[["$","$5c","0",{"children":[["$","svg",null,{"xmlns":"http://www.w3.org/2000/svg","width":24,"height":24,"viewBox":"0 0 24 24","fill":"none","stroke":"currentColor","strokeWidth":2,"strokeLinecap":"round","strokeLinejoin":"round","className":"lucide lucide-chevron-right h-4 w-4","children":[["$","path","mthhwq",{"d":"m9 18 6-6-6-6"}],"$undefined"]}],["$","$L5b",null,{"href":"/postman-api-monitoring-examples/example-04-check-for-common-api-vulnerability","className":"hover:text-slate-900 dark:hover:text-slate-200 line-clamp-1","children":"Example 04 - Check for Common API Vulnerability"}]]}],["$","$5c","1",{"children":[["$","svg",null,{"xmlns":"http://www.w3.org/2000/svg","width":24,"height":24,"viewBox":"0 0 24 24","fill":"none","stroke":"currentColor","strokeWidth":2,"strokeLinecap":"round","strokeLinejoin":"round","className":"lucide lucide-chevron-right h-4 w-4","children":[["$","path","mthhwq",{"d":"m9 18 6-6-6-6"}],"$undefined"]}],["$","$L5b",null,{"href":"/postman-api-monitoring-examples/example-04-check-for-common-api-vulnerability/csp-evaluator","className":"hover:text-slate-900 dark:hover:text-slate-200 line-clamp-1","children":"CSP Evaluator"}]]}],["$","$5c","2",{"children":[["$","svg",null,{"xmlns":"http://www.w3.org/2000/svg","width":24,"height":24,"viewBox":"0 0 24 24","fill":"none","stroke":"currentColor","strokeWidth":2,"strokeLinecap":"round","strokeLinejoin":"round","className":"lucide lucide-chevron-right h-4 w-4","children":[["$","path","mthhwq",{"d":"m9 18 6-6-6-6"}],"$undefined"]}],["$","span",null,{"className":"text-blue-600 dark:text-green-500 font-medium line-clamp-1","children":"Evaluate CSP"}]]}]]]}]}]]}],["$","article",null,{"className":"px-4 lg:px-0","children":["$","$L5d",null,{"content":"# Evaluate CSP\n\nPOST https://csper.io/api/evaluations\n\n

This request evaluates the Content Security Policy of an API using csper.io. Check out the Visualize tab in the Response section to view the Content Security Policy analysis.

\n\n\n\n\n### Request Body\n```\n{\"URL\"=>\"{{base_url}}\"}\n```\n\n\n\n\n"}]}],["$","aside",null,{"className":"mt-12 pt-8 border-t border-gray-200 dark:border-gray-700","aria-label":"Related documentation","children":[["$","h2",null,{"className":"text-sm font-semibold text-gray-900 dark:text-gray-100 mb-4 flex items-center gap-2","children":[["$","svg",null,{"xmlns":"http://www.w3.org/2000/svg","width":24,"height":24,"viewBox":"0 0 24 24","fill":"none","stroke":"currentColor","strokeWidth":2,"strokeLinecap":"round","strokeLinejoin":"round","className":"lucide lucide-book-open w-4 h-4 text-green-600","children":[["$","path","1akyts",{"d":"M12 7v14"}],["$","path","ruj8y",{"d":"M3 18a1 1 0 0 1-1-1V4a1 1 0 0 1 1-1h5a4 4 0 0 1 4 4 4 4 0 0 1 4-4h5a1 1 0 0 1 1 1v13a1 1 0 0 1-1 1h-6a3 3 0 0 0-3 3 3 3 0 0 0-3-3z"}],"$undefined"]}],"Related Documentation"]}],["$","nav",null,{"aria-label":"Related pages","children":["$","ul",null,{"className":"grid grid-cols-1 sm:grid-cols-2 gap-3","children":[["$","li","example-04-check-for-common-api-vulnerability",{"children":["$","$L5b",null,{"href":"/postman-api-monitoring-examples/example-04-check-for-common-api-vulnerability","className":"group flex items-start gap-3 p-3 rounded-lg border border-gray-200 dark:border-gray-700 bg-gray-50 dark:bg-gray-800/50 hover:bg-green-50 dark:hover:bg-green-900/20 hover:border-green-200 dark:hover:border-green-800 transition-all duration-200","children":[["$","div",null,{"className":"flex-1 min-w-0","children":[["$","span",null,{"className":"text-xs text-gray-500 dark:text-gray-400 block mb-1","children":"Example 04 - Check for Common API Vulnerability"}],["$","span",null,{"className":"text-sm font-medium text-gray-700 dark:text-gray-200 group-hover:text-green-700 dark:group-hover:text-green-400 line-clamp-2","children":"Example 04 Check For Common Api Vulnerability"}]]}],["$","svg",null,{"xmlns":"http://www.w3.org/2000/svg","width":24,"height":24,"viewBox":"0 0 24 24","fill":"none","stroke":"currentColor","strokeWidth":2,"strokeLinecap":"round","strokeLinejoin":"round","className":"lucide lucide-arrow-right w-4 h-4 text-gray-400 group-hover:text-green-600 group-hover:translate-x-0.5 transition-all flex-shrink-0 mt-0.5","children":[["$","path","1ays0h",{"d":"M5 12h14"}],["$","path","xquz4c",{"d":"m12 5 7 7-7 7"}],"$undefined"]}]]}]}],["$","li","example-04-check-for-common-api-vulnerability/cors-misconfiguration",{"children":["$","$L5b",null,{"href":"/postman-api-monitoring-examples/example-04-check-for-common-api-vulnerability/cors-misconfiguration","className":"group flex items-start gap-3 p-3 rounded-lg border border-gray-200 dark:border-gray-700 bg-gray-50 dark:bg-gray-800/50 hover:bg-green-50 dark:hover:bg-green-900/20 hover:border-green-200 dark:hover:border-green-800 transition-all duration-200","children":[["$","div",null,{"className":"flex-1 min-w-0","children":[["$","span",null,{"className":"text-xs text-gray-500 dark:text-gray-400 block mb-1","children":"CORS Misconfiguration"}],["$","span",null,{"className":"text-sm font-medium text-gray-700 dark:text-gray-200 group-hover:text-green-700 dark:group-hover:text-green-400 line-clamp-2","children":"Cors Misconfiguration"}]]}],["$","svg",null,{"xmlns":"http://www.w3.org/2000/svg","width":24,"height":24,"viewBox":"0 0 24 24","fill":"none","stroke":"currentColor","strokeWidth":2,"strokeLinecap":"round","strokeLinejoin":"round","className":"lucide lucide-arrow-right w-4 h-4 text-gray-400 group-hover:text-green-600 group-hover:translate-x-0.5 transition-all flex-shrink-0 mt-0.5","children":[["$","path","1ays0h",{"d":"M5 12h14"}],["$","path","xquz4c",{"d":"m12 5 7 7-7 7"}],"$undefined"]}]]}]}],["$","li","example-04-check-for-common-api-vulnerability/cors-misconfiguration/trusted-unauthorised-subdomain-test",{"children":["$","$L5b",null,{"href":"/postman-api-monitoring-examples/example-04-check-for-common-api-vulnerability/cors-misconfiguration/trusted-unauthorised-subdomain-test","className":"group flex items-start gap-3 p-3 rounded-lg border border-gray-200 dark:border-gray-700 bg-gray-50 dark:bg-gray-800/50 hover:bg-green-50 dark:hover:bg-green-900/20 hover:border-green-200 dark:hover:border-green-800 transition-all duration-200","children":[["$","div",null,{"className":"flex-1 min-w-0","children":[["$","span",null,{"className":"text-xs text-gray-500 dark:text-gray-400 block mb-1","children":"CORS Misconfiguration"}],["$","span",null,{"className":"text-sm font-medium text-gray-700 dark:text-gray-200 group-hover:text-green-700 dark:group-hover:text-green-400 line-clamp-2","children":"Trusted Unauthorised Subdomain Test"}]]}],["$","svg",null,{"xmlns":"http://www.w3.org/2000/svg","width":24,"height":24,"viewBox":"0 0 24 24","fill":"none","stroke":"currentColor","strokeWidth":2,"strokeLinecap":"round","strokeLinejoin":"round","className":"lucide lucide-arrow-right w-4 h-4 text-gray-400 group-hover:text-green-600 group-hover:translate-x-0.5 transition-all flex-shrink-0 mt-0.5","children":[["$","path","1ays0h",{"d":"M5 12h14"}],["$","path","xquz4c",{"d":"m12 5 7 7-7 7"}],"$undefined"]}]]}]}],["$","li","example-04-check-for-common-api-vulnerability/security-headers",{"children":["$","$L5b",null,{"href":"/postman-api-monitoring-examples/example-04-check-for-common-api-vulnerability/security-headers","className":"group flex items-start gap-3 p-3 rounded-lg border border-gray-200 dark:border-gray-700 bg-gray-50 dark:bg-gray-800/50 hover:bg-green-50 dark:hover:bg-green-900/20 hover:border-green-200 dark:hover:border-green-800 transition-all duration-200","children":[["$","div",null,{"className":"flex-1 min-w-0","children":[["$","span",null,{"className":"text-xs text-gray-500 dark:text-gray-400 block mb-1","children":"Security Headers"}],["$","span",null,{"className":"text-sm font-medium text-gray-700 dark:text-gray-200 group-hover:text-green-700 dark:group-hover:text-green-400 line-clamp-2","children":"Security Headers"}]]}],["$","svg",null,{"xmlns":"http://www.w3.org/2000/svg","width":24,"height":24,"viewBox":"0 0 24 24","fill":"none","stroke":"currentColor","strokeWidth":2,"strokeLinecap":"round","strokeLinejoin":"round","className":"lucide lucide-arrow-right w-4 h-4 text-gray-400 group-hover:text-green-600 group-hover:translate-x-0.5 transition-all flex-shrink-0 mt-0.5","children":[["$","path","1ays0h",{"d":"M5 12h14"}],["$","path","xquz4c",{"d":"m12 5 7 7-7 7"}],"$undefined"]}]]}]}],["$","li","example-04-check-for-common-api-vulnerability/security-headers/check-for-security-headers",{"children":["$","$L5b",null,{"href":"/postman-api-monitoring-examples/example-04-check-for-common-api-vulnerability/security-headers/check-for-security-headers","className":"group flex items-start gap-3 p-3 rounded-lg border border-gray-200 dark:border-gray-700 bg-gray-50 dark:bg-gray-800/50 hover:bg-green-50 dark:hover:bg-green-900/20 hover:border-green-200 dark:hover:border-green-800 transition-all duration-200","children":[["$","div",null,{"className":"flex-1 min-w-0","children":[["$","span",null,{"className":"text-xs text-gray-500 dark:text-gray-400 block mb-1","children":"Security Headers"}],["$","span",null,{"className":"text-sm font-medium text-gray-700 dark:text-gray-200 group-hover:text-green-700 dark:group-hover:text-green-400 line-clamp-2","children":"Check for Security Headers"}]]}],["$","svg",null,{"xmlns":"http://www.w3.org/2000/svg","width":24,"height":24,"viewBox":"0 0 24 24","fill":"none","stroke":"currentColor","strokeWidth":2,"strokeLinecap":"round","strokeLinejoin":"round","className":"lucide lucide-arrow-right w-4 h-4 text-gray-400 group-hover:text-green-600 group-hover:translate-x-0.5 transition-all flex-shrink-0 mt-0.5","children":[["$","path","1ays0h",{"d":"M5 12h14"}],["$","path","xquz4c",{"d":"m12 5 7 7-7 7"}],"$undefined"]}]]}]}]]}]}]]}],["$","nav",null,{"className":"mt-12 pt-8 border-t border-gray-200 dark:border-gray-700","children":["$","div",null,{"className":"flex justify-between items-start","children":[["$","div",null,{"className":"flex-1 pr-4","children":["$","$L5b",null,{"href":"/postman-api-monitoring-examples/example-04-check-for-common-api-vulnerability/csp-evaluator","className":"group flex items-center text-sm text-gray-600 dark:text-gray-400 hover:text-gray-900 dark:hover:text-gray-200 transition-colors","children":[["$","svg",null,{"xmlns":"http://www.w3.org/2000/svg","width":24,"height":24,"viewBox":"0 0 24 24","fill":"none","stroke":"currentColor","strokeWidth":2,"strokeLinecap":"round","strokeLinejoin":"round","className":"lucide lucide-chevron-left w-4 h-4 mr-2 group-hover:-translate-x-1 transition-transform","children":[["$","path","1wnfg3",{"d":"m15 18-6-6 6-6"}],"$undefined"]}],["$","div",null,{"children":[["$","div",null,{"className":"text-xs text-gray-500 dark:text-gray-500 mb-1","children":"Previous"}],["$","div",null,{"className":"font-medium line-clamp-2","children":"CSP Evaluator"}]]}]]}]}],["$","div",null,{"className":"flex-1 pl-4 text-right","children":["$","$L5b",null,{"href":"/postman-api-monitoring-examples/example-05-continuous-api-testing","className":"group flex items-center justify-end text-sm text-gray-600 dark:text-gray-400 hover:text-gray-900 dark:hover:text-gray-200 transition-colors","children":[["$","div",null,{"children":[["$","div",null,{"className":"text-xs text-gray-500 dark:text-gray-500 mb-1","children":"Next"}],["$","div",null,{"className":"font-medium line-clamp-2","children":"Example 05 - Continuous API Testing"}]]}],["$","svg",null,{"xmlns":"http://www.w3.org/2000/svg","width":24,"height":24,"viewBox":"0 0 24 24","fill":"none","stroke":"currentColor","strokeWidth":2,"strokeLinecap":"round","strokeLinejoin":"round","className":"lucide lucide-chevron-right w-4 h-4 ml-2 group-hover:translate-x-1 transition-transform","children":[["$","path","mthhwq",{"d":"m9 18 6-6-6-6"}],"$undefined"]}]]}]}]]}]}]]}],["$","aside",null,{"className":"hidden lg:block lg:sticky lg:top-[90px] lg:self-start","children":["$","$L5e",null,{"content":"# Evaluate CSP\n\nPOST https://csper.io/api/evaluations\n\n

This request evaluates the Content Security Policy of an API using csper.io. Check out the Visualize tab in the Response section to view the Content Security Policy analysis.

\n\n\n\n\n### Request Body\n```\n{\"URL\"=>\"{{base_url}}\"}\n```\n\n\n\n\n"}]}]]}]}]]