cloudflare
tcp/443
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bed698978cecde6f9cecde6f9cecde6f9cecde6f9
Public Swagger UI/API detected at path: /v3/api-docs - sample paths: POST /monitoringTool/integration/calculate POST /web/ai/fixErrorsWithAi/eld
Open service 104.26.15.15:443 ยท company-three.lioneight.dev
2026-01-23 13:49
HTTP/1.1 200 OK
Date: Fri, 23 Jan 2026 13:49:27 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: close
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Fri, 23 Jan 2026 11:04:12 GMT
Cache-Control: no-store
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=fmicH0wZbGW31fQBDfDSUpV%2BYMURzfwAgI9iIszDZNgeURHq8i9hJbRaPnlgJ5C%2FWmJixoh69LDAz2weUCmQI%2Ba3n%2B%2BsgCQtG0Hv9nPZkh2Kw3XVGpf6THBT"}]}
content-language: en
Server: cloudflare
cf-cache-status: DYNAMIC
CF-RAY: 9c27c122ef03d7e3-LHR