# Xipinow
> Risk scoring APIs for serious teams — domain, email, OSS, SaaS, crypto wallet.

Xipinow is a unified risk intelligence API covering five threat surfaces.
EU-hosted (Helsinki), GDPR-aware, hash-chained audit logs. Free tier: 200 req/day.

## Products

- **Domain Risk** `GET /v1/domain/{domain}` — phishing lists, typosquat detection, SSL age, registrar risk.
- **Email Reputation** `GET /v1/email/{email}` — disposable provider, MX validation, role-based patterns.
- **OSS Supply Chain** `GET /v1/oss/{eco}/{pkg}` — CVE severity, archived/unmaintained, typosquat.
- **SaaS Health** `GET /v1/saas/score` — GitHub activity, domain age, uptime reputation.
- **Wallet Screening (Solana)** `GET /v1/screen/{wallet}` — OFAC SDN daily refresh, customer watchlist, wallet age.
- **Trust Pack** `POST /v1/trust/check` — multi-surface verdict in one call, max risk signal.

## Risk verdicts

Scores map to: CLEAR (<20) · MONITOR (20–49) · REVIEW (50–79) · BLOCK (≥80)

## Authentication

Header: `X-API-Key: xpn_...`
Free endpoint (no key): `/v1/methodology`

## Pricing

- Free: $0 — 200 req/day, basic verdicts
- Pro: $99/month — 100 000 req/day, full details, audit export
- Scale: $499/month — 1 000 000 req/day, SLA 99.9%, Slack support

## Integration (Python)

```python
pip install xipinow-sdk
from xipinow import Client
client = Client(api_key="xpn_...")
print(client.domain.screen("example.com"))
```

## Reference URLs

- OpenAPI schema: https://api.xipinow.com/openapi.json
- Swagger UI: https://api.xipinow.com/docs
- Methodology: https://api.xipinow.com/v1/methodology
- AI plugin: https://api.xipinow.com/.well-known/ai-plugin.json
- Status: https://api.xipinow.com/v1/health/data
- Landing: https://xipinow.com
- PyPI SDK: https://pypi.org/project/xipinow/
- Contact: support@xipinow.com · Terms: https://api.xipinow.com/terms