API & authentication
API security test suite
Internal regression suite of around 280 security-focused API tests.
Healthy
all security tests passed (1 non-security failure)
Checked 5/30/2026, 3:28:44 PM · Source: Continuous integration
Nightly integration suite reported failures, but none were in security-relevant files (CSRF, auth, webhook signing, content sanitisation, 401 matrix, concurrency). Failing non-security files: approval-actions.test.ts. Investigate via the workflow run, but no security control regressed.
What this check means
An in-house suite of tests targeting authentication, authorization, CSRF, content sanitisation, content-length enforcement, webhook integrity, and the unauthenticated 401 matrix across every endpoint. Runs before every change to the codebase and on a nightly schedule against production-equivalent infrastructure.
Recent runs
| When | Result | Source | |
|---|---|---|---|
| 5/30/2026, 3:28:44 PM | all security tests passed (1 non-security failure) | Continuous integration | |
| 5/30/2026, 4:24:45 AM | all security tests passed (1 non-security failure) | Continuous integration | |
| 5/29/2026, 4:20:53 PM | all security tests passed (1 non-security failure) | Continuous integration | |
| 5/29/2026, 4:32:12 AM | all security tests passed (1 non-security failure) | Continuous integration | |
| 5/28/2026, 4:30:13 PM | all security tests passed (1 non-security failure) | Continuous integration | |
| 5/28/2026, 4:31:03 AM | all security tests passed (1 non-security failure) | Continuous integration | |
| 5/27/2026, 4:20:43 PM | all security tests passed (1 non-security failure) | Continuous integration | |
| 5/27/2026, 4:32:18 AM | all security tests passed (1 non-security failure) | Continuous integration | |
| 5/26/2026, 4:21:27 PM | all security tests passed (1 non-security failure) | Continuous integration | |
| 5/26/2026, 4:27:30 AM | all security tests passed (1 non-security failure) | Continuous integration | |
| 5/25/2026, 3:59:49 PM | all security tests passed (1 non-security failure) | Continuous integration | |
| 5/25/2026, 4:33:59 AM | all security tests passed (1 non-security failure) | Continuous integration | |
| 5/24/2026, 3:28:39 PM | all tests passed | Continuous integration | |
| 5/24/2026, 6:00:02 AM | all tests passed | Continuous integration | |
| 5/24/2026, 4:31:32 AM | all tests passed | Continuous integration | |
| 5/24/2026, 4:12:07 AM | all tests passed | Continuous integration | |
| 5/24/2026, 3:53:34 AM | all tests passed | Continuous integration | |
| 5/24/2026, 3:39:11 AM | all tests passed | Continuous integration | |
| 5/24/2026, 3:28:45 AM | all tests passed | Continuous integration | |
| 5/24/2026, 3:19:21 AM | all tests passed | Continuous integration | |
| 5/24/2026, 3:09:04 AM | all tests passed | Continuous integration | |
| 5/24/2026, 12:42:23 AM | all tests passed | Continuous integration | |
| 5/24/2026, 12:33:51 AM | all tests passed | Continuous integration | |
| 5/24/2026, 12:27:29 AM | all tests passed | Continuous integration | |
| 5/24/2026, 12:20:51 AM | test failures detected (unclassified) | Continuous integration | |
| 5/24/2026, 12:18:31 AM | test failures detected (unclassified) | Continuous integration | |
| 5/23/2026, 11:02:05 PM | test failures detected (unclassified) | Continuous integration | |
| 5/23/2026, 11:00:32 PM | test failures detected (unclassified) | Continuous integration | |
| 5/19/2026, 4:10:18 PM | all tests passed | Continuous integration | |
| 5/19/2026, 4:28:26 AM | all tests passed | Continuous integration |
Need additional detail (sanitised report, supporting evidence)? security@theartofcto.com