Skip to content
clusters: prooflayer · edgemarket · edgefinance · synthforge · mediakit · wordmint · webprobe · locale · comppoint · rollforge · bestiary · statline · matchpoint · retail · agentops · browserworkflow · modelrouter · compose
$ man deploy-config-risk

/deploy-config-risk

agentutility / prooflayer / deploy-config-risk
PRICE / CALL
$0.02
USDC · base mainnet · scheme: exact
METHOD
POST
CLUSTER
prooflayer
CATEGORY
ai
STATUS
live
NAME
deploy-config-risk audits deploy configuration files for production risks
SYNOPSIS
POST https://x402.agentutility.ai/deploy-config-risk
     Content-Type: application/json
     X-PAYMENT:    <signed-transferWithAuthorization>

     { ... }
↳ first call → 402 Payment Required. Sign USDCtransferWithAuthorization, retry with theX-PAYMENT header.
DESCRIPTION

Audits deploy configuration files for production risks. Fetches Dockerfile, wrangler.toml, vercel.json, netlify.toml, fly.toml, docker-compose.yml, and serverless.yml and flags open CORS with credentials, exposed admin ports (22/5432/6379/etc), plaintext secrets in inline env, dev/debug mode left enabled, and missing healthchecks. Returns 0-100 score, per-finding kind/severity/path/line/redacted-evidence/recommendation, and a Venice plain-English verdict. Dual input: {repo: 'owner/name'} for public GitHub or {files: [{path, content}, ...]} for private / agent-workspace use. Use it as a Dockerfile lint, vercel.json hardening pass, wrangler.toml review, docker-compose.yml safety check, fly.toml secrets check, netlify deploy gate, open CORS detector, exposed admin port detector, plaintext-secret-in-env detector, or production-readiness deploy gate.

OUTPUTresponse shape
fieldtypedescription
scorenumberRisk score from 0-100 where higher means safer deploy config; aggregates all finding severities.
risk_levelstringRisk bucket like 'low', 'medium', 'high', or 'critical' derived from the score and worst findings.
findingsarrayArray of issues with kind, severity, file path, line number, redacted evidence, and recommendation per item.
signalsobjectObject of detected config signals like open_cors, exposed_ports, plaintext_secrets, debug_mode, missing_healthcheck.
summarystringVenice plain-English verdict summarizing the deploy config's production-readiness and top risks.
metadataobjectRun metadata including files scanned, file types detected, repo or input mode, and audit timestamp.
EXAMPLEStwo ways to call
EXAMPLE 1 · curl
curl -X POST https://x402.agentutility.ai/deploy-config-risk \
  -H 'Content-Type: application/json' \
  -d '{ }'
first response = 402 Payment Required with payment requirements; sign + retry with X-PAYMENT.
EXAMPLE 2 · mcp
# Install the MCP package for this endpoint's cluster
npx -y @agentutility/mcp-<cluster>

# Required: EVM private key with USDC on Base
export X402_PRIVATE_KEY=0x...

# Then call the deploy-config-risk tool from your MCP-aware agent.
MCP server handles payment automatically — your coding agent just calls the tool by name.
METADATA
tags
securitydeploydockerfilecorssecretsprooflayer
env
VENICE_API_KEY
methods
POST
cluster
prooflayer
price
$0.02 USDC per call
ADJACENTother endpoints in prooflayer
endpointdescriptionprice
app-store-rejection-explainExplains App Store and Google Play rejections and turns them into a resubmission plan.$0.02
db-migration-riskAudits database migrations for risky SQL before deploy.$0.02
secrets-exposure-checkScans project config files for hardcoded secrets before you deploy.$0.02
ai-content-detectorDetect AI-generated writing with a calibrated probability score.$0.03
dep-risk-summaryScores dependency risk for a whole repo from its manifests and lockfiles.$0.03
github-repo-healthGitHub repo health score / open-source maintainability checker.$0.03
package-risk-npmScores supply-chain risk for an npm package before you install it.$0.03
prompt-injection-surfaceScans AI app source code for prompt injection risk at LLM call sites.$0.03
SEE ALSO
agentutility · prooflayer · x402 · mcp · llms.txt · registry.json · bazaar.x402.org