getting started
from zero to a signed result in three calls. no accounts, no keys.
1. explore for free
search the 52,000-service x402 index, preview SEC filings, or run a free code scan. no payment.
curl "https://supership.crestsystems.ai/manifest?need=stock+prices"
curl "https://supership.crestsystems.ai/edgar/preview?ticker=AAPL"
curl -X POST https://supership.crestsystems.ai/scan/free \
-H "Content-Type: application/json" \
-d '{"files": {"app.js": "const key = \"sk-...\";"}}'
2. pay per call
a paid endpoint returns an HTTP 402 challenge. settle it with any x402 client, or a wallet that signs an EIP-3009 USDC authorization on Base. supership fronts any downstream payment, so you need no wallet on the source chain.
# $1 quick code scan
curl -X POST https://supership.crestsystems.ai/scan/quick \
-H "Content-Type: application/json" -d '{"files": {"app.js": "..."}}'
# $0.08 one-call brief for any US ticker or major crypto
curl "https://supership.crestsystems.ai/v2/stocks/brief?ticker=AAPL"
scan/quick $1, scan/full $5, scan/deep $15, edgar $0.01, vouch $0.02, procure $0.05, stocks/brief $0.08. full list at
api reference.
3. verify the receipt
every paid response carries an Ed25519-signed supership.bundle.v1 receipt: the goods, a SHA-256 over them, the settlement transaction, and a signature. verify it offline against the public key, no call back to supership needed.
curl "https://supership.crestsystems.ai/api/pubkey"
scan code locally (optional)
for code scanning that never uploads source, run the CLI on your machine. 80+ vulnerability patterns across 6 categories: secrets, auth, injection, crypto, config, dependencies. requires node.js 18+.
npm install -g supership-scan
supership-scan ./your-project
Crest Deployment Systems LLC