// docs / quickstart
Amata vave
Saini, tamo'e lau scan muamua, faitau le lipoti. E moni le Free tier — e le manaomia se credit card e iloilo ai.
1. Fausia se account
Asiasi i le /sign-in ma filifili Google, GitHub, po o le imeli ma le magic link. O tala fou e amata i le polokalama Free, lea e aofia ai 3 sikani i le masina ma na o sikani passive. E mafai ona e fa'aopopoina mulimuli ane mai le Tala → Tau.
2. Tamo'e se scan
Filifili se target
Mai le dashboard kiliki New scan, faapipii se URL, ma submit. E normalise e FixWeb bare hostnames (example.com → https://example.com) ma reject internal addresses (RFC 1918, link-local, AWS metadata).
Faatali ~20 sekone
A passive scan runs in three phases: crawl (Chromium renders the page to discover links, metadata, media, scripts, and forms), quality checks (crawlability, search presentation, content/schema, media, performance, accessibility, forms, mobile/i18n, and runtime signals), and aggregate (deduplicate + severity ranking). Live progress streams via the dashboard; you don't need to refresh.
Faitau le lipoti
The report opens automatically when complete. Free plan users see only the highest-severity finding in full (title, description, evidence, remediation); other findings are stripped to severity-only stubs server-side. The Hobby plan and higher (Pro, Unlimited) unlock every finding plus the AI prompt copy button on each one.
3. Run an owner-depth scan (optional, Hobby plan and higher)
Owner-depth scans extend the same website-quality checks into verified domains and can include private journeys when you provide a short-lived test-account header. Add and verify a domain at Dashboard -> Domains (DNS TXT or HTTP file), then start an Owner-depth scan from New scan. You'll attest to the scan; we audit-log it server-side.
4. Faaaoga le REST API
Mint se bearer token i Account → API tokens. E faaalia le plaintext faatasi; faapipii i lau CI / Cursor / curl.
# Start a passive scan
curl -X POST https://fixweb.app/api/v1/scans \
-H "Authorization: Bearer fxw_..." \
-H "content-type: application/json" \
-d '{"target":"https://staging.example.com"}'Full reference i /docs/api.
5. Faapipi'i FixWeb i lau AI agent (MCP)
E aumai e FixWeb se MCP server i /api/mcp ma tools e fitu, resources e lua, ma se /fixweb-fix slash command mo templated remediation prompts. Wire i Claude Desktop / Cursor / Continue — vaai /docs/mcp.
O fea e alu i ai sosoo
- Scan types — passive vs owner-depth vs GitHub repo scans, the attestation flow.
- Domains — verify a domain, schedule re-scans, enable live monitoring.
- Quotas & limits — caps i tier taitasi, API rate limits, retention policies.
Ua pipii?
Lafo se imeli i support@fixweb.app ma le id sikani ma le mea na e fa'amoemoe ai e fa'atusatusa i le mea na e va'aia. Le polokalama Hobby e maua ai le lagolago masani, le polokalama Pro e maua ai le lagolago fa'amuamua, ma le polokalama Unlimited e aofia ai le lagolago fa'apitoa.