Run #2
completed
Production — https://robnez.com
Download Report
69%
Pass Rate
43
Passed
19
Failed
0
Skipped
Filter:
all
pass (43)
fail (19)
error (0)
skip (0)
✓
Homepage loads with 200 OK
Public Marketing & Navigation
200
852ms
✓
Pricing page loads with 200 OK
Public Marketing & Navigation
200
596ms
✓
Privacy policy page loads
Public Marketing & Navigation
200
593ms
✓
Terms of service page loads
Public Marketing & Navigation
200
553ms
✓
Auth page loads
Public Marketing & Navigation
200
560ms
✓
Getting Started page not broken (404 check)
Public Marketing & Navigation
200
678ms
✓
Reseller page not broken (404 check)
Public Marketing & Navigation
200
529ms
✓
Homepage contains key marketing content
Public Marketing & Navigation
200
363ms
✗
Pricing page contains plan names
Public Marketing & Navigation
200
564ms
✓
Response time under 3 seconds
Public Marketing & Navigation
200
560ms
✓
Auth page has Sign In form
Authentication & Onboarding
200
621ms
✓
Auth page has Sign Up option
Authentication & Onboarding
200
549ms
✗
Login with invalid credentials returns error
Authentication & Onboarding
500
89ms
✓
Protected dashboard redirects unauthenticated users
Authentication & Onboarding
200
541ms
✓
Google OAuth endpoint is accessible
Authentication & Onboarding
200
123ms
✓
Password minimum length enforced (8 chars)
Authentication & Onboarding
400
197ms
✓
Logout clears session
Authentication & Onboarding
200
80ms
✗
API returns 401 for unauthenticated tRPC calls
Authentication & Onboarding
200
53ms
✗
Pricing page contains all four plans
Pricing Page
200
515ms
✗
Pricing page shows CAD currency
Pricing Page
200
647ms
✗
Pricing page contains FAQ section
Pricing Page
200
570ms
✗
Pricing page has billing toggle
Pricing Page
200
633ms
✗
Pricing page mentions 17% annual savings
Pricing Page
200
849ms
✓
Dashboard page loads
Agent Configuration
200
613ms
✓
Agent creation endpoint exists
Agent Configuration
200
549ms
✓
Agent settings page accessible after auth
Agent Configuration
200
637ms
✗
tRPC agent listing endpoint responds
Agent Configuration
404
121ms
✓
Analytics API endpoint responds
Dashboard & Analytics
404
64ms
✓
Dashboard shows call statistics section
Dashboard & Analytics
200
507ms
✓
Call history API endpoint responds
Call History & Transcripts
404
77ms
✓
Call history page loads
Call History & Transcripts
200
578ms
✓
Calendar integration settings page accessible
Google Calendar Integration
200
562ms
✓
Google OAuth initiation for calendar
Google Calendar Integration
200
152ms
✓
Notification settings page accessible
Notifications
200
696ms
✗
Homepage serves French content with Accept-Language: fr
Localisation (EN/FR/ES)
200
376ms
✗
Pricing page serves French content
Localisation (EN/FR/ES)
200
659ms
✗
Homepage serves Spanish content with Accept-Language: es
Localisation (EN/FR/ES)
200
391ms
✗
Language preference persisted in URL or cookie
Localisation (EN/FR/ES)
200
588ms
✓
A01 - Broken Access Control: Unauthenticated access to protected API
OWASP Top 10 Security
200
123ms
✗
A02 - Cryptographic Failures: HTTPS enforced
OWASP Top 10 Security
200
613ms
✓
A02 - Cryptographic Failures: Secure cookie attributes
OWASP Top 10 Security
200
141ms
✓
A03 - Injection: XSS via query parameters
OWASP Top 10 Security
200
393ms
✓
A03 - Injection: SQL injection probe on auth endpoint
OWASP Top 10 Security
400
98ms
✓
A04 - Insecure Design: Registration without email verification
OWASP Top 10 Security
200
559ms
✓
A05 - Security Misconfiguration: Server version headers not exposed
OWASP Top 10 Security
200
306ms
✓
A05 - Security Misconfiguration: CORS policy is restrictive
OWASP Top 10 Security
200
57ms
✓
A06 - Vulnerable Components: No sensitive data in client bundle
OWASP Top 10 Security
200
908ms
✗
A07 - Identification & Auth Failures: Rate limiting on login
OWASP Top 10 Security
500
873ms
✓
A07 - Identification & Auth Failures: Password reset token expiry
OWASP Top 10 Security
200
583ms
✗
A08 - Software & Data Integrity: Content Security Policy header present
OWASP Top 10 Security
200
298ms
✓
A09 - Security Logging Failures: 404 errors are logged
OWASP Top 10 Security
200
612ms
✓
A10 - SSRF: External URL parameter not exploitable
OWASP Top 10 Security
404
47ms
✓
LLM01 - Prompt Injection: Malicious instruction in caller input
OWASP Top 10 for AI (LLM Applications)
404
59ms
✓
LLM02 - Sensitive Information Disclosure: AI does not leak PII
OWASP Top 10 for AI (LLM Applications)
404
54ms
✓
LLM03 - Supply Chain: Third-party AI model dependencies disclosed
OWASP Top 10 for AI (LLM Applications)
200
349ms
✗
LLM04 - Data and Model Poisoning: Call data isolation between accounts
OWASP Top 10 for AI (LLM Applications)
404
44ms
✓
LLM05 - Improper Output Handling: AI output is sanitized before display
OWASP Top 10 for AI (LLM Applications)
404
58ms
✓
LLM06 - Excessive Agency: AI cannot perform unauthorized actions
OWASP Top 10 for AI (LLM Applications)
404
39ms
✓
LLM07 - System Prompt Confidentiality: System prompt not exposed via API
OWASP Top 10 for AI (LLM Applications)
404
50ms
✓
LLM08 - Vector and Embedding Weaknesses: Call data not accessible via embedding search
OWASP Top 10 for AI (LLM Applications)
404
50ms
✗
LLM09 - Misinformation: AI call summary accuracy indicators
OWASP Top 10 for AI (LLM Applications)
404
72ms
✗
LLM10 - Unbounded Consumption: API rate limiting on AI endpoints
OWASP Top 10 for AI (LLM Applications)
404
1.2s
Run started: 3/18/2026, 7:59:50 PM · Completed: 3/18/2026, 8:00:17 PM