Trust Score API
Retrieve the safety scan result for any AWSYS.CO short link
The Trust Score API exposes the URL safety scan result stored on each short link. Links are scanned against Google Safe Browsing and other threat intelligence sources when created. You can also surface this data in your own application to reassure recipients before they click.
The same data powers the link preview page accessible by appending + to any short URL (e.g. awsys.co/abc123+).
Public endpoint — no authentication required. This endpoint is intentionally open so that recipients, browsers, and third-party tools can verify link safety without needing an API key.
Base URL
https://awsys.co
Get Trust Score
GET /api/link-scan/:short
Returns the destination URL, trust score, threat list, and scan metadata for any short link by its short code. No authentication is required.
Path parameters
| Parameter | Description |
|---|---|
short | The short code of the link (e.g. abc123). For namespaced links, use only the short portion — not the full path. |
Response — 200 OK
{
"short": "abc123",
"destination": "https://example.com/landing-page",
"trustScore": 95,
"trustStatus": "safe",
"threats": [],
"scannedAt": "2026-05-20T08:30:00Z",
"source": "google_safe_browsing",
"createdAt": 1748000000000
}
| Field | Type | Description |
|---|---|---|
short | string | The short code |
destination | string | The destination URL the link resolves to |
trustScore | number | null | Safety score 0–100. null if the link has not been scanned yet. |
trustStatus | string | null | "safe", "warning", or "unsafe". null if not yet scanned. |
threats | string[] | List of detected threat types (empty array if none). Examples: MALWARE, SOCIAL_ENGINEERING. |
scannedAt | string | null | ISO 8601 timestamp of the last scan, or null if not scanned. |
source | string | null | The scanning provider used (e.g. "google_safe_browsing"). |
createdAt | number | null | Unix timestamp (ms) when the link was created. |
curl example
curl https://awsys.co/api/link-scan/abc123
JavaScript example
const res = await fetch('https://awsys.co/api/link-scan/abc123');
const data = await res.json();
if (data.trustStatus === 'safe') {
console.log(`Safe link: ${data.destination} (score: ${data.trustScore})`);
} else if (data.trustStatus === 'unsafe') {
console.warn('Warning: threats detected:', data.threats);
} else {
console.log('Link not yet scanned');
}
Trust Score Interpretation
| Score range | Status | Meaning |
|---|---|---|
| 80–100 | safe | No threats detected — destination is considered safe to visit |
| 40–79 | warning | Some signals of concern — recommend caution |
| 0–39 | unsafe | Active threats detected — do not visit this destination |
null | null | Link has not been scanned yet |
Error Codes
| HTTP | Description |
|---|---|
| 404 | No link with that short code exists. |
| 500 | Internal server error while retrieving scan data. |