Built a pay-per-call CVE fix remediation API for agents (x402, no account)

I built this solo over a couple of nights and it's live on Base mainnet. Sharing for feedback, not selling anything.

The idea: a dependency scanner or coding agent hits a known-vulnerable package mid-task. Instead of "CVE-XXXX found, good luck", it can call one endpoint and get back the actual remediation reasoning — fixed version, upgrade path, breaking-change risk, migration notes.

It's LLM-synthesized but grounded on OSV, so fix versions are real rather than hallucinated, and answers are cached so repeats are instant and cheap.

Pay-per-call via x402: flat $0.02 in USDC on Base, no account, no API key. There's also a prepaid path for higher volume.

POST https://refiner-gateway.onrender.com/cve/pay
{ "ecosystem":"npm", "package":"lodash", "version":"4.17.20", "cve":"CVE-2021-23337" }

Repo: https://github.com/keich2realg/refiner-gateway

Honest questions: does the price feel right? Would you wire this into an agent, and if not, what's missing? Which ecosystems should I prioritize?

Built a pay-per-call CVE fix remediation API for agents (x402, no account)

Tags

Author

Stats

Published

You Might Also Like

Five ways an x402 payment can go wrong — and which ones you can catch before your agent pays

What Is an AI Agent Wallet?

Cryptographic proof-of-existence for AI agent outputs — $0.01 per record via x402

Let your AI agent pay for data inline with x402 — no API keys, and now no wallet required

AI Agent 自动化交易

GoldBean Just Got Listed in public-apis (39.8k⭐) & awesome-mcp-servers — Here's How