Live Integrations

Optional free-first defensive providers, API key status, caching and quotas.

Search knowledge base

Defensive mode

Integrations Export

Free-first defensive integrations

Provider Control Plane

Live providers are optional and disabled safely when the global switch, provider switch or required environment variables are missing. API keys are used server-side only and never returned to the browser.

Live integration kill switch

OFF

Set OBSERVA_ENABLE_LIVE_INTEGRATIONS=true to enable optional providers.

No secrets exposedAuthorization requiredRate limitedCached by TTLActive scanning disabled

Authorization required

Live target lookups are for localhost, owned assets or explicitly authorized systems only. OBSERVA blocks private/internal network targets unless localhost or explicitly allowed and never performs active scanning, fuzzing or exploit testing.

Quota, caching and availability

Free providers can rate limit, change availability or require API keys. OBSERVA uses server-side timeouts, rate limiting and in-memory TTL caching, and returns provider unavailable warnings instead of exposing secrets or stack traces.

Integration limitations

Third-party data can be incomplete, delayed or inaccurate.

A reputation match is an indicator, not proof of compromise.

No provider result authorizes scanning or exploitation.

API keys are read server-side only and are never returned to the browser.

Reports exclude secrets and sensitive raw inputs by default.

Provider health overview