I took a real Proton Pass API request straight from the browser and ran it through Rentgen.
No architecture knowledge. No configs. No scripts. Just import cURL → generate tests → wait a minute.
The result? A 46% structural score and several interesting protocol-level signals — including large payload handling and auth gate sequencing.
This isn’t a “security drama” post. Proton builds serious products. But even mature APIs can benefit from deterministic hygiene checks before automation ever starts.
Full breakdown here:https://rentgen.io/api-stories/protonpass-api-under-rentgen.html
Top comments (0)