Developer Updates

API Changelog

Track breaking changes, new features, and deprecations. We notify developers before making breaking changes.

v2.12.0 Jun 26, 2026 Breaking

Bulk Endpoint Credit Alignment

  • Bulk endpoints now bill the same per-item credits as individual requests across every plan.
  • Updated billing, pricing metadata, API docs, dashboard pricing, OpenAPI, Swagger, and Postman artifacts to use standard per-item bulk rates.
  • Bulk endpoints remain available for batching work into fewer requests with the same per-item credit cost.
v2.11.0 Apr 14, 2026 feature

API Guides & Pricing Refresh

  • Added a dedicated API pricing page with clearer endpoint pricing, billing links, and plan guidance
  • Localized API guide pages now share a unified layout with setup steps, examples, and next actions
  • Expanded API reference coverage so more public endpoints have dedicated guide pages instead of index-only listings
  • Improved MCP setup landing pages and developer actions across guide examples
  • Guide and docs pages now bypass stale page cache more aggressively so updates appear faster
v2.10.1 Apr 9, 2026 fix

Availability Confidence & ccTLD Fallbacks

  • Availability responses now include a `confidence` field to distinguish authoritative registry answers from heuristic fallbacks
  • Added DNS and WHOIS fallback handling for `.es` and similar registries that restrict direct availability checks
  • Fixed `skipCache` mode dropping results when RDAP fails mid-request
  • Improved handling for access-denied RDAP responses and transient registry dampening caches
v2.10.0 Apr 2, 2026 improvement

WHOIS Fallback Expansion

  • TLD validation now uses live IANA bootstrap data across all routes
  • Added WHOIS fallback for TLDs without RDAP bootstrap coverage and for registries with unreachable RDAP servers
  • Bulk status checks can now fall back to WHOIS for unsupported TLDs instead of failing early
  • WHOIS availability parsing now recognizes more multilingual registry responses
  • `/v1/ip` now returns HTTP 400 for private and reserved IP ranges instead of 500
v2.9.0 Mar 29, 2026 improvement

Data Quality & Performance Upgrades

  • Improved Spamhaus, tech detection, SSL, and reputation result quality across multiple intelligence endpoints
  • Expanded KV caching and unified resolver and timeout handling for lower-latency lookups
  • Improved bulk status error reporting and aligned OpenAPI auth examples with production behavior
  • Refreshed public docs and localized metadata across API landing pages
v2.8.0 Mar 3, 2026 feature

Website Categorization API Overhaul

  • Website categorization now uses an IAB-inspired taxonomy with multi-signal scoring
  • Responses include better-ranked categories, subcategories, and confidence scores
  • Added bulk categorization support and caching for larger analysis jobs
  • Docs and OpenAPI examples now reflect richer categorization responses and confidence thresholds
v2.7.0 Feb 15, 2026 fix

Historical Data Reliability

  • Expanded passive snapshot recording to strengthen `/v1/whois/history` and related historical views
  • Fixed missed history writes caused by background persistence timing on some routes
  • Historical tables now capture more consistent domain change data over time
  • Added D1 retry handling and bulk endpoint fixes for transient failures
v2.6.0 Feb 7, 2026 feature

Phase 4: New Capabilities & Data Enrichment

  • New `/v1/parking` endpoint - detect parked domains and aftermarket listings via DNS, redirect, and HTML analysis
  • New `/v1/whois/history` endpoint - track WHOIS changes over time with D1-backed snapshot storage
  • Threat intelligence now aggregates URLhaus + Spamhaus DBL + heuristic patterns
  • Domain valuation anchored to real market sale data with comparable categories
  • Hosting detection fetches dynamic IP ranges from AWS, GCP, and Cloudflare (cached 24h in KV)
  • SPF validation now counts recursive DNS lookups (RFC 7208 10-lookup limit)
  • Open Graph, Twitter Card, and meta tag extraction added to `/v1/tech`
  • DKIM checking expanded from 10 to about 50 selectors covering all major ESPs
  • DNS queries now fall back to Google DoH when Cloudflare is unavailable
  • Error cache uses type-specific TTLs for smarter retry behavior
  • Budget system persists to KV so it survives worker restarts
  • Added IPv6, security.txt, BIMI, MTA-STS, HTTPS/SVCB, domain age, and transfer_locked fields
v2.5.0 Jan 6, 2026 feature

Multi-currency Support

  • Added GBP and JPY currency support for domain valuation
  • New `currency` parameter on `/v1/value` endpoint (default: USD)
  • Valuation responses now include `currency` field
v2.4.2 Dec 19, 2025 improvement

Mobile Experience Improvements

  • Fixed mobile navigation UI issues
  • Added floating navigation menu for API docs on mobile
  • Improved terminal component responsive behavior
v2.4.1 Dec 12, 2025 security

Security Hardening

  • Enhanced input validation across all endpoints
  • Added rate limiting protection for authentication endpoints
  • Improved XSS protection on user-generated content
  • Security headers now enforced on all responses
v2.3.0 Nov 18, 2025 feature

Reverse Lookup APIs

  • New `/v1/reverse/mx` endpoint - find domains by mail server
  • New `/v1/reverse/ip` endpoint - find domains hosted on an IP
  • Both endpoints support pagination via `offset` and `limit` params
  • Results include confidence scores and last-seen timestamps
v2.2.1 Nov 8, 2025 fix

RDAP Reliability Improvements

  • Fixed intermittent timeouts with certain ccTLD registries
  • Improved retry logic for rate-limited RDAP servers
  • Better handling of malformed RDAP responses
  • Cache now respects registry-specific TTL hints
v2.2.0 Oct 28, 2025 feature

Email Authentication API

  • New `/v1/email-auth` endpoint for email security auditing
  • Validates SPF, DKIM, and DMARC configurations
  • Returns actionable recommendations for misconfigured records
  • Includes deliverability score based on authentication setup
v2.1.0 Oct 15, 2025 Breaking

Response Format Standardization

  • BREAKING: Error responses now use consistent `error.code` and `error.message` format
  • BREAKING: Removed deprecated `err` field from all responses
  • BREAKING: HTTP 429 responses now include `retry_after` in seconds (was milliseconds)
  • Added `error.suggestion` field with actionable guidance
  • All timestamps now in ISO 8601 format
Migration Example
// Before (v2.0.x)
{ "err": "rate limited", "retry": 5000 }

// After (v2.1.0+)
{
  "error": {
    "code": "RATE_LIMITED",
    "message": "Too many requests",
    "suggestion": "Reduce request frequency or upgrade plan",
    "retry_after": 5
  }
}
v2.0.3 Oct 2, 2025 fix

Bulk Endpoint Stability

  • Fixed race condition in bulk status checks causing duplicate results
  • Improved memory efficiency for large bulk requests
  • Added request deduplication for identical domains in same batch
v2.0.2 Sep 22, 2025 improvement

Performance Optimizations

  • Reduced average response time by 35% through edge caching improvements
  • Optimized DNS resolution with connection pooling
  • Bootstrap data now refreshed in background without blocking requests
v2.0.1 Sep 10, 2025 fix

IDN Domain Handling

  • Fixed punycode conversion for internationalized domain names
  • Improved validation for mixed-script domain labels
  • Added support for new gTLDs with non-ASCII characters
v2.0.0 Sep 1, 2025 Breaking

API v2 Launch

  • BREAKING: All endpoints moved from `/api/` to `/v1/` prefix
  • BREAKING: Authentication now requires API key in `X-API-Key` header (was query param)
  • BREAKING: Rate limits now per-key instead of per-IP for authenticated requests
  • New domain availability engine with 40% faster lookups
  • Added support for 400+ new TLDs
  • Introduced credit-based pricing model
  • New dashboard for API key management
Migration Example
// Before (v1.x)
GET /api/check?domain=example.com&key=xxx

// After (v2.0+)
GET /v1/status?name=example&tlds=com
Headers: X-API-Key: xxx
v1.5.0 Aug 18, 2025 feature

Tech Stack Detection

  • New `/v1/tech` endpoint for website technology detection
  • Identifies CDN providers, CMS platforms, frameworks, and analytics tools
  • Detection based on HTTP headers, HTML patterns, and JavaScript fingerprints
v1.4.0 Aug 5, 2025 feature

Domain Health Checker

  • New `/v1/health` endpoint for comprehensive domain health checks
  • Validates DNS configuration, SSL certificates, and security headers
  • Added `/v1/health/quick` for lightweight checks (DNS only)
  • Health scores now included in domain profile responses
v1.3.2 Jul 28, 2025 fix

Certificate Transparency Improvements

  • Fixed pagination for domains with 1000+ certificates
  • Added wildcard certificate detection
  • Improved certificate parsing for non-standard issuers
v1.3.1 Jul 20, 2025 deprecation

Deprecation Notice

  • Deprecated: `/api/*` endpoints will be removed in v2.0 (September(2025)
  • Deprecated: Query parameter authentication (`?key=xxx`) will be removed in v2.0
  • Added deprecation warnings in response headers for affected endpoints
  • Migration guide available at /docs#migration-v2
v1.3.0 Jul 12, 2025 feature

Typosquatting Detection

  • New `/v1/typos` endpoint for brand protection
  • Detects keyboard-based typos, homoglyph attacks, and TLD variations
  • Threat scoring based on registration status and content similarity
  • Webhook notifications for newly registered typosquatting domains

Get Notified of Breaking Changes

Subscribe to receive email alerts before we ship breaking changes.