Developer Reference

API Documentation

Programmatic access to email intelligence, funnel tracking, DNS probing, ESP profiling, and variant detection. API access is available on the Agency plan.

Upgrade to AgencyGenerate API Key →

Authentication

Authenticated dashboard requests use a JWT Bearer token. For programmatic API access (Agency plan), use an API secret key in the X-API-Key header.

Dashboard (JWT)

curl https://app.competitorinbox.com/intelligence/alerts \
  -H "Authorization: Bearer eyJhbGc…"

Programmatic (API Key)

curl https://app.competitorinbox.com/competitors \
  -H "X-API-Key: sk_live_…"
Base URL: https://app.competitorinbox.com— no /api/v1/ prefix, paths are rooted directly

Rate Limits

Limits vary by plan. Exceeded limits return HTTP 429.

PlanReq / minReq / dayAPI Keys
Starter / GrowthNone
Pro6010,000None
Business300100,000None
AgencyUnlimitedUnlimitedUp to 10

Evidence Classification

Every AI-generated claim in intelligence responses is labeled with one of three evidence tiers. DNS probe responses are always [FACT] — no AI involved.

[FACT]

Directly observed from email headers, DNS records, or HTML content. Zero inference.

[INFERENCE]

Logically deduced from multiple corroborating data points. High probability.

[HYPOTHESIS]

Plausible interpretation not directly evidenced. Warrants further investigation.

API Keys

Programmatic API access is available to Agency plan subscribers only. Each workspace holds up to 10 active API key pairs. Pass your secret key as X-API-Key header.

Competitors

Manage tracked competitor brands. Each competitor gets a unique inbound email address (e.g. brand123@in.competitorinbox.com) to monitor their campaigns.

Email Messages

Access captured emails, re-trigger analysis, and retrieve raw content. Emails are captured via the unique inbound address assigned to each competitor.

Analytics

Aggregate send-frequency data, CTAs, heatmaps, and per-competitor performance reports.

Brand Intelligence

AI-powered competitive intelligence: brand summaries, subject line grading, campaign pattern detection. All AI claims are labeled [FACT], [INFERENCE], or [HYPOTHESIS].

Sender Intelligence

ESP and infrastructure profiles for competitor sending domains. Aggregates email header signals, DNS facts, company size estimates, and benchmark comparisons.

Funnel Intelligence

Discover lead capture forms, track email nurture funnels, attribute emails to opt-in sources, and run AI flow analysis.

Email Client Risk

Analyse HTML rendering compatibility across 10+ email clients (Gmail, Outlook 2016–2021, Apple Mail, Samsung, etc.).

Variant Detection

Cluster detected A/B subject line and content variants. Uses semantic similarity + UTM signals to group emails into campaign sequences.

Embeddable Widgets

White-label intelligence widgets that can be embedded in client dashboards. Scoped to a competitor, shows metrics, send timings, or subject grade summaries.

Quick Start

Ready-to-run examples in four languages.

Node.js / TypeScript

const res = await fetch(
  'https://app.competitorinbox.com/competitors',
  { headers: { 'X-API-Key': process.env.CI_SECRET_KEY } }
);
const { competitors } = await res.json();

Python

import httpx, os
r = httpx.get(
  "https://app.competitorinbox.com/intelligence/dns-probe",
  params={"domain": "klaviyo.com"},
  headers={"X-API-Key": os.environ["CI_SECRET_KEY"]}
)
print(r.json()["spf"]["record"])

PHP

$ch = curl_init('https://app.competitorinbox.com/competitors');
curl_setopt($ch, CURLOPT_HTTPHEADER, [
  'X-API-Key: ' . getenv('CI_SECRET_KEY'),
]);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
$data = json_decode(curl_exec($ch), true);

cURL — DNS Probe

curl "https://app.competitorinbox.com/intelligence/dns-probe?domain=klaviyo.com" \
  -H "X-API-Key: sk_live_your_key" \
  | jq '.auth_risk'
← HomePricingContactFor AgenciesGenerate API Key →