bluedoor data·Trust Centers API·bluedoor.sh

Home / Providers / Oneleet

Oneleet

Providers detail rendered from /coverage/providers/oneleet.

Overview

IDoneleet
CollectionProviders
ProviderOneleet
Company-
URL-
Counts102 companies
102 trust centers
162 certifications
7,633 controls
Updated-

Raw record

FieldValue
provider
{
  "id": "oneleet",
  "name": "Oneleet",
  "tier": "tier1",
  "adapter_status": "implemented",
  "connect_method": "public_rest",
  "auth": "none (tenant host is the API key in the path)",
  "normalized_coverage": {
    "organizations": true,
    "certifications": true,
    "controls": true,
    "subprocessors": false,
    "documents": true,
    "securityUpdates": false
  },
  "rate_limit": {
    "recommendedRps": 12,
    "maxConcurrency": 12,
    "readCeiling": "no 429 to 60rps but latency-bound: slow ~1.1s origin (Cloudflare passthrough); median balloons 4-5s past ~20rps",
    "limiter": "Cloudflare -> slow origin; concurrency-bound, NOT quota-bound",
    "penalty": "none (no 429/403; latency only)",
    "backoff": "keep ~10-15 in flight; do not push RPS to chase throughput"
  },
  "stats": {
    "providerId": "oneleet",
    "name": "Oneleet",
    "adapterStatus": "implemented",
    "organizations": 102,
    "trustCenters": 102,
    "certifications": 162,
    "controls": 7633,
    "subprocessors": 0,
    "documents": 508,
    "securityUpdates": 0,
    "sources": 102
  }
}
target_support
{
  "support_status": "supported",
  "sync_cadence": "daily_full_sync",
  "rate_limit": {
    "recommendedRps": 12,
    "maxConcurrency": 12,
    "readCeiling": "no 429 to 60rps but latency-bound: slow ~1.1s origin (Cloudflare passthrough); median balloons 4-5s past ~20rps",
    "limiter": "Cloudflare -> slow origin; concurrency-bound, NOT quota-bound",
    "penalty": "none (no 429/403; latency only)",
    "backoff": "keep ~10-15 in flight; do not push RPS to chase throughput"
  },
  "known_source_count": 103,
  "harvestable_source_count": 102,
  "seed": "seeds/oneleet-backfill-2026-06-11.json"
}
counts
{
  "companies": 102,
  "trust_centers": 102,
  "certifications": 162,
  "controls": 7633,
  "subprocessors": 0,
  "documents": 508,
  "security_updates": 0,
  "sources": 102
}
data_surface
{
  "score": 72,
  "score_kind": "bounded_0_to_100_observed_normalized_trust_center_coverage",
  "granularity_tier": "high_granularity",
  "observed_capabilities": {
    "trust_centers": true,
    "certifications": true,
    "controls": true,
    "subprocessors": false,
    "documents": true,
    "security_updates": false,
    "provenance": true
  },
  "available_capabilities": [
    "trust_centers",
    "certifications",
    "controls",
    "documents",
    "provenance"
  ],
  "missing_capabilities": [
    "subprocessors",
    "security_updates"
  ],
  "analysis_readiness": {
    "vendor_risk_profile": true,
    "security_questionnaire_evidence": true,
    "subprocessor_monitoring": false,
    "document_inventory": true,
    "compliance_tracking": true,
    "security_advisory_monitoring": false,
    "provenance_audit": true
  },
  "counts": {
    "trust_centers": 102,
    "certifications": 162,
    "controls": 7633,
    "subprocessors": 0,
    "documents": 508,
    "security_updates": 0,
    "sources": 102
  }
}
trust_centers
{
  "access_profiles": [
    {
      "key": "oneleet_public_rest",
      "count": 102
    }
  ],
  "access_levels": [
    {
      "key": "request",
      "count": 89
    },
    {
      "key": "mixed",
      "count": 13
    }
  ],
  "data_access": {
    "certifications": 99,
    "controls": 101,
    "subprocessors": 0,
    "documents": 61,
    "security_updates": 0
  }
}
source_registry
{
  "rank": 6,
  "segment": "startup_smb",
  "owner": "Oneleet (independent; YC-backed, security compliance platform)",
  "auth": "none",
  "connect": {
    "method": "public_rest",
    "fetch": "GET https://api.oneleet.com/api/v1/tenants/{tenantDomain}/trust",
    "meta": "GET https://api.oneleet.com/api/v1/meta (env flags, posthog key)",
    "key": "tenantDomain = the trust-center hostname itself (e.g. security.archil.com) in the path",
    "cors": "open; single unauthenticated GET returns the whole trust center",
    "officialApi": null
  },
  "discovery": {
    "cnameTarget": "trust.oneleet.com",
    "handleInCname": false,
    "note": "shared CNAME target (handle NOT in CNAME), but the tenant hostname IS the API key, so CNAME sweep -> hostname -> direct API",
    "fingerprints": [
      "CNAME trust.oneleet.com",
      "api.oneleet.com/api/v1/tenants/{domain}/trust",
      "assets index-*.js SPA shell",
      "config.js + version.json"
    ],
    "channels": [
      "dns_cname_sweep",
      "crt.sh",
      "builtwith:Oneleet"
    ]
  },
  "backfill_2026_06_11": {
    "priorKnown": 61,
    "harvestableNow": 102,
    "netNew": 42,
    "netNewFromCommonCrawl": 23,
    "totalKnown": 103,
    "seed": "seeds/oneleet-backfill-2026-06-11.json"
  }
}
links
{
  "self": "/v1/coverage/providers/oneleet",
  "provider": "/v1/providers/oneleet",
  "companies": "/v1/companies?provider=oneleet",
  "trust_centers": "/v1/trust-centers?provider=oneleet",
  "sources": "/v1/sources?provider=oneleet"
}
Get this page with API

Rendered from the bluedoor Trust Centers API. Reproduce it:

GET https://api.bluedoor.sh/trust-centers/v1/coverage/providers/oneleetJSON
GET https://api.bluedoor.sh/trust-centers/v1/providers/oneleet/companies?limit=25JSON
GET https://api.bluedoor.sh/trust-centers/v1/providers/oneleet/trust-centers?limit=25JSON

Docs · Get an API key