MagnusQA
Sign up freeSign in

60 seconds · no card · ToS acceptance required

Sign up

MagnusQA accounts are issued by MagnusID (the ecosystem SSO). After you sign in we ask you to accept the Terms of Service explicitly — required before any scan can run.

The flow

  1. 1. Sign in with MagnusID (or create a MagnusID with email + password if you don’t have one).
  2. 2. POST /api/v1/signup with { acceptTos: true, tosVersion: "magnusqa-tos-v1-2026-04-24" }. We log your IP + user-agent for the legal trail.
  3. 3. Add your first site at /verify-site — you’ll get a verification token to publish via DNS, file upload, email, or OAuth.
  4. 4. Trigger your first scan. Free tier: 1 site, 3 scans/month, 5-bug preview.

Terms of Service — what you’re agreeing to

  • · You authorize MagnusQA to perform automated scans of the URLs you register.
  • · You represent that you own or are authorized to test those URLs.
  • · Scans honor robots.txt and your scope rules; we never exceed your crawl-rate caps.
  • · We retain scan artifacts (screenshots, logs) for 90 days unless you set a different retention policy.
  • · We comply with the US Computer Fraud and Abuse Act and the UK Computer Misuse Act — we never scan a site you have not verified ownership of.
  • · Draft v1 — pending fintech/SaaS attorney review per spec. Read the full Terms and Privacy Policy.

Already signed in?

If you have a MagnusID bearer token (or a dev MAGNUSID_DEV_SUB), POST it with acceptTos: true to the signup endpoint and you’re in.

curl -X POST $API_BASE/api/v1/signup \
  -H "Authorization: Bearer $MAGNUSID_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"acceptTos": true, "tosVersion":"magnusqa-tos-v1-2026-04-24", "customerType":"saas"}'
Go to dashboard →