Authorization: Bearer rbn_live_...
X-RugBurn-Request-Id: optional-client-request-id

X-RugBurn-API-Keyis also accepted for environments where bearer headers are hard to inject.

• token:risk:read allows token-risk endpoints.
• wallet:risk:read allows wallet-risk screening.
• deployer:history:read allows deployer history lookups.
• scan:queue:create is reserved for future paid queueing.

Keys are shown once, stored only as SHA-256 hashes, and can be suspended or revoked. Never embed keys in a browser, Discord bot source code, or mobile app binary. Use a server-side proxy if users can inspect the runtime.