> ## Documentation Index > Fetch the complete documentation index at: https://docs.zavu.dev/llms.txt > Use this file to discover all available pages before exploring further. # Submit URL for verification > Submit a URL for verification. URLs are automatically checked against Google Web Risk API. Safe URLs are auto-approved, malicious URLs are blocked. URL shorteners (bit.ly, t.co, etc.) are always blocked. **Important:** All SMS and Email messages containing URLs require those URLs to be verified before the message can be sent. This endpoint allows pre-verification of URLs. ## OpenAPI ````yaml /openapi.json post /v1/urls openapi: 3.0.3 info: title: Zavu Unified Messaging Layer API version: 0.2.0 description: > Unified multi-channel messaging API for Zavu. Supported channels: - **SMS**: Simple text messages - **WhatsApp**: Rich messaging with media, buttons, lists, CTA URL buttons, and templates - **Telegram**: Bot messaging with text, media, and interactive elements - **Email**: Transactional emails via Amazon SES Design goals: - Simple `send()` entrypoint for developers - Project-level authentication via Bearer token - Support for all WhatsApp message types (text, image, video, audio, document, sticker, location, contact, buttons, list, cta_url, reaction, template) - If a non-text message type is sent, WhatsApp channel is used automatically - 24-hour WhatsApp conversation window enforcement - Universal `to` field accepts phone numbers (E.164), email addresses, or numeric chat IDs (Telegram/Instagram) servers: - url: https://api.zavu.dev security: - bearerAuth: [] paths: /v1/urls: post: tags: - URL Verification summary: Submit URL for verification description: >- Submit a URL for verification. URLs are automatically checked against Google Web Risk API. Safe URLs are auto-approved, malicious URLs are blocked. URL shorteners (bit.ly, t.co, etc.) are always blocked. **Important:** All SMS and Email messages containing URLs require those URLs to be verified before the message can be sent. This endpoint allows pre-verification of URLs. operationId: submitUrl requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/VerifiedUrlSubmitRequest' example: url: https://example.com/page responses: '200': description: URL already verified. content: application/json: schema: $ref: '#/components/schemas/VerifiedUrlResponse' '201': description: URL verified and approved. content: application/json: schema: $ref: '#/components/schemas/VerifiedUrlResponse' '400': description: Invalid request. content: application/json: schema: $ref: '#/components/schemas/Error' '401': description: Unauthorized. content: application/json: schema: $ref: '#/components/schemas/Error' '403': description: URL blocked (malicious, rejected, or shortener). content: application/json: schema: $ref: '#/components/schemas/Error' examples: malicious: summary: Malicious URL value: code: url_malicious message: >- URL has been flagged as potentially harmful by security systems. This incident has been logged. details: urls: - https://malicious-site.com threatTypes: - MALWARE - SOCIAL_ENGINEERING warning: fraud_prevention shortener: summary: URL shortener blocked value: code: url_shortener_blocked message: >- URL shorteners are not allowed. Please use the full destination URL. details: urls: - https://bit.ly/abc123 reason: url_shorteners_hidden_destination rejected: summary: URL rejected value: code: url_rejected message: URL has been rejected by our security team. details: urls: - https://rejected-site.com warning: fraud_prevention security: - bearerAuth: [] components: schemas: VerifiedUrlSubmitRequest: type: object required: - url properties: url: type: string description: The URL to submit for verification. example: https://example.com/page VerifiedUrlResponse: type: object required: - url properties: url: $ref: '#/components/schemas/VerifiedUrl' Error: type: object required: - code - message properties: code: type: string example: invalid_request message: type: string example: Phone number is invalid details: type: object additionalProperties: true VerifiedUrl: type: object required: - id - url - domain - status - createdAt properties: id: type: string example: url_abc123 url: type: string description: The verified URL. example: https://example.com/page domain: type: string description: Domain extracted from the URL. example: example.com status: $ref: '#/components/schemas/VerifiedUrlStatus' approvalType: $ref: '#/components/schemas/VerifiedUrlApprovalType' createdAt: type: string format: date-time updatedAt: type: string format: date-time VerifiedUrlStatus: type: string description: Status of a verified URL. enum: - pending - approved - rejected - malicious VerifiedUrlApprovalType: type: string description: How the URL was approved or rejected. enum: - manual - auto_web_risk securitySchemes: bearerAuth: type: http scheme: bearer bearerFormat: JWT ````