Collect a website URL through a simple form, scan the page, and send a clear security report by email. Ideal for IT teams, agencies, and site owners who want fast checks without manual reviews.

The form starts the scan. The workflow fetches the page HTML and headers, follows up to five redirects, and runs two AI checks in parallel. One review looks at headers, cookies, and settings to spot weak security configurations. The other review studies the HTML and scripts to find client side risks like XSS and unsafe forms. Results are merged, graded from A to F, and turned into a clean HTML report. Gmail then delivers the report with the site URL in the subject line.

You only need OpenAI and Gmail accounts and a few minutes to set it up. Expect each review to drop from about an hour to a few minutes with consistent grading you can share with developers or clients. Use it for pre launch reviews, monthly health checks, or quick audits when someone reports a problem.

• Form trigger collects the target URL and starts the scan.
• HTTP Request fetches HTML and headers and follows up to five redirects.
• AI content review inspects HTML and scripts for client side risks.
• AI configuration review checks headers, cookies, and security settings.
• Merge and Aggregate combine both AI outputs into one data set.
• Code processing extracts security headers, counts critical issues, and sets the grade.
• HTML builder creates a clean email with grade, colors, and counts.
• Gmail sends the final report with the scanned URL in the subject.

• Reduce manual review time from 60 minutes to about 5 minutes per site.
• Automate most client side checks so teams can focus on fixes.
• Improve consistency with a single grading method from A to F.
• Connect OpenAI and Gmail in one flow for fast reporting.
• Handle more scan requests by sharing a simple form link.

1. Import the template into n8n: Create a new workflow in n8n > Click the three dots menu > Select 'Import from File' > Choose the downloaded JSON file.
2. You'll need accounts with OpenAI and Gmail. See the Tools Required section above for links to create accounts with these services.
3. Open the OpenAI nodes named OpenAI Headers Analysis and OpenAI Content Analysis. In the Credential to connect with dropdown, click Create new credential, then follow the on screen steps. Paste your OpenAI API key from the OpenAI API page and save.
4. Open the Gmail node named Send Security Report. In the Credential to connect with dropdown, click Create new credential, choose Gmail OAuth2, and complete the sign in flow. Pick the Gmail account you want to send from.
5. In the Send Security Report node, update the To address and set the From Name if needed. Keep the subject placeholder so the scanned URL appears in the subject.
6. Open the HTTP Request node named Scrape Website and confirm it allows up to five redirects and returns the full response. If some sites block requests, add a User Agent header in the node options.
7. Review the code node named Process Audit Results to see how grades and counts are set. Adjust wording if you want different labels in the report.
8. Check the convert to HTML node if you want to change the report style or add your logo.
9. Activate the workflow. Open the Form Trigger node and copy the public form URL.
10. Test the form with a real site URL that includes http or https. Wait for the execution to finish and confirm the email arrived. Check spam if needed.
11. If something fails, open the Execution list in n8n to view logs. For OpenAI errors, verify the API key and model. For email issues, check Gmail sending limits. For blocked sites, try adding a User Agent or test a different URL.