# Should be BLOCKED — email + name detected
curl -s -X POST https://<your-protector-plus-host>/apikey/api/protectorplus/v1/input-check \
-H 'Content-Type: application/json' \
-H 'X-API-Key: <YOUR_API_KEY>' \
-H 'X-App-ID: <YOUR_APP_ID>' \
-d '{"message": "My name is John Doe and my email is johndoe@example.com"}'
# Should be BLOCKED — credit card + phone detected
curl -s -X POST https://<your-protector-plus-host>/apikey/api/protectorplus/v1/input-check \
-H 'Content-Type: application/json' \
-H 'X-API-Key: <YOUR_API_KEY>' \
-H 'X-App-ID: <YOUR_APP_ID>' \
-d '{"message": "Charge my card 4111 1111 1111 1111, expiry 12/27. Number: +65 9123 4567."}'
# Output check — PII in LLM response
curl -s -X POST https://<your-protector-plus-host>/apikey/api/protectorplus/v1/output-check \
-H 'Content-Type: application/json' \
-H 'X-API-Key: <YOUR_API_KEY>' \
-H 'X-App-ID: <YOUR_APP_ID>' \
-d '{"message": "The customer record shows: Jane Smith, jane@corp.com, NRIC S1234567A"}'