Skip to main content

Fetch assessment coverage data

GET 

/api/v1/assessments/:assessment_id/coverage

Fetch coverage data produced for an assessment.

Returns the observed HTTP endpoints (from captured traffic) and the per-security-property coverage verdicts (from the knowledge base), rendered with human labels and zero internal-id leaks. Also carries the code-audit / white-box Assessment Context fields (summary / threat_model / codebase_overview) drawn from the runner's materialized project.

  • Enforces org + assessment-level RBAC (cross-org returns 404).
  • Coverage reads are admission-free: the endpoint keeps serving in-flight assessments even when a release flag is flipped off.

Request

Responses

Successful Response