Skip to main content

Fetch a source file

GET 

/api/v1/assessments/:assessment_id/files/:file_path

Fetch the contents of a single file from the merged archive.

Only available for code-audit and white-box assessments. The response is streamed as inert text with hardened browser handling and supports ETag revalidation. Large files (>1 MB) return 413.

  • Scope required: assessments:read.
  • Rate-limit tier: read (default).
  • Path traversal attempts (.. / leading /) return 400.

Request

Responses

File contents served as inert text. MIME metadata remains available from the source-files index.