Authorization: Bearer <token> unless noted. See Authentication to get a token and Errors for the common error response format.
The canonical source of truth is the auto-generated OpenAPI spec at /swagger/index.html. Each page below documents the available endpoints for a resource group and maps to the corresponding Swagger tags.
Endpoint groups
| Group | Base path | Description |
|---|---|---|
| Auth | /api/v1/auth | User profile and login |
| Providers | /api/v1/providers | Connect, sync, and disconnect cloud accounts |
| Resources | /api/v1/resources | Cloud resource inventory |
| Drifts | /api/v1/drifts | Configuration drift detection and management |
| Baselines | /api/v1/baselines | Resource configuration snapshots |
| Vulnerabilities | /api/v1/vulnerabilities | CVE scanning results |
| Costs | /api/v1/costs | Billing ingest, trends, forecasts, and anomalies |
| Compliance | /api/v1/compliance | Framework assessments and exports |
| Kubernetes | /api/v1/kubernetes | Cluster and workload management |
| Recommendations | /api/v1/recommendations | AI-generated savings and security suggestions |
| Alerts | /api/v1/alerts | Alert listing and status management |
| Anomalies | /api/v1/anomalies | Cost and performance anomaly detection |
| Jobs | /api/v1/jobs | Scheduled job management and execution history |
| Remediation | /api/v1/remediation | Fix execution, approval, and rollback |
| Notifications | /api/v1/notifications | Channel preferences and delivery history |
| Webhooks | /api/v1/webhooks | Outbound webhook subscriptions |
| Reports | /api/reports | Scan report generation and download |
| Settings | /api/v1/settings | API keys and team members |