-
Notifications
You must be signed in to change notification settings - Fork 17
Expand file tree
/
Copy pathopenapi.yaml
More file actions
1124 lines (1068 loc) · 30.6 KB
/
openapi.yaml
File metadata and controls
1124 lines (1068 loc) · 30.6 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
openapi: 3.1.0
info:
title: BugTraceAI CLI API
description: |
REST API for the BugTraceAI autonomous security scanning platform.
BugTraceAI CLI is a headless, AI-powered vulnerability scanner that discovers and validates
security issues using specialized agents (XSS, SQLi, SSRF, IDOR, LFI, RCE, XXE, JWT, and more).
This API provides full scan lifecycle management, real-time WebSocket streaming, report generation,
and runtime configuration.
**Local deployment only.** No authentication required (access is trusted local/LAN).
WebSocket endpoints available for real-time scan events and findings.
version: 3.4.9-beta
contact:
name: BugTraceAI
url: https://bugtraceai.com
license:
name: AGPL-3.0
url: https://www.gnu.org/licenses/agpl-3.0.html
servers:
- url: http://localhost:8000
description: Local development
- url: http://{host}:8000
description: Custom deployment
variables:
host:
default: localhost
tags:
- name: health
description: Liveness and readiness probes
- name: scans
description: Scan lifecycle management
- name: reports
description: Report generation and download
- name: config
description: Runtime configuration
- name: metrics
description: Performance and queue metrics
- name: websocket
description: Real-time event streaming via WebSocket
paths:
/:
get:
summary: API information
description: Returns API name, version, and documentation links.
operationId: root
responses:
"200":
description: API info
content:
application/json:
schema:
type: object
properties:
name:
type: string
example: BugTraceAI API
version:
type: string
example: "2.0.0"
docs:
type: string
example: /docs
health:
type: string
example: /health
ready:
type: string
example: /ready
/health:
get:
tags: [health]
summary: Health check
description: |
Liveness probe. Returns server health status, Docker availability, and active scan count.
Use this for container orchestration health checks.
operationId: healthCheck
responses:
"200":
description: Server health status
content:
application/json:
schema:
$ref: "#/components/schemas/HealthResponse"
/ready:
get:
tags: [health]
summary: Readiness check
description: |
Readiness probe. Verifies database connectivity and Docker availability.
Use this for deployment readiness gates.
operationId: readinessCheck
responses:
"200":
description: Readiness status
content:
application/json:
schema:
$ref: "#/components/schemas/ReadinessResponse"
/api/scans:
post:
tags: [scans]
summary: Create scan
description: |
Create and start a new security scan against a target URL.
The scan runs asynchronously — use the status endpoint or WebSocket to track progress.
operationId: createScan
requestBody:
required: true
content:
application/json:
schema:
$ref: "#/components/schemas/CreateScanRequest"
responses:
"201":
description: Scan created and started
content:
application/json:
schema:
$ref: "#/components/schemas/ScanStatusResponse"
"400":
description: Invalid request parameters
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorResponse"
"429":
description: Too many concurrent scans
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorResponse"
get:
tags: [scans]
summary: List scans
description: List scan history with pagination and optional status filtering.
operationId: listScans
parameters:
- name: page
in: query
schema:
type: integer
default: 1
minimum: 1
description: Page number (1-indexed)
- name: per_page
in: query
schema:
type: integer
default: 20
minimum: 1
maximum: 100
description: Items per page
- name: status_filter
in: query
schema:
$ref: "#/components/schemas/ScanStatus"
description: Filter by scan status
responses:
"200":
description: Paginated scan list
content:
application/json:
schema:
$ref: "#/components/schemas/ScanListResponse"
"400":
description: Invalid pagination parameters
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorResponse"
/api/scans/{scan_id}/status:
get:
tags: [scans]
summary: Get scan status
description: Get current status, progress, and active agent for a scan.
operationId: getScanStatus
parameters:
- $ref: "#/components/parameters/ScanId"
responses:
"200":
description: Current scan status
content:
application/json:
schema:
$ref: "#/components/schemas/ScanStatusResponse"
"404":
description: Scan not found
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorResponse"
/api/scans/{scan_id}/findings:
get:
tags: [scans]
summary: Get scan findings
description: Get vulnerability findings for a scan with severity/type filtering and pagination.
operationId: getScanFindings
parameters:
- $ref: "#/components/parameters/ScanId"
- name: severity
in: query
schema:
$ref: "#/components/schemas/Severity"
description: Filter by severity level
- name: vuln_type
in: query
schema:
type: string
example: XSS
description: "Filter by vulnerability type (e.g. XSS, SQLi, SSRF, IDOR, LFI, RCE, XXE, JWT)"
- name: page
in: query
schema:
type: integer
default: 1
minimum: 1
- name: per_page
in: query
schema:
type: integer
default: 50
minimum: 1
maximum: 100
responses:
"200":
description: Paginated findings
content:
application/json:
schema:
$ref: "#/components/schemas/FindingsResponse"
"400":
description: Invalid filter or pagination parameters
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorResponse"
"404":
description: Scan not found
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorResponse"
/api/scans/{scan_id}/stop:
post:
tags: [scans]
summary: Stop scan
description: Gracefully stop a running scan.
operationId: stopScan
parameters:
- $ref: "#/components/parameters/ScanId"
responses:
"200":
description: Scan stopped
content:
application/json:
schema:
$ref: "#/components/schemas/StopScanResponse"
"404":
description: Scan not found or not running
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorResponse"
/api/scans/{scan_id}/pause:
post:
tags: [scans]
summary: Pause scan
description: Pause a running scan. Can be resumed later.
operationId: pauseScan
parameters:
- $ref: "#/components/parameters/ScanId"
responses:
"200":
description: Scan paused
content:
application/json:
schema:
$ref: "#/components/schemas/StopScanResponse"
"404":
description: Scan not found or not running
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorResponse"
/api/scans/{scan_id}/resume:
post:
tags: [scans]
summary: Resume scan
description: Resume a previously paused scan.
operationId: resumeScan
parameters:
- $ref: "#/components/parameters/ScanId"
responses:
"200":
description: Scan resumed
content:
application/json:
schema:
$ref: "#/components/schemas/StopScanResponse"
"404":
description: Scan not found or not paused
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorResponse"
/api/scans/{scan_id}:
delete:
tags: [scans]
summary: Delete scan
description: |
Delete a scan and its associated findings and report files.
Cannot delete a currently running scan.
operationId: deleteScan
parameters:
- $ref: "#/components/parameters/ScanId"
responses:
"200":
description: Scan deleted
content:
application/json:
schema:
$ref: "#/components/schemas/DeleteScanResponse"
"404":
description: Scan not found
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorResponse"
"409":
description: Scan is currently running
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorResponse"
/api/scans/{scan_id}/detailed-metrics:
get:
tags: [scans]
summary: Get detailed scan metrics
description: |
Get rich real-time metrics for a scan including URL progress, queue depths,
deduplication stats, and batch processing metrics.
operationId: getDetailedMetrics
parameters:
- $ref: "#/components/parameters/ScanId"
responses:
"200":
description: Detailed scan metrics
content:
application/json:
schema:
$ref: "#/components/schemas/DetailedMetricsResponse"
"404":
description: Scan not found
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorResponse"
/api/scans/{scan_id}/report/{format}:
get:
tags: [reports]
summary: Download report
description: Download the scan report in the specified format.
operationId: downloadReport
parameters:
- $ref: "#/components/parameters/ScanId"
- name: format
in: path
required: true
schema:
type: string
enum: [html, json, markdown]
description: Report output format
responses:
"200":
description: Report file
content:
text/html:
schema:
type: string
application/json:
schema:
type: object
text/markdown:
schema:
type: string
headers:
Content-Disposition:
schema:
type: string
description: "attachment; filename=bugtrace_report_{scan_id}.{ext}"
"400":
description: Invalid format
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorResponse"
"404":
description: Scan or report not found
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorResponse"
/api/scans/{scan_id}/files/{filename}:
get:
tags: [reports]
summary: Get report file
description: |
Serve individual files from a scan's report directory.
Path traversal is prevented — the file must be within the report directory.
operationId: getReportFile
parameters:
- $ref: "#/components/parameters/ScanId"
- name: filename
in: path
required: true
schema:
type: string
description: "Filename within the report directory (e.g. final_report.md)"
responses:
"200":
description: File contents with auto-detected content type
"400":
description: Invalid filename (path traversal attempt)
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorResponse"
"404":
description: Report directory or file not found
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorResponse"
/api/config:
get:
tags: [config]
summary: Get configuration
description: |
Get current CLI configuration with API keys masked.
Excludes internal fields and filesystem paths.
operationId: getConfig
responses:
"200":
description: Current configuration
content:
application/json:
schema:
$ref: "#/components/schemas/ConfigResponse"
patch:
tags: [config]
summary: Update configuration
description: |
Update CLI configuration at runtime with validation.
**Validation rules:**
- Integer fields (MAX_DEPTH, MAX_URLS, etc.) must be positive
- Model fields must be in `provider/model` format (e.g. `moonshotai/kimi-k2-thinking`)
operationId: updateConfig
requestBody:
required: true
content:
application/json:
schema:
$ref: "#/components/schemas/ConfigUpdateRequest"
responses:
"200":
description: Configuration updated
content:
application/json:
schema:
$ref: "#/components/schemas/ConfigUpdateResponse"
"400":
description: No fields to update
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorResponse"
"422":
description: Validation errors
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorResponse"
/api/metrics:
get:
tags: [metrics]
summary: Get all metrics
description: Get performance metrics from all subsystems (CDP, parallelization, deduplication, queues).
operationId: getAllMetrics
responses:
"200":
description: All metrics
content:
application/json:
schema:
$ref: "#/components/schemas/AllMetricsResponse"
/api/metrics/queues:
get:
tags: [metrics]
summary: Get queue metrics
description: Get depth, throughput, and latency metrics for all specialist queues.
operationId: getQueueMetrics
responses:
"200":
description: Queue metrics
content:
application/json:
schema:
$ref: "#/components/schemas/QueueMetricsResponse"
/api/metrics/cdp:
get:
tags: [metrics]
summary: Get CDP metrics
description: Get Context-Driven Pruning validation reduction metrics per specialist.
operationId: getCdpMetrics
responses:
"200":
description: CDP metrics
content:
application/json:
schema:
$ref: "#/components/schemas/CdpMetricsResponse"
/api/metrics/parallelization:
get:
tags: [metrics]
summary: Get parallelization metrics
description: Get current and peak worker concurrency metrics per specialist.
operationId: getParallelizationMetrics
responses:
"200":
description: Parallelization metrics
content:
application/json:
schema:
$ref: "#/components/schemas/ParallelizationMetricsResponse"
/api/metrics/deduplication:
get:
tags: [metrics]
summary: Get deduplication metrics
description: Get finding deduplication effectiveness metrics per specialist.
operationId: getDeduplicationMetrics
responses:
"200":
description: Deduplication metrics
content:
application/json:
schema:
$ref: "#/components/schemas/DeduplicationMetricsResponse"
/api/metrics/reset:
post:
tags: [metrics]
summary: Reset metrics
description: Reset all performance metrics counters for clean measurements.
operationId: resetMetrics
responses:
"200":
description: Metrics reset
content:
application/json:
schema:
type: object
properties:
status:
type: string
example: reset
message:
type: string
example: All metrics reset successfully
/ws/scans/{scan_id}:
get:
tags: [websocket]
summary: Scan events (WebSocket)
description: |
**WebSocket endpoint** — stream real-time events for a specific scan.
Connect with `?last_seq=N` to replay missed events on reconnection.
**Event types:** `progress_update`, `phase_update`, `finding_discovered`, `log`, `scan_complete`, `error`
operationId: scanWebSocket
parameters:
- $ref: "#/components/parameters/ScanId"
- name: last_seq
in: query
schema:
type: integer
default: 0
description: Last received sequence number for reconnection replay
responses:
"101":
description: WebSocket upgrade
"400":
description: Invalid scan ID
/ws/global:
get:
tags: [websocket]
summary: Global events (WebSocket)
description: |
**WebSocket endpoint** — stream events from ALL active scans.
Useful for dashboards and monitoring.
Each message includes a `scan_id` field to identify which scan the event belongs to.
operationId: globalWebSocket
responses:
"101":
description: WebSocket upgrade
components:
parameters:
ScanId:
name: scan_id
in: path
required: true
schema:
type: integer
description: Unique scan identifier
schemas:
ScanStatus:
type: string
enum: [PENDING, INITIALIZING, RUNNING, PAUSED, COMPLETED, STOPPED, FAILED]
description: Scan lifecycle status
FindingStatus:
type: string
enum: [PENDING_VALIDATION, VALIDATED_CONFIRMED, VALIDATED_FALSE_POSITIVE, MANUAL_REVIEW_RECOMMENDED, SKIPPED, ERROR]
description: Finding validation status
Severity:
type: string
enum: [CRITICAL, HIGH, MEDIUM, LOW, INFO]
description: Vulnerability severity level
ErrorResponse:
type: object
required: [detail]
properties:
detail:
type: string
description: Human-readable error message
error_code:
type: string
description: Machine-readable error code
HealthResponse:
type: object
properties:
status:
type: string
enum: [healthy, degraded]
version:
type: string
example: "2.0.0"
docker_available:
type: boolean
active_scans:
type: integer
event_bus_stats:
type: object
ReadinessResponse:
type: object
properties:
ready:
type: boolean
checks:
type: object
properties:
database:
type: boolean
docker_available:
type: boolean
CreateScanRequest:
type: object
required: [target_url]
properties:
target_url:
type: string
format: uri
description: Target URL to scan
example: https://example.com
scan_type:
type: string
default: full
description: "Scan type: full, hunter, manager, or focused agent names"
example: full
scan_depth:
type: string
default: ""
description: "Exploitation depth: quick, standard, thorough"
enum: ["", quick, standard, thorough]
safe_mode:
type: boolean
nullable: true
description: Override global safe mode setting
max_depth:
type: integer
default: 2
description: Maximum crawl depth
max_urls:
type: integer
default: 20
description: Maximum URLs to crawl
resume:
type: boolean
default: false
description: Resume a previous scan
use_vertical:
type: boolean
default: true
description: Use vertical specialized agents
focused_agents:
type: array
items:
type: string
default: []
description: List of focused agent names
param:
type: string
nullable: true
description: Specific parameter to target
ScanStatusResponse:
type: object
properties:
scan_id:
type: integer
target:
type: string
status:
$ref: "#/components/schemas/ScanStatus"
progress:
type: integer
minimum: 0
maximum: 100
uptime_seconds:
type: number
nullable: true
findings_count:
type: integer
active_agent:
type: string
nullable: true
phase:
type: string
nullable: true
origin:
type: string
enum: [cli, web, unknown]
description: Where the scan was launched from
FindingItem:
type: object
properties:
finding_id:
type: integer
type:
type: string
description: Vulnerability type (XSS, SQLi, SSRF, etc.)
severity:
$ref: "#/components/schemas/Severity"
details:
type: string
payload:
type: string
nullable: true
url:
type: string
parameter:
type: string
nullable: true
validated:
type: boolean
status:
$ref: "#/components/schemas/FindingStatus"
confidence:
type: number
nullable: true
minimum: 0
maximum: 1
FindingsResponse:
type: object
properties:
findings:
type: array
items:
$ref: "#/components/schemas/FindingItem"
total:
type: integer
page:
type: integer
per_page:
type: integer
scan_id:
type: integer
ScanSummary:
type: object
properties:
scan_id:
type: integer
target:
type: string
status:
$ref: "#/components/schemas/ScanStatus"
progress:
type: integer
timestamp:
type: string
format: date-time
origin:
type: string
enum: [cli, web, unknown]
has_report:
type: boolean
ScanListResponse:
type: object
properties:
scans:
type: array
items:
$ref: "#/components/schemas/ScanSummary"
total:
type: integer
page:
type: integer
per_page:
type: integer
StopScanResponse:
type: object
properties:
scan_id:
type: integer
status:
type: string
message:
type: string
DeleteScanResponse:
type: object
properties:
scan_id:
type: integer
message:
type: string
files_cleaned:
type: boolean
DetailedMetricsResponse:
type: object
properties:
scan_id:
type: integer
status:
type: string
phase:
type: string
active_agent:
type: string
progress:
type: object
properties:
urls_discovered:
type: integer
urls_analyzed:
type: integer
urls_total:
type: integer
findings_before_dedup:
type: integer
findings_after_dedup:
type: integer
findings_distributed:
type: integer
dedup_effectiveness:
type: number
queues:
type: object
additionalProperties:
$ref: "#/components/schemas/QueueStats"
batch_metrics:
type: object
properties:
urls_discovered:
type: integer
urls_analyzed:
type: integer
findings_before_dedup:
type: integer
findings_after_dedup:
type: integer
findings_distributed:
type: integer
time_saved_percent:
type: number
dedup_effectiveness:
type: number
uptime_seconds:
type: number
findings_count:
type: integer
QueueStats:
type: object
properties:
depth:
type: integer
total_enqueued:
type: integer
total_dequeued:
type: integer
avg_latency_ms:
type: number
ConfigResponse:
type: object
properties:
config:
type: object
description: Configuration key-value pairs (API keys masked)
version:
type: string
ConfigUpdateRequest:
type: object
properties:
SAFE_MODE:
type: boolean
MAX_DEPTH:
type: integer
minimum: 1
MAX_URLS:
type: integer
minimum: 1
MAX_CONCURRENT_URL_AGENTS:
type: integer
minimum: 1
MAX_CONCURRENT_REQUESTS:
type: integer
minimum: 1
DEFAULT_MODEL:
type: string
description: "Format: provider/model"
example: moonshotai/kimi-k2-thinking
CODE_MODEL:
type: string
description: "Format: provider/model"
ANALYSIS_MODEL:
type: string
description: "Format: provider/model"
MUTATION_MODEL:
type: string
description: "Format: provider/model"
SKEPTICAL_MODEL:
type: string
description: "Format: provider/model"
HEADLESS_BROWSER:
type: boolean
EARLY_EXIT_ON_FINDING:
type: boolean
STOP_ON_CRITICAL:
type: boolean
REPORT_ONLY_VALIDATED:
type: boolean
ConfigUpdateResponse:
type: object
properties:
updated:
type: object
additionalProperties: