Endor Labs website screenshot

Endor Labs

Endor Labs is a software supply chain security and application security platform built around reachability-based Software Composition Analysis (SCA), SBOM/VEX, secrets and SAST scanning, CI/CD discovery, and AI security. Its public REST API at https://api.endorlabs.com/v1 is a uniform resource API over namespaces, exposing projects, packages, findings, policies, scan results, and more, driven by the endorctl CLI.

6 APIs 0 Features
SecuritySoftware Supply ChainSCAReachabilityAppSecAI Security

APIs

Endor Labs Projects API

List, get, and create Project resources - the logical root of all scanned source code, repositories, and package manager references - under a namespace via /v1/namespaces/{names...

Endor Labs Dependencies & Packages API

Query PackageVersion and DependencyMetadata resources - ecosystem, package name, version, and importer/dependency relationships - powering reachability-based Software Compositio...

Endor Labs Findings API

List and get Finding resources - detected problems requiring remediation including reachable vulnerabilities, license risks, malware, secrets, and SAST results - filtered and fi...

Endor Labs Policies API

Create, list, get, update, and delete Policy resources that define rules, queries, and target resource kinds for governing findings, releases, and remediation across namespaces.

Endor Labs Scan Results API

Retrieve ScanResult and Metric resources capturing scan execution configuration, findings produced, triggered policies, and diagnostics for a project under a namespace.

Endor Labs Auth & Namespaces API

Exchange an API key and secret for a bearer access token via POST /v1/auth/api-key, and list the namespaces (tenants and child namespaces) a token is authorized to access.

Collections

Pricing Plans

Endor Labs Plans Pricing

2 plans

PLANS

Rate Limits

Endor Labs Rate Limits

2 limits

RATE LIMITS

FinOps

Resources

👥
GitHubOrganization
GitHubOrganization
🔗
LinkedIn
LinkedIn
🔗
Website
Website
🔗
Documentation
Documentation
🔗
Plans
Plans
🔗
RateLimits
RateLimits
🔗
FinOps
FinOps

Sources

Raw ↑
opencollection: 1.0.0
info:
  name: Endor Labs REST API
  version: '1.0'
request:
  auth:
    type: bearer
    token: '{{bearerToken}}'
items:
- info:
    name: Authentication
    type: folder
  items:
  - info:
      name: Exchange an API key and secret for an access token.
      type: http
    http:
      method: POST
      url: https://api.endorlabs.com/v1/auth/api-key
      body:
        type: json
        data: "{\n  \"key\": \"<string>\",\n  \"secret\": \"<string>\"\n}"
    docs: Exchange an Endor Labs API key and secret for a bearer access token.
- info:
    name: Projects
    type: folder
  items:
  - info:
      name: List Project resources in a namespace.
      type: http
    http:
      method: GET
      url: https://api.endorlabs.com/v1/namespaces/{{namespace}}/projects
    docs: List Project resources in a namespace.
  - info:
      name: Create a Project resource in a namespace.
      type: http
    http:
      method: POST
      url: https://api.endorlabs.com/v1/namespaces/{{namespace}}/projects
      body:
        type: json
        data: '{}'
    docs: Create a Project resource in a namespace.
  - info:
      name: Get a Project resource by UUID.
      type: http
    http:
      method: GET
      url: https://api.endorlabs.com/v1/namespaces/{{namespace}}/projects/{{uuid}}
    docs: Get a Project resource by UUID.
- info:
    name: Packages
    type: folder
  items:
  - info:
      name: List PackageVersion resources in a namespace.
      type: http
    http:
      method: GET
      url: https://api.endorlabs.com/v1/namespaces/{{namespace}}/package-versions
    docs: List PackageVersion resources in a namespace.
  - info:
      name: Get a PackageVersion resource by UUID.
      type: http
    http:
      method: GET
      url: https://api.endorlabs.com/v1/namespaces/{{namespace}}/package-versions/{{uuid}}
    docs: Get a PackageVersion resource by UUID.
- info:
    name: Findings
    type: folder
  items:
  - info:
      name: List Finding resources in a namespace.
      type: http
    http:
      method: GET
      url: https://api.endorlabs.com/v1/namespaces/{{namespace}}/findings
    docs: List Finding resources in a namespace.
  - info:
      name: Get a Finding resource by UUID.
      type: http
    http:
      method: GET
      url: https://api.endorlabs.com/v1/namespaces/{{namespace}}/findings/{{uuid}}
    docs: Get a Finding resource by UUID.
- info:
    name: Policies
    type: folder
  items:
  - info:
      name: List Policy resources in a namespace.
      type: http
    http:
      method: GET
      url: https://api.endorlabs.com/v1/namespaces/{{namespace}}/policies
    docs: List Policy resources in a namespace.
  - info:
      name: Create a Policy resource in a namespace.
      type: http
    http:
      method: POST
      url: https://api.endorlabs.com/v1/namespaces/{{namespace}}/policies
      body:
        type: json
        data: '{}'
    docs: Create a Policy resource in a namespace.
  - info:
      name: Get a Policy resource by UUID.
      type: http
    http:
      method: GET
      url: https://api.endorlabs.com/v1/namespaces/{{namespace}}/policies/{{uuid}}
    docs: Get a Policy resource by UUID.
  - info:
      name: Update a Policy resource by UUID.
      type: http
    http:
      method: PATCH
      url: https://api.endorlabs.com/v1/namespaces/{{namespace}}/policies/{{uuid}}
      body:
        type: json
        data: '{}'
    docs: Update a Policy resource by UUID.
  - info:
      name: Delete a Policy resource by UUID.
      type: http
    http:
      method: DELETE
      url: https://api.endorlabs.com/v1/namespaces/{{namespace}}/policies/{{uuid}}
    docs: Delete a Policy resource by UUID.
- info:
    name: Scan Results
    type: folder
  items:
  - info:
      name: List ScanResult resources in a namespace.
      type: http
    http:
      method: GET
      url: https://api.endorlabs.com/v1/namespaces/{{namespace}}/scan-results
    docs: List ScanResult resources in a namespace.
  - info:
      name: Get a ScanResult resource by UUID.
      type: http
    http:
      method: GET
      url: https://api.endorlabs.com/v1/namespaces/{{namespace}}/scan-results/{{uuid}}
    docs: Get a ScanResult resource by UUID.
- info:
    name: Namespaces
    type: folder
  items:
  - info:
      name: List child namespaces under a namespace.
      type: http
    http:
      method: GET
      url: https://api.endorlabs.com/v1/namespaces/{{namespace}}/namespaces
    docs: List child namespaces under a namespace.