Secure Code Warrior

Secure Code Warrior is a developer-first security platform that provides security training, coaching, and assessments to help developers write secure code from the start. The platform offers over 50 programming language and framework combinations, covering OWASP Top 10 and CWE vulnerability categories through interactive challenges, assessments, tournaments, and guided learning courses. Secure Code Warrior exposes a REST API supporting user management, training progress reporting, assessment assignment and tracking, tournament management, metrics, and audit logging, with GitHub and CI/CD pipeline integrations for contextual in-workflow security coaching.

2 APIs 0 Features

Application SecurityDeveloper TrainingSecurity EducationAppSecSecure CodingDevSecOps

GitHubOrganization

Sources

aid: secure-code-warrior
url: https://raw.githubusercontent.com/api-evangelist/secure-code-warrior/refs/heads/main/apis.yml
apis:
  - aid: secure-code-warrior:secure-code-warrior-portal-api
    name: Secure Code Warrior Portal API
    tags:
      - Security Training
      - Application Security
      - Developer Training
      - Reporting
      - User Management
    humanURL: https://portal-api.securecodewarrior.com/api/docs/v2/
    baseURL: https://portal-api.securecodewarrior.com/api/v2
    properties:
      - url: openapi/secure-code-warrior-portal-openapi.yml
        type: OpenAPI
      - url: https://portal-api.securecodewarrior.com/api/docs/v2/
        type: Documentation
      - url: https://help.securecodewarrior.com/hc/en-us/sections/360006026452-API
        type: Documentation
    description: >-
      The Secure Code Warrior Portal API provides programmatic access to the Secure Code Warrior developer security
      training platform. The API enables user management, team administration, training progress reporting, assessment
      management, tournament administration, course assignments, and audit logging. It supports multiple API key types
      including Report, Admin, and Team keys for granular access control, with separate server instances for US and EU
      regions.
  - aid: secure-code-warrior:secure-code-warrior-direct-linking-api
    name: Secure Code Warrior Direct Linking API
    tags:
      - Security Training
      - Application Security
      - CWE
      - OWASP
      - GitHub Integration
    humanURL: https://help.securecodewarrior.com/hc/en-us/articles/900005309583-Direct-Linking-API-Documentation
    properties:
      - url: https://help.securecodewarrior.com/hc/en-us/articles/900005309583-Direct-Linking-API-Documentation
        type: Documentation
    description: >-
      The Secure Code Warrior Direct Linking API is a RESTful JSON service that allows partners to retrieve application
      security training material including links to explainer videos and training exercises in over 50 programming
      languages and frameworks. The API maps Common Weakness Enumeration (CWE) and OWASP vulnerability references to
      contextually relevant training content, enabling integration with GitHub, SARIF code scanning alerts, and other
      developer workflow tools.
name: Secure Code Warrior
tags:
  - Application Security
  - Developer Training
  - Security Education
  - AppSec
  - Secure Coding
  - DevSecOps
type: Index
image: https://kinlane-images.s3.amazonaws.com/shared/apis-json/apis-json-logo.jpg
access: 3rd-Party
created: '2026-05-02'
modified: '2026-05-19'
position: Consuming
description: >-
  Secure Code Warrior is a developer-first security platform that provides security training, coaching, and assessments
  to help developers write secure code from the start. The platform offers over 50 programming language and framework
  combinations, covering OWASP Top 10 and CWE vulnerability categories through interactive challenges, assessments,
  tournaments, and guided learning courses. Secure Code Warrior exposes a REST API supporting user management, training
  progress reporting, assessment assignment and tracking, tournament management, metrics, and audit logging, with GitHub
  and CI/CD pipeline integrations for contextual in-workflow security coaching.
integrations:
  - name: asterisk
  - name: shield lock
  - name: code blocks
  - name: service toolbox
  - name: school
  - name: plug connect
  - name: list alt
  - name: finance chip
  - name: tech
  - name: government
  - name: directions car
  - name: health cross
  - name: shoppingmode
  - name: security update good
  - name: ai
  - name: typcn warning outline
  - name: simple icons owasp
  - name: mdi company
  - name: construction
  - name: fingerprint
  - name: hub
  - name: article
  - name: event
  - name: tabler route
  - name: sidekickicons checklist boxes
  - name: mdi partnership outline
  - name: carbon network 1
  - name: mdi contact outline
  - name: check box
  - name: shield locked
  - name: help center
  - name: accessibility
  - name: SCW
  - name: person book
  - name: news
  - name: cases
  - name: Subpage Hero BG
  - name: our approach deco
  - name: Developer tools
  - name: Security Tools
  - name: Automation Tools
  - name: Educational Tools
  - name: Scalable and engaging
  - name: Languages and frameworks
  - name: Fun & interactive
  - name: partner page image
  - name: Quotes
  - name: colgate palmolive
  - name: 66423e90d33575f8134529c1 Derek Fisher
  - name: 66423e5d82da5cde6eb735ea Mads Howard
  - name: nab
  - name: 6695668dcf203e2ba365c744 image 131
  - name: image 15
  - name: image 16
  - name: image 17
  - name: image 18
  - name: websights
maintainers:
  - FN: Kin Lane
    email: kin@apievangelist.com
specificationVersion: '0.19'
common:
  - name: Website
    url: https://www.securecodewarrior.com
    type: Website
  - name: Portal API Documentation
    url: https://portal-api.securecodewarrior.com/api/docs/v2/
    type: Documentation
  - name: Help Center API Section
    url: https://help.securecodewarrior.com/hc/en-us/sections/360006026452-API
    type: Documentation
  - name: Direct Linking API
    url: https://help.securecodewarrior.com/hc/en-us/articles/900005309583-Direct-Linking-API-Documentation
    type: Documentation
  - name: GitHub Organization
    url: https://github.com/SecureCodeWarrior
    type: GitHubOrganization
  - name: GitHub App
    url: https://github.com/marketplace/secure-code-warrior-for-github
    type: GitHubApp
  - name: How to Enable API Access
    url: https://help.securecodewarrior.com/hc/en-us/articles/360036036512-How-to-enable-API-access
    type: GettingStarted
  - url: json-schema/secure-code-warrior-user-schema.json
    type: JSONSchema
  - url: json-structure/secure-code-warrior-training-structure.json
    type: JSONStructure
  - url: json-ld/secure-code-warrior-context.jsonld
    type: JSONLDContext
  - url: examples/secure-code-warrior-get-leaderboard-example.json
    type: Example
  - url: rules/secure-code-warrior-rules.yml
    type: SpectralRuleset
  - url: vocabulary/secure-code-warrior-vocabulary.yml
    type: Vocabulary
  - type: Integrations
    url: https://www.securecodewarrior.com/product/integrations
  - type: LLMsTxt
    url: https://www.securecodewarrior.com/llms.txt

Secure Code Warrior

APIs

Secure Code Warrior Portal API

Secure Code Warrior Direct Linking API

Semantic Vocabularies

Secure Code Warrior Context

API Governance Rules

Secure Code Warrior API Rules

JSON Structure

Secure Code Warrior Training Structure

Example Payloads

Secure Code Warrior Get Leaderboard Example

Resources

Sources