Attack Paths - TraceCtrl

GET

api

risk

attack-paths

Attack Paths

curl --request GET \
  --url http://localhost:8000/api/v1/risk/attack-paths

{
  "path_id": "<string>",
  "rule_name": "<string>",
  "owasp_tag": "<string>",
  "agents_involved": [
    "<string>"
  ],
  "path_steps": [
    {
      "node_id": "<string>",
      "node_type": "<string>",
      "vulnerability": "<string>",
      "description": "<string>"
    }
  ],
  "risk_score": 123,
  "severity": "<string>",
  "detected_at": "<string>"
}

Returns all detected attack paths ordered by risk score descending.

Query Parameters

service

string

Filter by service name

Response

Array of attack path objects:

path_id

string

Unique path identifier

rule_name

string

TAGAAI rule that fired (e.g., vulnerableToExcessiveAgency)

owasp_tag

string

OWASP ASI category tag (e.g., ASI01)

agents_involved

string[]

Agent IDs in the attack chain

path_steps

object[]

Step-by-step attack chain. Each step has:

Show child attributes

node_id

string

Node identifier

node_type

string

Type of node (agent, tool, ingress)

vulnerability

string

Vulnerability label

description

string

Human-readable description

risk_score

float

Computed risk score

severity

string

Critical, High, Medium, or Low

detected_at

string

ISO-8601 timestamp when this path was detected

Attack Graph PathsDetailed attack paths for the findings panel

Attack Paths

curl --request GET \
  --url http://localhost:8000/api/v1/risk/attack-paths

{
  "path_id": "<string>",
  "rule_name": "<string>",
  "owasp_tag": "<string>",
  "agents_involved": [
    "<string>"
  ],
  "path_steps": [
    {
      "node_id": "<string>",
      "node_type": "<string>",
      "vulnerability": "<string>",
      "description": "<string>"
    }
  ],
  "risk_score": 123,
  "severity": "<string>",
  "detected_at": "<string>"
}

​Query Parameters

​Response

Query Parameters

Response