Skip to main content
GET
/
api
/
v1
/
risk
/
attack-paths
Attack Paths
curl --request GET \
  --url http://localhost:8000/api/v1/risk/attack-paths
{
  "path_id": "<string>",
  "rule_name": "<string>",
  "owasp_tag": "<string>",
  "agents_involved": [
    "<string>"
  ],
  "path_steps": [
    {
      "node_id": "<string>",
      "node_type": "<string>",
      "vulnerability": "<string>",
      "description": "<string>"
    }
  ],
  "risk_score": 123,
  "severity": "<string>",
  "detected_at": "<string>"
}

Documentation Index

Fetch the complete documentation index at: https://docs.tracectrl.ai/llms.txt

Use this file to discover all available pages before exploring further.

Returns all detected attack paths ordered by risk score descending.

Query Parameters

service
string
Filter by service name

Response

Array of attack path objects:
path_id
string
Unique path identifier
rule_name
string
TAGAAI rule that fired (e.g., vulnerableToExcessiveAgency)
owasp_tag
string
OWASP ASI category tag (e.g., ASI01)
agents_involved
string[]
Agent IDs in the attack chain
path_steps
object[]
Step-by-step attack chain. Each step has:
risk_score
float
Computed risk score
severity
string
Critical, High, Medium, or Low
detected_at
string
ISO-8601 timestamp when this path was detected