API
Targets
Register a URL to scan. Duplicate URLs for your org return the existing target.
List targets
GET https://api.slatesecurity.ai/api/v1/targets
Authorization: Bearer ba_...Returns all targets in your workspace:
{
"targets": [
{
"id": "uuid",
"url": "https://example.com",
"created_at": "2026-01-01T00:00:00.000Z",
"scan_count": 3,
"last_scan_at": "2026-01-15T12:00:00.000Z"
}
]
}Create target
POST https://api.slatesecurity.ai/api/v1/targets
Content-Type: application/json
Authorization: Bearer ba_...
{
"url": "https://api.example.com"
}Request
url(required) — hostname or full URL; normalized to https and trailing slashes removed
The server records scan authorization consent when creating a target via the API (same declaration as the dashboard flow).
Responses
- 201 Created —
{ "target": { "id", "url" } } - 200 OK — target already exists for this workspace
- 400 — invalid URL or body
- 401 — unauthorized
Example
curl -sS -X POST https://api.slatesecurity.ai/api/v1/targets \
-H "Authorization: Bearer $SLATE_API_KEY" \
-H "Content-Type: application/json" \
-d '{"url":"https://staging.example.com"}'