API

Targets

Register a URL to scan. Duplicate URLs for your org return the existing target.

List targets

GET https://api.slatesecurity.ai/api/v1/targets
Authorization: Bearer ba_...

Returns all targets in your workspace:

{
  "targets": [
    {
      "id": "uuid",
      "url": "https://example.com",
      "created_at": "2026-01-01T00:00:00.000Z",
      "scan_count": 3,
      "last_scan_at": "2026-01-15T12:00:00.000Z"
    }
  ]
}

Create target

POST https://api.slatesecurity.ai/api/v1/targets
Content-Type: application/json
Authorization: Bearer ba_...

{
  "url": "https://api.example.com"
}

Request

  • url (required) — hostname or full URL; normalized to https and trailing slashes removed

The server records scan authorization consent when creating a target via the API (same declaration as the dashboard flow).

Responses

  • 201 Created { "target": { "id", "url" } }
  • 200 OK — target already exists for this workspace
  • 400 — invalid URL or body
  • 401 — unauthorized

Example

curl -sS -X POST https://api.slatesecurity.ai/api/v1/targets \
  -H "Authorization: Bearer $SLATE_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"url":"https://staging.example.com"}'