Cloud Audits API

Query cloud audit inventories and posture findings via the Nullify API

Cloud audit endpoints live under the /classifier namespace. They expose the service inventory, asset graph, and posture signals that power Cloud Audits.

Base URL

https://api.<TENANT>.nullify.ai

List Applications

Retrieve the catalog of applications Nullify is monitoring, along with ownership metadata and posture summaries:

curl -s \
  -H "Accept: application/json" \
  -H "Authorization: Bearer <TOKEN>" \
  'https://api.<TENANT>.nullify.ai/classifier/applications?githubOwnerId=1234'

Get Repository Posture

Pull the cloud context associated with a specific repository or project:

curl -s \
  -H "Accept: application/json" \
  -H "Authorization: Bearer <TOKEN>" \
  'https://api.<TENANT>.nullify.ai/classifier/repositories/01J6EEXK3NKYKWW9XTPQYAF41N?githubOwnerId=1234'

Refresh Inventory

Request a rebuild of the application inventory when you add new connectors or infrastructure sources:

curl -s -X POST \
  -H "Accept: application/json" \
  -H "Authorization: Bearer <TOKEN>" \
  'https://api.<TENANT>.nullify.ai/classifier/applications/rebuild?githubOwnerId=1234'

Retrieve Organizational Context

Fetch the service graph Nullify uses to route cloud audit findings to the right owners:

curl -s \
  -H "Accept: application/json" \
  -H "Authorization: Bearer <TOKEN>" \
  'https://api.<TENANT>.nullify.ai/classifier/organization?githubOwnerId=1234'

Cloud Audits enrich these datasets with misconfiguration evidence before handing work to Security Program Management campaigns and Auto-Fix.

PreviousPentester API NextOpenAPI Specification

Last updated 2 months ago