Secrets & Data API

Query secrets and PII findings via the Nullify API

Base URL

https://api.<TENANT>.nullify.ai

Events

Stream events for new secrets, suppressions, and rotations:

curl -s \
  -H "Accept: application/json" \
  -H "Authorization: Bearer <TOKEN>" \
  'https://api.<TENANT>.nullify.ai/secrets/events?githubOwnerId=1234'

List Findings

Enumerate active secret or PII findings for a repository or tenant:

curl -s \
  -H "Accept: application/json" \
  -H "Authorization: Bearer <TOKEN>" \
  'https://api.<TENANT>.nullify.ai/secrets/findings?githubOwnerId=1234&secretType=aws_access_key'

Get a Finding

Fetch full details, including detector type, remediation guidance, and history:

curl -s \
  -H "Accept: application/json" \
  -H "Authorization: Bearer <TOKEN>" \
  'https://api.<TENANT>.nullify.ai/secrets/findings/01J6EEXK3NKYKWW9XTPQYAF41N?githubOwnerId=1234'

Allowlist a Finding

Suppress an individual secret or data alert with an audit trail:

curl -s -X POST \
  -H "Accept: application/json" \
  -H "Authorization: Bearer <TOKEN>" \
  -H "Content-Type: application/json" \
  -d '{"reason": "Credential rotated"}' \
  'https://api.<TENANT>.nullify.ai/secrets/findings/01J6EEXK3NKYKWW9XTPQYAF41N/allowlist?githubOwnerId=1234'

Finding Events

Retrieve the decision history for a specific secret or data alert:

curl -s \
  -H "Accept: application/json" \
  -H "Authorization: Bearer <TOKEN>" \
  'https://api.<TENANT>.nullify.ai/secrets/findings/01J6EEXK3NKYKWW9XTPQYAF41N/events?githubOwnerId=1234'

PreviousDependency Analysis API NextPentester API

Last updated 13 days ago

Was this helpful?