Skip to main content
POST
/
v1
/
security-penetration-tests
Create penetration test
curl --request POST \
  --url https://api.trycomp.ai/v1/security-penetration-tests \
  --header 'Content-Type: application/json' \
  --header 'X-API-Key: <api-key>' \
  --data '
{
  "targetUrl": "https://app.example.com"
}
'

Authorizations

X-API-Key
string
header
required

API key for authentication

Headers

X-Organization-Id
string

Organization ID (required for session auth, optional for API key auth)

Body

application/json
targetUrl
string
required

Target URL for the penetration test scan

Example:

"https://app.example.com"

repoUrl
string

Repository URL containing the target application code

Example:

"https://github.com/org/repo"

additionalContext
string

Free-text context shared with the testing agent, e.g. remediation notes or accepted-by-design explanations from a previous run. Saved per-finding context notes for the same target are appended automatically. Max 4000 characters.

Maximum string length: 4000

Response

Penetration test created