Documentation > API > Pro+ Engines

Pro+ Engines API Reference

Endpoint reference for the Professional+ engines. All endpoints require Bearer-token auth and the matching security role per the OSS RBAC catalog.

Automation Engine

  • GET /api/v1/automation/scripts — list saved scripts (current versions)
  • POST /api/v1/automation/scripts — create or update; auto-bumps version, snapshots history
  • GET /api/v1/automation/scripts/{id} — fetch current version
  • GET /api/v1/automation/scripts/{id}/versions — full version history
  • DELETE /api/v1/automation/scripts/{id} — remove script + history
  • POST /api/v1/automation/scripts/{id}/execute — multi-host execute; per-host result tracked
  • GET /api/v1/automation/executions — recent execution history
  • GET /api/v1/automation/schedules / POST /api/v1/automation/schedules — cron-style scheduling
  • GET /api/v1/automation/approvals / POST /api/v1/automation/approvals/{id}/approve — approval workflow

Alerting Engine

  • GET /api/v1/alerting/rules / POST /api/v1/alerting/rules — rule CRUD
  • GET /api/v1/alerting/channels / POST /api/v1/alerting/channels — notification channel CRUD (email, Slack, webhook)
  • GET /api/v1/alerting/history — fired-alert history with state (open / ack / closed)
  • POST /api/v1/alerting/history/{id}/ack — acknowledge

Audit Engine

  • GET /api/v1/audit/log — query (action, entity_type, entity_id, user, time range)
  • GET /api/v1/audit/log/export — CSV / JSON export of filtered log
  • GET /api/v1/audit/retention / PUT /api/v1/audit/retention — retention policy

AV Management Engine

  • GET /api/v1/av/policies / POST /api/v1/av/policies — named AV policies
  • POST /api/v1/av/policies/{id}/deploy — deploy policy to host(s)
  • POST /api/v1/av/hosts/{id}/scan — on-demand scan
  • GET /api/v1/av/status — fleet AV status (managed + commercial-detected)

Compliance Engine

  • GET /api/v1/compliance/posture — per-host pass/warn/fail counts
  • GET /api/v1/compliance/posture/{host_id} — per-rule drilldown
  • GET /api/v1/compliance/packages/lists / POST — allowlist / blocklist CRUD
  • GET /api/v1/compliance/reports — CIS-style benchmark runs

Container Engine

  • POST /api/host/{id}/virtualization/create-child — LXD / WSL container create
  • POST /api/host/{id}/children/{cid}/{action} — start / stop / restart
  • DELETE /api/host/{id}/children/{cid} — delete container
  • GET /api/host/{id}/children — list children

Fleet Engine

  • GET /api/v1/fleet/groups / POST /api/v1/fleet/groups — host groups (parent/child + dynamic criteria)
  • POST /api/v1/fleet/groups/{id}/members — add/remove members
  • POST /api/v1/fleet/operations — bulk op (update / reboot / script / etc.)
  • GET /api/v1/fleet/operations/{id} — per-host progress
  • POST /api/v1/fleet/rolling-deployments — rolling-deployment with failure threshold

Firewall Orchestration Engine

  • GET /api/v1/firewall/roles / POST — firewall role CRUD
  • POST /api/v1/firewall/hosts/{id}/deploy — deploy roles to host
  • GET /api/v1/firewall/hosts/{id}/status — current rule set
  • POST /api/v1/firewall/conflicts/check — pre-deploy rule conflict detection
  • GET /api/v1/firewall/compliance — fleet compliance report

Health Engine

  • GET /api/v1/health/scores — per-host health scores (current)
  • GET /api/v1/health/scores/{host_id}/history — trending
  • GET /api/v1/health/grades — A/B/C/D/F letter grades

Observability Engine

  • POST /api/v1/observability/otel/deploy — deploy OTEL collector
  • POST /api/v1/observability/otel/{action} — lifecycle (start/stop/restart/uninstall)
  • GET /api/v1/observability/otel/status — per-host status
  • POST /api/v1/observability/graylog/{attach|detach} — Graylog forwarder lifecycle
  • POST /api/v1/observability/grafana/connect — provision datasource + dashboards

Secrets Engine

  • GET /api/v1/secrets / POST /api/v1/secrets — secret CRUD (Vault-backed)
  • POST /api/v1/secrets/{id}/rotate — rotate secret
  • GET /api/v1/secrets/vault/status — Vault sealed/unsealed state
  • POST /api/v1/secrets/vault/unseal — unseal with key share

Virtualization Engine

  • POST /api/host/{id}/virtualization/create-child — KVM / bhyve / VMM child host create
  • DELETE /api/host/{id}/children/{cid} — destroy + undefine + storage purge
  • POST /api/host/{id}/children/{cid}/{action} — start / stop / restart
  • POST /api/host/{id}/virtualization/{kvm|bhyve|vmm}/enable — bootstrap hypervisor
  • GET /api/host/{id}/virtualization/status — capability + ready state
  • POST /api/host/{id}/reboot — safe reboot orchestration

Vulnerability Engine

  • GET /api/v1/vulns/scans — per-host scan results
  • POST /api/v1/vulns/hosts/{id}/scan — on-demand scan
  • GET /api/v1/vulns/cves — fleet-wide CVE rollup
  • GET /api/v1/vulns/cves/{cve}/hosts — affected hosts for one CVE