Skip to main content
Get and filter all reports. Exactly one of the following parameters is required:
  • Program Handles
  • Inbox IDs
External DocumentationTo learn more, visit the HackerOne documentation.

Basic Parameters

ParameterDescription
Created AfterGet only reports that were created after the date specified.
Created BeforeGet only reports that were created before the date specified.
Filter By KeywordFilter reports by title and keywords.
Inbox IDsA comma-separated list of Inbox IDs to filter the reports for. Required if Program Handles is not specified.
Page NumberThe page number to retrieve.
Page SizeThe number of items per page. Valid values are between 1 to 100.
Program HandlesA single or comma-separated list of Program Handles to filter the reports for. Required if Inbox IDs is not specified.
Report IDsA comma-separated list of report IDs to filter by.
Return All PagesAutomatically fetch all resources, page by page.
Sort ByThe attributes to sort the reports on.

Advanced Parameters

ParameterDescription
AssigneeA comma-separated list of assignee usernames, emails or group names to filter the reports by.
Bounty Awarded AfterGet only reports with a bounty awarded after the specified date.
Bounty Awarded BeforeGet only reports with a bounty awarded before the specified date.
Bounty StatusFilter reports based on bounty award status.

If set to True, get only reports that have a bounty award. If set to False, get only reports that do not have a bounty award.

If not specified, get all reports regardless of bounty award status.
Closed AfterGet only reports that were closed after the date specified.
Closed BeforeGet only reports that were closed before the date specified.
Closed StatusFilter reports based on closure status.

If set to True, get only reports that have been closed. If set to False, get only reports that have not been closed.

If not specified, get all reports regardless of closure status.
Disclosed AfterGet only reports that were disclosed after the date specified.
Disclosed BeforeGet only reports that were disclosed before the date specified.
Disclosure StatusFilter reports based on disclosure status.

If set to True, get only reports that have been disclosed. If set to False, get only reports that have not been disclosed.

If not specified, get all reports regardless of disclosure status.
First Program Activity AfterGet only reports that received the first update from the program after the date specified.
First Program Activity BeforeGet only reports that received the first update from the program before the date specified.
Hacker Disclosure RequestFilter reports based on hacker disclosure request status.

If set to True, get only reports that have hacker disclosure request. If set to False, get only reports that do not have hacker disclosure request.

If not specified, get all reports regardless of hacker disclosure request status.
Hacker PublishedFilter reports based on hackers publication status.

If set to True, get only reports published by hackers. If set to False, get only reports not published by hackers.

If not specified, get all reports regardless of publication status.
Issue Tracker ReferenceFilter reports by issue tracker reference ID.
Last Activity AfterGet only reports that received an update after the date specified.
Last Activity BeforeGet only reports that received an update before the date specified.
Last Program Activity AfterGet only reports that received an update from the program after the date specified.
Last Program Activity BeforeGet only reports that received an update from the program before the date specified.
Last Public Activity AfterGet only reports that received a public update after the date specified.
Last Public Activity BeforeGet only reports that received a public update before the date specified.
Last Reporter Activity AfterGet only reports that received an update from the reporter after the date specified.
Last Reporter Activity BeforeGet only reports that received an update from the reporter before the date specified.
Program Response StatusFilter reports based on program response status.

If set to True, get only reports that the reporter received an update. If set to False, get only reports that the reporter did not receive an update.

If not specified, get all reports regardless of program response status.
ReporterA comma-separated list of hacker usernames to filter the reports for.
SeverityA comma-separated list of severity ratings to filter the reports by.
StateA comma-separated list of report states to filter by.
Submitted AfterGet only reports that were submitted after the date specified.
Submitted BeforeGet only reports that were submitted before the date specified.
Swag Awarded AfterGet only reports with swag awarded after the specified date.
Swag Awarded BeforeGet only reports with swag awarded before the specified date.
Swag Awarded StatusFilter reports based on swag award status.

If set to True, get only reports that have swag awarded. If set to False, get only reports that do not have swag awarded.

If not specified, get all reports regardless of swag award status.
Triaged AfterGet only reports that were triaged after the date specified.
Triaged BeforeGet only reports that were triaged before the date specified.
Triaged StatusFilter reports based on triage status.

If set to True, get only reports that have been triaged. If set to False, get only reports that have not been triaged.

If not specified, get all reports regardless of triage status.
WeaknessA comma-separated list of weakness IDs to filter by.

Example Output

[
	{
		"data": [
			{
				"attributes": {
					"bounty_awarded_at": "2020-12-04T09:32:43.414Z",
					"closed_at": null,
					"created_at": "2004-06-01T03:48:29.903Z",
					"cve_ids": [],
					"disclosed_at": null,
					"first_program_activity_at": "2021-11-03T15:45:46.065Z",
					"last_activity_at": "2020-11-05T06:29:27.430Z",
					"last_program_activity_at": "2013-03-01T00:51:44.575Z",
					"last_public_activity_at": "2003-07-14T02:11:35.722Z",
					"last_reporter_activity_at": "2021-04-14T23:34:35.513Z",
					"main_state": "<string>",
					"reporter_agreed_on_going_public_at": null,
					"source": null,
					"state": "<string>",
					"submitted_at": "2013-05-05T03:07:44.659Z",
					"swag_awarded_at": null,
					"timer_bounty_awarded_elapsed_time": 1,
					"timer_bounty_awarded_miss_at": null,
					"timer_first_program_response_elapsed_time": 1,
					"timer_first_program_response_miss_at": null,
					"timer_report_resolved_elapsed_time": null,
					"timer_report_resolved_miss_at": null,
					"timer_report_triage_elapsed_time": null,
					"timer_report_triage_miss_at": null,
					"title": "<string>",
					"triaged_at": null,
					"vulnerability_information": "<string>"
				},
				"id": "<string>",
				"relationships": {
					"assignee": {
						"data": {
							"attributes": {
								"bio": "<string>",
								"created_at": "2019-10-19T11:25:59.671Z",
								"disabled": false,
								"hackerone_triager": false,
								"impact": null,
								"location": "<string>",
								"name": "<string>",
								"profile_picture": {
									"110x110": "<string>",
									"260x260": "<string>",
									"62x62": "<string>",
									"82x82": "<string>"
								},
								"reputation": null,
								"signal": null,
								"username": "<string>",
								"website": null
							},
							"id": "<string>",
							"type": "<string>"
						}
					},
					"bounties": {
						"data": [
							{
								"attributes": {
									"amount": "<string>",
									"awarded_amount": "<string>",
									"awarded_bonus_amount": "<string>",
									"awarded_currency": "<string>",
									"bonus_amount": "<string>",
									"created_at": "2020-02-25T08:29:55.673Z"
								},
								"id": "<string>",
								"relationships": {
									"awarded_user": {
										"data": {
											"attributes": {
												"bio": null,
												"created_at": "2009-11-23T08:51:55.939Z",
												"disabled": false,
												"hackerone_triager": false,
												"impact": null,
												"location": null,
												"name": "<string>",
												"profile_picture": {
													"110x110": "<string>",
													"260x260": "<string>",
													"62x62": "<string>",
													"82x82": "<string>"
												},
												"reputation": null,
												"signal": null,
												"username": "<string>",
												"website": null
											},
											"id": "<string>",
											"type": "<string>"
										}
									},
									"report": {
										"data": {
											"attributes": {
												"bounty_awarded_at": "2017-08-26T08:58:16.989Z",
												"closed_at": null,
												"created_at": "2002-01-27T00:05:48.343Z",
												"disclosed_at": null,
												"first_program_activity_at": "2008-12-17T09:17:10.786Z",
												"last_activity_at": "2021-07-25T03:47:38.832Z",
												"last_program_activity_at": "2023-10-24T02:45:58.773Z",
												"last_public_activity_at": "2021-08-05T10:14:33.231Z",
												"last_reporter_activity_at": "2015-06-04T21:49:28.493Z",
												"main_state": "<string>",
												"reporter_agreed_on_going_public_at": null,
												"source": null,
												"state": "<string>",
												"submitted_at": "2010-02-04T04:57:03.231Z",
												"swag_awarded_at": null,
												"timer_bounty_awarded_elapsed_time": 2,
												"timer_bounty_awarded_miss_at": null,
												"timer_first_program_response_elapsed_time": 0,
												"timer_first_program_response_miss_at": null,
												"timer_report_resolved_elapsed_time": null,
												"timer_report_resolved_miss_at": null,
												"timer_report_triage_elapsed_time": null,
												"timer_report_triage_miss_at": null,
												"title": "<string>",
												"triaged_at": null,
												"vulnerability_information": "<string>"
											},
											"id": "<string>",
											"type": "<string>"
										}
									}
								},
								"type": "<string>"
							}
						]
					},
					"collaborators": {
						"data": []
					},
					"custom_field_values": {
						"data": []
					},
					"inboxes": {
						"data": [
							{
								"attributes": {
									"name": "<string>",
									"type": "<string>"
								},
								"id": "<string>",
								"type": "<string>"
							}
						]
					},
					"program": {
						"data": {
							"attributes": {
								"created_at": "2012-01-11T11:40:39.969Z",
								"handle": "<string>",
								"updated_at": "2011-09-24T18:37:49.601Z"
							},
							"id": "<string>",
							"type": "<string>"
						}
					},
					"reporter": {
						"data": {
							"attributes": {
								"bio": null,
								"created_at": "2020-01-23T23:00:17.642Z",
								"disabled": false,
								"hackerone_triager": false,
								"location": null,
								"name": "<string>",
								"profile_picture": {
									"110x110": "<string>",
									"260x260": "<string>",
									"62x62": "<string>",
									"82x82": "<string>"
								},
								"username": "<string>",
								"website": null
							},
							"id": "<string>",
							"type": "<string>"
						}
					},
					"severity": {
						"data": {
							"attributes": {
								"attack_complexity": "<string>",
								"attack_vector": "<string>",
								"author_type": "<string>",
								"availability": "<string>",
								"availability_requirement": "<string>",
								"calculation_method": "<string>",
								"confidentiality": "<string>",
								"confidentiality_requirement": "<string>",
								"created_at": "2004-09-23T21:08:50.732Z",
								"cvss_vector_string": "<string>",
								"integrity": "<string>",
								"integrity_requirement": "<string>",
								"privileges_required": "<string>",
								"rating": "<string>",
								"scope": "<string>",
								"score": 1,
								"user_id": 469110,
								"user_interaction": "<string>"
							},
							"id": "<string>",
							"type": "<string>"
						}
					},
					"weakness": {
						"data": {
							"attributes": {
								"created_at": "2017-07-01T13:16:46.090Z",
								"description": "<string>",
								"external_id": "<string>",
								"name": "<string>"
							},
							"id": "<string>",
							"type": "<string>"
						}
					}
				},
				"type": "<string>"
			},
			{
				"attributes": {
					"bounty_awarded_at": null,
					"closed_at": null,
					"created_at": "2022-11-20T06:22:15.062Z",
					"cve_ids": [],
					"disclosed_at": null,
					"first_program_activity_at": "2019-11-24T23:23:22.944Z",
					"last_activity_at": "2000-09-11T13:06:10.677Z",
					"last_program_activity_at": "2017-03-10T15:18:02.332Z",
					"last_public_activity_at": "2016-05-23T12:04:49.705Z",
					"last_reporter_activity_at": "2006-04-02T22:06:23.361Z",
					"main_state": "<string>",
					"reporter_agreed_on_going_public_at": null,
					"source": null,
					"state": "<string>",
					"submitted_at": "2023-10-18T06:41:59.270Z",
					"swag_awarded_at": null,
					"timer_bounty_awarded_elapsed_time": null,
					"timer_bounty_awarded_miss_at": null,
					"timer_first_program_response_elapsed_time": null,
					"timer_first_program_response_miss_at": null,
					"timer_report_resolved_elapsed_time": null,
					"timer_report_resolved_miss_at": null,
					"timer_report_triage_elapsed_time": null,
					"timer_report_triage_miss_at": null,
					"title": "<string>",
					"triaged_at": null,
					"vulnerability_information": "<string>"
				},
				"id": "<string>",
				"relationships": {
					"bounties": {
						"data": []
					},
					"collaborators": {
						"data": []
					},
					"custom_field_values": {
						"data": []
					},
					"inboxes": {
						"data": [
							{
								"attributes": {
									"name": "<string>",
									"type": "<string>"
								},
								"id": "<string>",
								"type": "<string>"
							}
						]
					},
					"program": {
						"data": {
							"attributes": {
								"created_at": "2022-04-14T14:52:15.960Z",
								"handle": "<string>",
								"updated_at": "2003-11-12T21:33:41.376Z"
							},
							"id": "<string>",
							"type": "<string>"
						}
					},
					"reporter": {
						"data": {
							"attributes": {
								"bio": null,
								"created_at": "2008-10-19T11:04:09.529Z",
								"disabled": false,
								"hackerone_triager": false,
								"location": null,
								"name": "<string>",
								"profile_picture": {
									"110x110": "<string>",
									"260x260": "<string>",
									"62x62": "<string>",
									"82x82": "<string>"
								},
								"username": "<string>",
								"website": null
							},
							"id": "<string>",
							"type": "<string>"
						}
					}
				},
				"type": "<string>"
			}
		],
		"links": {}
	}
]

Workflow Library Example

Get Reports with Hackerone and Send Results Via Email
Workflow LibraryPreview this Workflow on desktop