Get Reports - Blink Documentation

Integrations

Integrations
1Password
Abnormal
Absolute
AbuseIPDB
Acronis
Adaptive Shield
Adobe Cloud
ADP
Agari Phishing Response
Airlock
Airlock Digital
Akamai Identity Cloud Social
Alert Logic
AlgoSec Firewall Analyzer
Alienvault OTX
Alienvault USM
Anthropic
Anodot
Any Run
Ansible
Anvilogic
Apex One
ArcSight ESM
Area 1
Asana
Asset Panda
Atlassian Crowd
Atlassian User Management
Atlassian User Provisioning
AuditBoard
auth0
Authentik
Authomize
Automox
AWS
AWS IAM Identity Center
Axonius
Azure
Azure Data Explorer
Azure DevOps
Azure Log Analytics
Azure Storage
BambooHR
Big Fix
BigPanda
Bitbucket
Bitdefender
Bitsight
Bitwarden
Black Duck
Black Kite
Blink
BMC Remedy
Box
Brinqa
Cato Networks
Censys
Chorus
Cisco Advanced Phishing Protection
Cisco Domain Protection
Cisco Meraki
Cisco Talos
Cisco Umbrella
Cisco Webex
Claroty xDome
ClearPass
ClickHouse
ClickUp
Cloud Custodian
Cloudflare
Cloudflare R2
Cobalt.io
Check Point Harmony
Check Point Infinity Events
Check Point Management
Check Point XDR/XPR
Checkmarx SAST
Checkmarx One
Chronicle
Compass
Confluence
Confluence Data Center
Coralogix
Coralogix Incident Management
Cortex XDR
Cortex Xpanse
CredStash
Cribl
CrowdStrike
CyberArk
Cybersixgill
CyCognito
Cyera
Cylance
Cyware CTIX
Darktrace
Dasera
Databricks
Datadog
DataSet
Discord
Docusign
Delighted
Delinea
Devo
Domo
Drata
Dropbox
Dropbox Business
druva
Duo
Duo Auth
Dynatrace
EasyVista
EchoTrail
Egnyte
Egnyte Secure Govern
Elasticsearch
Entro
Ermetic
Exabeam
Exchange Online
Expel
F5
Falcon LogScale
Falcon Surface
Flare.io
Forcepoint DLP
Forescout
FortiGate
Freshservice
GCP
Gemini
Ghostwriter
Git
GitHub
GitLab
Glean
Gmail
Google Calendar
Google Chat
Google Docs
Google Drive
Google Forms
Google Meet
Google Looker
Google Sheets
Google Workspace
Grafana
Greenhouse
GreyNoise
Grip Security
GYTPOL
Have I Been Pwned
HackerOne
- HackerOne
- Actions
Halo Service Desk
HiBob
HubSpot
Hunters
Hybrid Analysis
Hyperproof
IBM CLoud
IBM NS1 Connect
IBM X Force
Imperva
Incident.io
Infobip
Infoblox Cloud Services Portal
Intercom
Intezer
IP API
IPinfo
IPWHOIS
Ivanti RiskSense
Ironscales
Jamf
JetBrains
JFrog
Jira
Jira Data Center
Joe Sandbox
JumpCloud
Kandji
Keeper Secrets Manager
Kenna Security
KnowBe4
KnowBe4 Events
Kubernetes
Lacework
LaunchDarkly
Linear
Litmos
LogicMonitor
LogRhythm
Manage Engine ServiceDesk Plus
Mattermost
Maven
Microsoft Defender For Cloud
Microsoft Defender For Cloud Apps
Microsoft Defender For Endpoints
Microsoft Defender XDR
Microsoft E-Discovery
Microsoft Entra ID
Microsoft Graph
Microsoft Intune
Microsoft Office 365 Management Activity
Microsoft Outlook
Microsoft Purview
Microsoft Sentinel
Microsoft SQL Server
Microsoft Teams
Mimecast
MISP
Monday
MongoDB Atlas
MxToolbox
Neo4j
NetBox
Netography
Netskope
New Relic
Nightfall AI
NinjaOne
Notion
Nozomi Networks
Nuclei
Nucleus
Nutanix Hypervisor
Obsidian
Okta
OneDrive
OneLogin
OneTrust
Oort
OpenAI
OpenCTI
Opsgenie
OPSWAT
Oracle Cloud
Oracle HCM
Orca Security
OWASP ZAP
PagerDuty
Palo Alto NGFW
Palo Alto Firewall
Panther
Pentera
Perception Point
PhishLabs
PhishLabs Incident Data
PhishLabs Open Web Monitoring
Pingdom
PingID
PingOne
PlexTrac
PortSwigger
Power BI
PowerShell
Postman
Postman SCIM
Prisma Access
Prisma Cloud
Prisma Cloud CWP
Prometheus
Proofpoint
Proofpoint ITM
Proofpoint Protection Server
Proofpoint Security Awareness Training
Proofpoint TAP
Proofpoint TRAP
Pub-Sub
QRadar
Qualys
Rapid7
Rapid7 InsightIDR
Rapid7 InsightVM Cloud
Rapid7 Threat Command
Reco
Recorded Future
Recorded Future Triage Cloud
Red Hat IDM
Rippling
runZero
SafeBase
Sage HR
SailPoint
SailPoint IdentityIQ
Salesforce
SAP Ariba
ScienceLogic
Securin
Securin VI
SecurityScorecard
Securonix
Sekoia.io
SemGrep
SentinelOne
ServiceNow
SharePoint
Shodan
Shopify
Silverfort
Slack
Smartsheet
Snipe IT
Snowflake
Snyk
SolarWinds Service Desk
SonarQube
Sophos
Split
Splunk
Splunk Observability
Splunk SOAR
Spur
StrongDM
Sumo Logic
Symantec EDR
Sysdig
Tableau
Tanium
TeamCity
TeamViewer
Telegram
Tenable
Tenable Security Center
Terraform
Terraform Cloud
Tessian
TheHive
Thinkst Canary
ThreatQuotient
Trellix Email Security
Trello
Trend Vision One
Twilio
UKG HR
Uptycs
URLScan
Vault
Veracode
Verkada
Vertica
VMware vSphere
VMware Carbon Black
VirusTotal
WeChat
WhatsApp
WhoIs
WildFire
Wiz
Workday
Workspace ONE UEM
YesWeHack
Zendesk
Zero Networks
Zoom
Zscaler Internet Access
Zscaler Private Access

Get and filter all reports.

Exactly one of the following parameters is required:

Program Handles
Inbox IDs

External Documentation

To learn more, visit the HackerOne documentation.

Basic Parameters

Parameter	Description
Created After	Get only reports that were created after the date specified.
Created Before	Get only reports that were created before the date specified.
Filter By Keyword	Filter reports by title and keywords.
Inbox IDs	A comma-separated list of `Inbox IDs` to filter the reports for. Required if `Program Handles` is not specified.
Page Number	The page number to retrieve.
Page Size	The number of items per page. Valid values are between 1 to 100.
Program Handles	A single or comma-separated list of `Program Handles` to filter the reports for. Required if `Inbox IDs` is not specified.
Report IDs	A comma-separated list of report IDs to filter by.
Return All Pages	Automatically fetch all resources, page by page.
Sort By	The attributes to sort the reports on.

Advanced Parameters

Parameter	Description
Assignee	A comma-separated list of assignee usernames, emails or group names to filter the reports by.
Bounty Awarded After	Get only reports with a bounty awarded after the specified date.
Bounty Awarded Before	Get only reports with a bounty awarded before the specified date.
Bounty Status	Filter reports based on bounty award status.If set to `True`, get only reports that have a bounty award. If set to `False`, get only reports that do not have a bounty award.If not specified, get all reports regardless of bounty award status.
Closed After	Get only reports that were closed after the date specified.
Closed Before	Get only reports that were closed before the date specified.
Closed Status	Filter reports based on closure status.If set to `True`, get only reports that have been closed. If set to `False`, get only reports that have not been closed.If not specified, get all reports regardless of closure status.
Disclosed After	Get only reports that were disclosed after the date specified.
Disclosed Before	Get only reports that were disclosed before the date specified.
Disclosure Status	Filter reports based on disclosure status.If set to `True`, get only reports that have been disclosed. If set to `False`, get only reports that have not been disclosed.If not specified, get all reports regardless of disclosure status.
First Program Activity After	Get only reports that received the first update from the program after the date specified.
First Program Activity Before	Get only reports that received the first update from the program before the date specified.
Hacker Disclosure Request	Filter reports based on hacker disclosure request status.If set to `True`, get only reports that have hacker disclosure request. If set to `False`, get only reports that do not have hacker disclosure request.If not specified, get all reports regardless of hacker disclosure request status.
Hacker Published	Filter reports based on hackers publication status.If set to `True`, get only reports published by hackers. If set to `False`, get only reports not published by hackers.If not specified, get all reports regardless of publication status.
Issue Tracker Reference	Filter reports by issue tracker reference ID.
Last Activity After	Get only reports that received an update after the date specified.
Last Activity Before	Get only reports that received an update before the date specified.
Last Program Activity After	Get only reports that received an update from the program after the date specified.
Last Program Activity Before	Get only reports that received an update from the program before the date specified.
Last Public Activity After	Get only reports that received a public update after the date specified.
Last Public Activity Before	Get only reports that received a public update before the date specified.
Last Reporter Activity After	Get only reports that received an update from the reporter after the date specified.
Last Reporter Activity Before	Get only reports that received an update from the reporter before the date specified.
Program Response Status	Filter reports based on program response status.If set to `True`, get only reports that the reporter received an update. If set to `False`, get only reports that the reporter did not receive an update.If not specified, get all reports regardless of program response status.
Reporter	A comma-separated list of hacker usernames to filter the reports for.
Severity	A comma-separated list of severity ratings to filter the reports by.
State	A comma-separated list of report states to filter by.
Submitted After	Get only reports that were submitted after the date specified.
Submitted Before	Get only reports that were submitted before the date specified.
Swag Awarded After	Get only reports with swag awarded after the specified date.
Swag Awarded Before	Get only reports with swag awarded before the specified date.
Swag Awarded Status	Filter reports based on swag award status.If set to `True`, get only reports that have swag awarded. If set to `False`, get only reports that do not have swag awarded.If not specified, get all reports regardless of swag award status.
Triaged After	Get only reports that were triaged after the date specified.
Triaged Before	Get only reports that were triaged before the date specified.
Triaged Status	Filter reports based on triage status.If set to `True`, get only reports that have been triaged. If set to `False`, get only reports that have not been triaged.If not specified, get all reports regardless of triage status.
Weakness	A comma-separated list of weakness IDs to filter by.

Example Output

{
	"data": [
		{
			"id": "1337",
			"type": "report",
			"attributes": {
				"title": "XSS in login form",
				"state": "new",
				"created_at": "2016-02-02T04:05:06.000Z",
				"submitted_at": "2016-02-04T04:05:06.000Z",
				"vulnerability_information": "...",
				"triaged_at": null,
				"closed_at": null,
				"last_reporter_activity_at": null,
				"first_program_activity_at": null,
				"last_program_activity_at": null,
				"bounty_awarded_at": null,
				"last_activity_at": null,
				"last_public_activity_at": null,
				"swag_awarded_at": null,
				"disclosed_at": null
			},
			"relationships": {
				"reporter": {
					"data": {
						"id": "1337",
						"type": "user",
						"attributes": {
							"username": "api-example",
							"name": "API Example",
							"disabled": false,
							"created_at": "2016-02-02T04:05:06.000Z",
							"profile_picture": {
								"62x62": "/assets/avatars/default.png",
								"82x82": "/assets/avatars/default.png",
								"110x110": "/assets/avatars/default.png",
								"260x260": "/assets/avatars/default.png"
							}
						}
					}
				},
				"collaborators": {
					"data": [
						{
							"weight": 1,
							"user": {
								"id": "1337",
								"type": "user",
								"attributes": {
									"username": "api-example",
									"name": "API Example",
									"disabled": false,
									"created_at": "2016-02-02T04:05:06.000Z",
									"profile_picture": {
										"62x62": "/assets/avatars/default.png",
										"82x82": "/assets/avatars/default.png",
										"110x110": "/assets/avatars/default.png",
										"260x260": "/assets/avatars/default.png"
									},
									"reputation": 7,
									"signal": 7,
									"impact": 30
								}
							}
						},
						{
							"weight": 1,
							"user": {
								"id": "1338",
								"type": "user",
								"attributes": {
									"username": "api-example 2",
									"name": "API Example 2",
									"disabled": false,
									"created_at": "2016-02-02T04:05:06.000Z",
									"profile_picture": {
										"62x62": "/assets/avatars/default.png",
										"82x82": "/assets/avatars/default.png",
										"110x110": "/assets/avatars/default.png",
										"260x260": "/assets/avatars/default.png"
									},
									"reputation": 7,
									"signal": 7,
									"impact": 30
								}
							}
						}
					]
				},
				"program": {
					"data": {
						"id": "1337",
						"type": "program",
						"attributes": {
							"handle": "security",
							"created_at": "2016-02-02T04:05:06.000Z",
							"updated_at": "2016-02-02T04:05:06.000Z"
						}
					}
				},
				"weakness": {
					"data": {
						"id": "1337",
						"type": "weakness",
						"attributes": {
							"name": "Cross-Site Request Forgery (CSRF)",
							"description": "The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.",
							"external_id": "cwe-352",
							"created_at": "2016-02-02T04:05:06.000Z"
						}
					}
				},
				"bounties": {
					"data": []
				}
			}
		},
		{
			"id": "1338",
			"type": "report",
			"attributes": {
				"title": "CSRF in admin panel",
				"state": "triaged",
				"created_at": "2016-02-02T04:05:06.000Z",
				"submitted_at": "2016-02-04T04:05:06.000Z",
				"vulnerability_information": "...",
				"triaged_at": "2016-02-03T03:01:36.000Z",
				"closed_at": null,
				"last_reporter_activity_at": null,
				"first_program_activity_at": null,
				"last_program_activity_at": null,
				"bounty_awarded_at": null,
				"swag_awarded_at": null,
				"disclosed_at": null,
				"issue_tracker_reference_id": "T554",
				"issue_tracker_reference_url": "https://phabricator.tld/T554",
				"cve_ids": []
			},
			"relationships": {
				"reporter": {
					"data": {
						"id": "1337",
						"type": "user",
						"attributes": {
							"username": "api-example",
							"name": "API Example",
							"disabled": false,
							"created_at": "2016-02-02T04:05:06.000Z",
							"profile_picture": {
								"62x62": "/assets/avatars/default.png",
								"82x82": "/assets/avatars/default.png",
								"110x110": "/assets/avatars/default.png",
								"260x260": "/assets/avatars/default.png"
							}
						}
					}
				},
				"program": {
					"data": {
						"id": "1337",
						"type": "program",
						"attributes": {
							"handle": "security",
							"created_at": "2016-02-02T04:05:06.000Z",
							"updated_at": "2016-02-02T04:05:06.000Z"
						}
					}
				},
				"weakness": {
					"data": {
						"id": "1337",
						"type": "weakness",
						"attributes": {
							"name": "Cross-Site Request Forgery (CSRF)",
							"description": "The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.",
							"external_id": "cwe-352",
							"created_at": "2016-02-02T04:05:06.000Z"
						}
					}
				},
				"bounties": {
					"data": []
				},
				"inboxes": {
					"data": [
						{
							"id": "13",
							"type": "inbox",
							"attributes": {
								"name": "Security Program Inbox",
								"type": "default"
							}
						},
						{
							"id": "79",
							"type": "inbox",
							"attributes": {
								"name": "Custom Inbox",
								"type": "custom"
							}
						}
					]
				}
			}
		},
		"..."
	],
	"links": {
		"self": "https://api.hackerone.com/v1/reports?filter%5Bprogram%5D%5B%5D=security&page%5Bnumber%5D=1",
		"next": "https://api.hackerone.com/v1/reports?filter%5Bprogram%5D%5B%5D=security&page%5Bnumber%5D=2",
		"last": "https://api.hackerone.com/v1/reports?filter%5Bprogram%5D%5B%5D=security&page%5Bnumber%5D=5"
	}
}

Workflow Library Example

Get Reports with Hackerone and Send Results Via Email

Preview this Workflow on desktop

Was this page helpful?

Get Report HackerOne Custom Action

On this page

Basic Parameters
Advanced Parameters
Example Output
Workflow Library Example

Integrations

​Basic Parameters

​Advanced Parameters

​Example Output

​Workflow Library Example

Basic Parameters

Advanced Parameters

Example Output

Workflow Library Example