Update a Praxis Shield incident (status / severity / categories)

curl --request PATCH \
  --url https://pria.praxislxp.com/api/admin/security/threats/{incidentId} \
  --header 'Content-Type: application/json' \
  --header 'x-access-token: <api-key>' \
  --data '
{
  "severity": 2,
  "categories": [
    "<string>"
  ]
}
'

{
  "success": true,
  "incident": {
    "_id": "<string>",
    "severity": 2,
    "categories": [
      "<string>"
    ],
    "title": "<string>",
    "summary": "<string>",
    "user": "<string>",
    "userEmail": "<string>",
    "userFname": "<string>",
    "userLname": "<string>",
    "institutionIds": [
      "<string>"
    ],
    "institutions": [
      {
        "_id": "<string>",
        "name": "<string>"
      }
    ],
    "evidence": [
      {}
    ],
    "llmAssessments": [
      {}
    ],
    "reviewerNotes": [
      {
        "author": "<string>",
        "note": "<string>",
        "createdAt": "2023-11-07T05:31:56Z"
      }
    ],
    "reviewerActions": [
      {
        "author": "<string>",
        "action": "<string>",
        "metadata": {},
        "createdAt": "2023-11-07T05:31:56Z"
      }
    ],
    "firstSeenAt": "2023-11-07T05:31:56Z",
    "lastSeenAt": "2023-11-07T05:31:56Z"
  }
}

PATCH

api

admin

security

threats

{incidentId}

Update a Praxis Shield incident (status / severity / categories)

curl --request PATCH \
  --url https://pria.praxislxp.com/api/admin/security/threats/{incidentId} \
  --header 'Content-Type: application/json' \
  --header 'x-access-token: <api-key>' \
  --data '
{
  "severity": 2,
  "categories": [
    "<string>"
  ]
}
'

{
  "success": true,
  "incident": {
    "_id": "<string>",
    "severity": 2,
    "categories": [
      "<string>"
    ],
    "title": "<string>",
    "summary": "<string>",
    "user": "<string>",
    "userEmail": "<string>",
    "userFname": "<string>",
    "userLname": "<string>",
    "institutionIds": [
      "<string>"
    ],
    "institutions": [
      {
        "_id": "<string>",
        "name": "<string>"
      }
    ],
    "evidence": [
      {}
    ],
    "llmAssessments": [
      {}
    ],
    "reviewerNotes": [
      {
        "author": "<string>",
        "note": "<string>",
        "createdAt": "2023-11-07T05:31:56Z"
      }
    ],
    "reviewerActions": [
      {
        "author": "<string>",
        "action": "<string>",
        "metadata": {},
        "createdAt": "2023-11-07T05:31:56Z"
      }
    ],
    "firstSeenAt": "2023-11-07T05:31:56Z",
    "lastSeenAt": "2023-11-07T05:31:56Z"
  }
}

Authorizations

x-access-token

string

header

required

JWT token passed in x-access-token header

Path Parameters

incidentId

string

required

Body

application/json

status

enum<string>

New incident status (must be a valid incident status)

Available options:

open,

reviewing,

resolved,

false_positive,

escalated

severity

integer

New severity (clamped 0-4)

Required range: 0 <= x <= 4

Response

The updated incident

success

boolean

incident

object

Full incident document INCLUDING evidence and llmAssessments, plus resolved institutions/user name fields. Evidence and LLM-assessment text is attacker-influenced and MUST be rendered INERT by the client.

Show child attributes

Get a full Praxis Shield incident (with evidence + LLM assessments)Get the live flagged history records cited by a Praxis Shield incident