Skip to main content
POST
/
v1
/
threats
/
{threat_id}
/
risk-override
Override threat risk
curl --request POST \
  --url https://api.intrace.ai/v1/threats/{threat_id}/risk-override \
  --header 'Content-Type: application/json' \
  --header 'X-API-Key: <api-key>' \
  --data '
{
  "severity": "critical",
  "likelihood": "<string>",
  "impact_severity": "<string>"
}
'
{
  "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
  "title": "<string>",
  "severity": "critical",
  "status": "active",
  "pinned": true,
  "created_at": "2023-11-07T05:31:56Z",
  "updated_at": "2023-11-07T05:31:56Z",
  "attribution_types": [
    "<string>"
  ],
  "sources": [
    "<string>"
  ],
  "affected_assets": [
    {
      "asset_id": "<string>",
      "asset_name": "<string>",
      "asset_type": "<string>",
      "distance_km": 123
    }
  ],
  "version_count": 123,
  "development_count": 123,
  "description": "<string>",
  "threat_rationale": "<string>",
  "threat_type": "<string>",
  "location": "<string>",
  "location_country": "<string>",
  "coordinates": {
    "lat": 123,
    "lng": 123
  },
  "observed_at": "2023-11-07T05:31:56Z",
  "expires_at": "2023-11-07T05:31:56Z",
  "likelihood": "<string>",
  "impact_severity": "<string>",
  "risk_score": 123,
  "risk_level": "<string>",
  "likelihood_rationale": "<string>",
  "impact_rationale": "<string>",
  "dismissal_reason": "<string>",
  "location_precision_level": "<string>",
  "location_uncertainty_km": 123,
  "last_version_at": "2023-11-07T05:31:56Z",
  "latest_development_title": "<string>"
}
Records a manual risk override and recomputes risk score and level.

Request Body

{
  "severity": "high",
  "likelihood": "likely",
  "impact_severity": "severe"
}

Notes

Overrides are audit-friendly. The internal model stores both the previous and updated values in the threat’s risk override history.

Authorizations

X-API-Key
string
header
required

Path Parameters

threat_id
string<uuid>
required

Body

application/json
severity
enum<string>
required
Available options:
critical,
high,
medium,
low,
negligible
likelihood
string
impact_severity
string

Response

200 - application/json

Updated threat with manual risk override.

id
string<uuid>
required
title
string
required
severity
enum<string>
required
Available options:
critical,
high,
medium,
low,
negligible
status
enum<string>
required
Available options:
active,
monitoring,
contained,
resolved,
dismissed,
ended
pinned
boolean
required
created_at
string<date-time>
required
updated_at
string<date-time>
required
attribution_types
string[]
required
sources
string[]
required
affected_assets
object[]
required
version_count
integer
required
development_count
integer
required
description
string | null
threat_rationale
string | null
threat_type
string | null
location
string | null
location_country
string | null
coordinates
object
observed_at
string<date-time> | null
expires_at
string<date-time> | null
likelihood
string | null
impact_severity
string | null
risk_score
integer | null
risk_level
string | null
likelihood_rationale
string | null
impact_rationale
string | null
dismissal_reason
string | null
location_precision_level
string | null
location_uncertainty_km
number | null
last_version_at
string<date-time> | null
latest_development_title
string | null